Description
In multiple functions of mem_protect.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Published: 2026-03-02
Score: 8.4 High
EPSS: < 1% Very Low
KEV: No
Impact: Local Privilege Escalation
Action: Apply Patch
AI Analysis

Impact

The vulnerability resides in several functions within mem_protect.c of the Android kernel. An integer overflow can trigger an out‑of‑bounds write, which grants an attacker local privilege escalation without requiring any additional execution privileges. The flaw exists even when no user interaction is needed, indicating that any user‑mode process on the system could potentially exploit it.

Affected Systems

The affected product is the Android operating system as identified by the kernel source repository. Google’s Android includes the vulnerable kernel code. Specific Android version identifiers are not listed in the CVE, so all builds incorporating the unpatched mem_protect.c routines are considered vulnerable.

Risk and Exploitability

The CVSS score of 8.4 indicates high severity. The EPSS score of <1% reflects a low probability of exploitation in the wild. The vulnerability is not yet listed in the CISA KEV catalog. Because no user interaction is required, the attack vector is local; an attacker who can execute code in an unprivileged context can leverage the out‑of‑bounds write to elevate privileges.

Generated by OpenCVE AI on April 16, 2026 at 14:21 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the most recent Android OS update that contains the mem_protect.c integer overflow fix.
  • Ensure SELinux is enabled and running in enforcing mode to contain any local privilege escalation attempts.
  • Reduce local user privileges by disabling non‑essential services and applications that can execute arbitrary code until the patch is applied.

Generated by OpenCVE AI on April 16, 2026 at 14:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 16 Apr 2026 14:45:00 +0000

Type Values Removed Values Added
Title Out‑of‑Bounds Write in mem_protect.c Allows Local Privilege Escalation

Fri, 06 Mar 2026 04:30:00 +0000

Type Values Removed Values Added
References

Fri, 06 Mar 2026 04:15:00 +0000

Type Values Removed Values Added
References

Tue, 03 Mar 2026 15:30:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google android
CPEs cpe:2.3:o:google:android:-:*:*:*:*:*:*:*
Vendors & Products Google
Google android

Mon, 02 Mar 2026 21:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-190
Metrics cvssV3_1

{'score': 8.4, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Mon, 02 Mar 2026 19:00:00 +0000

Type Values Removed Values Added
Description In multiple functions of mem_protect.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
References

Subscriptions

Google Android
cve-icon MITRE

Status: PUBLISHED

Assigner: google_android

Published:

Updated: 2026-03-06T03:53:59.862Z

Reserved: 2025-10-15T15:39:13.817Z

Link: CVE-2026-0031

cve-icon Vulnrichment

Updated: 2026-03-02T20:49:51.396Z

cve-icon NVD

Status : Modified

Published: 2026-03-02T19:16:31.330

Modified: 2026-03-06T04:16:06.120

Link: CVE-2026-0031

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-16T14:30:16Z

Weaknesses