CVE 9.8 CRITICAL

CVE-2025-36937_CVE-2025-36937

January 5, 2026 invoker category_cve

9.8 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

In AudioDecoder::HandleProduceRequest of audio_decoder.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.

AI Analysis

Out-of-bounds write vulnerability in AudioDecoder::HandleProduceRequest due to incorrect bounds check, allowing remote code execution without user interaction.

Basic Information

ID CVE-2025-36937

Source Google_Devices

Published Dec 11, 2025 at 19:35

Modified Jan 5, 2026 at 20:59

Affected Product

Vendor Google

Product Android

Version Android kernel

Affected Versions Google Android Android kernel

CWE Classification

CWE-787

AI Assessment

AI Score 9.8 / 10

AI Severity Critical

Vendor Google

Product Android kernel

Version Android kernel

References

source.android.com /security/bulletin/pixel/2025-12-01

{
    "lastseen": "",
    "description": "In AudioDecoder::HandleProduceRequest of audio_decoder.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.",
    "published": "2025-12-11T19:35:50.458Z",
    "modified": "2026-01-05T20:59:02.653Z",
    "type": "cve",
    "title": "CVE-2025-36937",
    "source": "Google_Devices",
    "references": "https://source.android.com/security/bulletin/pixel/2025-12-01",
    "id": "CVE-2025-36937",
    "bulletinFamily": "",
    "cwe": [
        "CWE-787"
    ],
    "cvelist": null,
    "sourceData": "Google Android Android kernel",
    "sourceHref": "",
    "cvss": {
        "score": 9.8,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Android",
    "version": "Android kernel",
    "vendor": "Google",
    "ai_description": "Out-of-bounds write vulnerability in AudioDecoder::HandleProduceRequest due to incorrect bounds check, allowing remote code execution without user interaction.",
    "ai_severity": "Critical",
    "ai_vendor": "Google",
    "ai_product": "Android kernel",
    "ai_version": "Android kernel",
    "ai_score": 9.8
}

💭 Join the Security Discussion ❌ Cancel Reply