Xiaomi has officially started rolling out the May 2026 Android security update for several Xiaomi, REDMI, and POCO devices. The latest patch includes fixes for a critical remote code execution (RCE) vulnerability tracked as CVE-2026-0073, which is considered one of the most serious Android security issues patched this year.
The first wave of updates has already appeared across Global, EEA, India, Russia, and Taiwan regions, while additional Xiaomi HyperOS-supported devices are expected to receive the update very soon.
Critical Android Vulnerability Fixed in May 2026 Patch
According to the Android Security Bulletin, the May 2026 patch resolves CVE-2026-0073, a high-risk remote code execution vulnerability. The flaw is especially dangerous because it reportedly allows attacks without requiring direct user interaction.
Key Security Improvements
- Fixes critical RCE vulnerability (CVE-2026-0073)
- Vulnerability can potentially be triggered via proximity-based attacks
- No manual interaction from users may be required
- Google Play System Updates may provide partial mitigation for
adbd
This makes the May 2026 patch highly important for users running Xiaomi HyperOS devices on public networks or using wireless debugging features.
Devices Receiving Xiaomi May 2026 Security Patch
The following devices have already started receiving the May 2026 Android security update:
Xiaomi Devices
- Xiaomi 15 Ultra
- Global OS version: OS3.0.301.0.WOAMIXM
- Xiaomi 15T
- Russia Global: OS3.0.300.0.WOERUXM
- Taiwan Global: OS3.0.300.0.WOETWXM
REDMI Devices
- REDMI 15A 5G
- India Global OS version: OS3.0.9.0.WBWINXM
- REDMI 17 5G
- India Global OS version: OS3.0.9.0.WBWINXM
- REDMI A7 Pro 5G
- India Global OS version: OS3.0.9.0.WBWINXM
- REDMI Pad 2 Pro 5G
- EEA Global OS version: OS3.0.6.0.WPXEUXM
POCO Devices
- POCO C85x India Global OS version: OS3.0.9.0.WBWINXM
Xiaomi HyperOS Security Rollout Has Started
The rollout currently appears limited to selected regions and pilot builds, which is standard for Xiaomi HyperOS staged deployments. More Xiaomi, REDMI, and POCO devices are expected to join the rollout list throughout May 2026.
Users can manually check for the update by going to:
Settings → About phone → Xiaomi HyperOS → Check for updates
Why This Update Matters
Unlike smaller monthly patches, the May 2026 release addresses a vulnerability capable of enabling remote code execution under certain conditions. Because the flaw reportedly requires little to no user interaction, delaying the update could expose devices to elevated security risks.
For Xiaomi users who frequently connect to public Wi-Fi networks, use wireless debugging, or install third-party applications, installing the latest patch is strongly recommended.
Xiaomi’s Security Strategy Continues to Improve
Xiaomi has significantly accelerated its Xiaomi HyperOS security deployment speed over the past year, especially for flagship and Global market devices. The company is now pushing monthly Android security patches faster across Xiaomi, REDMI, and POCO ecosystems.
Users can track all newly released Xiaomi HyperOS security updates through MemeOSUpdates Security Patch Tracker and the MemeOS Enhancer app, which continuously monitors rollout status, firmware changes, and new regional releases.
