A 0-click exploit chain for the Pixel 10: When a Door Closes, a Window Opens
Summary
Project Zero documents a 0-click exploit chain targeting Google Pixel 10, updating the Dolby exploit for Pixel 10 and leveraging a VPU driver vulnerability to map kernel memory and achieve arbitrary read/write. The write-up discusses patch timing and driver security implications, highlighting both improvements in patch triage and ongoing risks from Android drivers.