CVE-2026-0131_CVE-2026-0131

7.3 / 10

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Description

In RtpPacket::decodePacket, there is a possible out of bounds access due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.

Basic Information

ID CVE-2026-0131

Source Google_Devices

Published Jun 16, 2026 at 18:51

Modified Jun 16, 2026 at 20:45

Affected Product

Vendor Google

Product Android

Version Android kernel

Affected Versions Google Android Android kernel

CWE Classification

CWE-125 CWE-190

References

source.android.com /docs/security/bulletin/pixel/2026/2026-06-01

{
    "lastseen": "",
    "description": "In RtpPacket::decodePacket, there is a possible out of bounds access due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.",
    "published": "2026-06-16T18:51:04.859Z",
    "modified": "2026-06-16T20:45:27.352Z",
    "type": "cve",
    "title": "CVE-2026-0131",
    "source": "Google_Devices",
    "references": "https://source.android.com/docs/security/bulletin/pixel/2026/2026-06-01",
    "id": "CVE-2026-0131",
    "bulletinFamily": "",
    "cwe": [
        "CWE-125",
        "CWE-190"
    ],
    "cvelist": null,
    "sourceData": "Google Android Android kernel",
    "sourceHref": "",
    "cvss": {
        "score": 7.3,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Android",
    "version": "Android kernel",
    "vendor": "Google",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}