Impact
An out‑of‑bounds read exists in the NrmmMsgCodec::DecodeUPUTransparentContext function of the Android decoder. The memory corruption can trigger a crash in the communication processor, resulting in a denial of service. The vulnerability is a classic buffer overread (CWE‑125) and does not require escalation of privileges or user interaction.
Affected Systems
The flaw affects Android devices manufactured by Google. The precise OS versions are not enumerated in the advisory, but the issue is documented in the 2026‑06 security bulletin for Pixel devices.
Risk and Exploitability
The CVSS score of 6.5 signals a high severity for a denial of service. The vulnerability is a buffer overread (CWE‑125) that can crash the communication processor without requiring elevated privileges or user interaction. The EPSS score is below 1 %, reflecting a low exploitation probability in the wild. The CVE is not listed in the CISA KEV catalog, and no active exploits are known. The advisory does not disclose a specific attack vector; thus the method an attacker would use to trigger the crash remains unspecified, but any remote interaction capable of invoking the affected decoder could potentially be exploited.
OpenCVE Enrichment