Despite the fact that not all Xiaomi, Redmi, and Poco devices have received the March 2025 security patch, Google has already released an April security bulletin that addresses important fixes for various critical and high-priority vulnerabilities.
By including such security patches in the HyperOS firmware, Xiaomi is taking a big step to ensure reliable protection of its entire ecosystem, protecting users from possible security threats and unauthorized intrusion.
Table of contents
What is included in the April 2025 security update?
The April 2025 update fixes a wide range of vulnerabilities, prioritizing especially critical ones that may endanger device security. Four of this month’s critical vulnerabilities include:
- CVE-2025-22429
- CVE-2025-26416
- CVE-2025-22423
- CVE-2024-45551
In addition, the update fixes 36 vulnerabilities that are highly vulnerable.:
Vulnerabilities in system frameworks
- Abuse of media structures
- Disadvantages of core components
- Device-specific code vulnerabilities
Details of key vulnerabilities
Among the most critical fixes was CVE—2025-22429, which potentially allowed remote attackers to run arbitrary code with administrator rights. It should be particularly noted that the vulnerability could be exploited without any high level of user interaction.
The patch also fixes the vulnerability CVE-2025-26416, which created the risk of privilege escalation by providing attackers with system-level access to affected devices.
Compatibility and deployment
Xiaomi has not yet started releasing the April builds of HyperOS 2 and HyperOS 2.1 with security fixes. Users will have to wait for new HyperOS updates.
Why is this update important?
Xiaomi’s early deployment of the April 2025 security patch demonstrates the company’s commitment to user security and privacy in the device ecosystem.
Security experts recommend installing the update immediately after it becomes available for your Xiaomi, Redmi or Poco to protect it from new vulnerabilities.
P.S. For up-to-date news on the Xiaomi HyperOS proprietary system, as well as detailed instructions and recommendations for configuring it, see this section.