Google has released its monthly Android Security Bulletin for March 2025 to address a total of 44 vulnerabilities, including two that it said have come under active exploitation in the wild.The two high-severity vulnerabilities are listed below, CVE-2024-43093 - A privilege escalation flaw in the Framework component that could result in unauthorized access to "Android/data,"Android/obb," and "Android/sandbox" directories, and their respective sub-directories.CVE-2024-50302 - A privilege escalation flaw in the HID USB component of the Linux kernel that could lead to a leak of uninitialized kernel memory to a local attacker through specially crafted HID reports.

‍