Description
In RtcpByePacket::decodeByePacket, there is a possible due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.
Published: 2026-06-16
Score: 3.5 Low
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A missing bounds check in the function that decodes RTCP BYE packets in Google Android can allow an attacker to read beyond the intended buffer, potentially exposing sensitive data to an unauthenticated user. This flaw corresponds to a buffer over‑read weakness and does not grant additional privileges or code execution. The impact is limited to information disclosure, but it can still compromise confidentiality of data that the device handles during network communication.

Affected Systems

The vulnerability affects Android operating systems distributed by Google. No specific OS versions are listed, so any device running a version prior to the latest security patch may be susceptible. All Android devices that process RTCP BYE packets, such as phones and tablets, are potentially impacted.

Risk and Exploitability

The CVSS score of 3.5 indicates a low overall severity. The EPSS score is reported as less than 1%, meaning that exploitation is considered unlikely at present. The vulnerability is not listed in the CISA KEV catalog. Because the flaw requires a malformed RTCP BYE packet and user interaction to trigger, exploitation would likely involve an attacker sending a crafted packet to a device that is actively processing network media, such as during a video call or streaming session. No publicly available exploitation code is known, and the limited attack surface reduces the risk of widespread exploitation.

Generated by OpenCVE AI on June 17, 2026 at 20:31 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest Android security patch released by Google that addresses the RTCP BYE packet decoding issue.
  • Enable automatic OS updates on all Android devices so that future patches are installed without manual intervention.
  • Configure device or network firewalls to limit inbound RTCP traffic or block multicast streams, reducing the chances that a malicious RTCP BYE packet can reach vulnerable code.

Generated by OpenCVE AI on June 17, 2026 at 20:31 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 18 Jun 2026 04:45:00 +0000

Type Values Removed Values Added
Title Missing Bounds Check in RTCP BYE Packet Decode Leads to Information Disclosure

Tue, 16 Jun 2026 22:30:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google android
Weaknesses CWE-120
Vendors & Products Google
Google android
Metrics cvssV3_1

{'score': 3.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Tue, 16 Jun 2026 19:30:00 +0000

Type Values Removed Values Added
Description In RtcpByePacket::decodeByePacket, there is a possible due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.
References

cve-icon MITRE

Status: PUBLISHED

Assigner: Google_Devices

Published:

Updated: 2026-06-16T20:47:58.127Z

Reserved: 2025-10-23T08:43:30.690Z

Link: CVE-2026-0129

cve-icon Vulnrichment

Updated: 2026-06-16T20:47:54.368Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-16T20:16:23.813

Modified: 2026-06-16T20:42:25.013

Link: CVE-2026-0129

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-17T20:45:03Z

Weaknesses
  • CWE-120

    Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')