CVE 9.3 CRITICAL

CVE-2026-0106_CVE-2026-0106

February 5, 2026 invoker category_cve

9.3 / 10

CRITICAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Description

In vpu_mmap of vpu_ioctl, there is a possible arbitrary address mmap due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

AI Analysis

Arbitrary address mmap vulnerability due to missing bounds check in vpu_mmap of vpu_ioctl, leading to local escalation of privilege

Basic Information

ID CVE-2026-0106

Source Google_Devices

Published Feb 5, 2026 at 20:19

Modified Feb 5, 2026 at 20:43

Affected Product

Vendor Google

Product Android

Version Android kernel

Affected Versions Google Android Android kernel

CWE Classification

CWE-787 CWE-125 CWE-119

AI Assessment

AI Score 9.3 / 10

AI Severity Critical

Vendor Google

Product Android kernel

Version Android kernel

References

source.android.com /security/bulletin/pixel/2026-02-01

{
    "lastseen": "",
    "description": "In vpu_mmap of vpu_ioctl, there is a possible arbitrary address mmap due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.",
    "published": "2026-02-05T20:19:20.588Z",
    "modified": "2026-02-05T20:43:25.501Z",
    "type": "cve",
    "title": "CVE-2026-0106",
    "source": "Google_Devices",
    "references": "https://source.android.com/security/bulletin/pixel/2026-02-01",
    "id": "CVE-2026-0106",
    "bulletinFamily": "",
    "cwe": [
        "CWE-787",
        "CWE-125",
        "CWE-119"
    ],
    "cvelist": null,
    "sourceData": "Google Android Android kernel",
    "sourceHref": "",
    "cvss": {
        "score": 9.3,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Android",
    "version": "Android kernel",
    "vendor": "Google",
    "ai_description": "Arbitrary address mmap vulnerability due to missing bounds check in vpu_mmap of vpu_ioctl, leading to local escalation of privilege",
    "ai_severity": "Critical",
    "ai_vendor": "Google",
    "ai_product": "Android kernel",
    "ai_version": "Android kernel",
    "ai_score": 9.3
}

💭 Join the Security Discussion ❌ Cancel Reply