The vulnerability is a heap buffer overflow in multiple functions of sdp_discovery.cc. The flaw can allow an attacker to overwrite memory and execute arbitrary code with the same privileges as the Android system, resulting in full compromise of the targeted device. No privilege escalation is required and the description indicates that user interaction is not needed, meaning the attack can be performed unattended.

The flaw affects all Google Android devices that include the vulnerable implementation of sdp_discovery.cc. Because the vendor does not specify exact build versions, any device running an unpatched Android build that contains this SDP discovery code is potentially at risk. Devices with Bluetooth or other interfaces that support Service Discovery Protocol are the most likely to receive traffic that could trigger the overflow. Without precise version data, the entire Android ecosystem running the legacy SDP discovery service should be examined.

The absence of an EPSS score does not diminish the intrinsic risk; the classic heap buffer overflow, combined with the lack of user interaction requirement, indicates a high likelihood of exploitation. The CVSS score of 8 indicates high severity. Based on the description, it is inferred that an attacker can send crafted SDP packets over Bluetooth, Wi‑Fi or other transports that expose SDP discovery to trigger the overflow from a remote or local network. The fact that the vulnerability has not yet been listed in CISA KEV reflects its recent discovery, but its remote nature further amplifies the potential impact, compromising confidentiality, integrity, and availability of the device.