THREAT OPS › Threat News › A 0-click exploit chain for the Pixel 10: When a Door Closes, a Window Opens
A 0-click exploit chain for the Pixel 10: When a Door Closes, a Window Opens
<p>We recently published an <a href="https://projectzero.google/2026/01/pixel-0-click-part-1.html">exploit chain</a> for the Google Pixel 9 that demonstrated it was possible to go from a zero-click context to root on Android in just two exploits. The Dolby 0-click vulnerability existed across all of Android, until it was patched in January 2026. While we had an exploit chain for the Pixel 9, we wa
Attributed threat actors
- Earth LuscaG1006
- Sea TurtleG1041
MITRE ATT&CK techniques
- VulnerabilitiesT1588.006
Indicators of compromise
- CVE-2025-54957cve
- https://project-zero.issues.chromium.org/428075495#attachment76717436url
- https://www.chipsnmedia.com/en/products/video.phpurl
- https://www.smartprix.com/bytes/google-tensor-g5-on-pixel-10-series-what-we-know-so-far/url
- https://chipsnmedia.com/en/products/video.phpurl
- https://project-zero.issues.chromium.org/issues/463438263url
- https://project-zero.issues.chromium.org/issues/426567975url
Original source: https://projectzero.google/2026/05/pixel-10-exploit.html