Description
In iavb_parse_key_data of avb_rsa.c, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
Published: 2026-06-16
Score: 3.3 Low
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A buffer over‑read occurs in the iavb_parse_key_data function of avb_rsa.c due to inadequate input validation, allowing the application to read memory beyond its intended bounds. The vulnerability does not provide an execution path or privilege escalation; however, the leaked data can expose sensitive internal information. This weakness is reflected in the associated CWE‑125 and CWE‑20 designations.

Affected Systems

Commercial Android devices distributed by Google, as outlined in the security bulletin. Specific product versions are not disclosed in the public data, so administrators should review all devices for potential exposure.

Risk and Exploitability

The CVSS score of 3.3 indicates low severity, and the EPSS score of less than 1% suggests that exploitation is unlikely at present. The vulnerability is not listed in CISA KEV catalog, further reducing its immediate risk. Exploit requires local access and crafted input data, with no user interaction needed once the malformed key is processed.

Generated by OpenCVE AI on June 17, 2026 at 22:26 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest OTA security update from Google that addresses CVE-2026-0142.
  • If the update is not yet available, postpone deployment of the affected devices until the vendor releases a patch or consult Google’s mitigation guidance.
  • If feasible, limit the exposure of AVB key processing by restricting permissions or isolating the component in a sandboxed environment.

Generated by OpenCVE AI on June 17, 2026 at 22:26 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 16 Jun 2026 21:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-125
CWE-20
Metrics cvssV3_1

{'score': 3.3, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Tue, 16 Jun 2026 20:45:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google android
Vendors & Products Google
Google android

Tue, 16 Jun 2026 19:30:00 +0000

Type Values Removed Values Added
Description In iavb_parse_key_data of avb_rsa.c, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
References

cve-icon MITRE

Status: PUBLISHED

Assigner: Google_Devices

Published:

Updated: 2026-06-16T20:52:00.237Z

Reserved: 2025-10-23T08:43:48.111Z

Link: CVE-2026-0142

cve-icon Vulnrichment

Updated: 2026-06-16T20:51:52.296Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-16T20:16:24.997

Modified: 2026-06-16T20:42:25.013

Link: CVE-2026-0142

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-17T22:30:13Z

Weaknesses