Description
In ImsMediaBitReader::ReadByteBuffer, there is a possible OOB read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
Published: 2026-06-16
Score: 4.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

ImsMediaBitReader::ReadByteBuffer performs an out‑of‑bounds read because it lacks a bounds check. The missing check allows an attacker to read beyond the intended buffer, exposing potentially sensitive data. This vulnerability can be triggered remotely and does not require the user to take any action or provide elevated privileges, meaning an attacker could obtain information from a device in the field.

Affected Systems

The flaw is found in Google’s Android operating system. Specific affected versions are not listed in the advisory, so any release prior to the fix should be considered potentially vulnerable.

Risk and Exploitability

The CVSS score of 4.3 indicates moderate risk, and the EPSS score of less than 1 % shows a very low estimated probability of exploitation. Because the issue leads only to information disclosure and the attack does not need user interaction, the overall threat is low. The vulnerability is not recorded in CISA’s KEV catalog. Attackers would need only to target a device that can deliver malicious data to the ImMediaBitReader component, which is typically used for parsing media streams sent over network or via messages.

Generated by OpenCVE AI on June 17, 2026 at 21:14 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the device to the latest Android release that includes the security patch for this out‑of‑bounds read.
  • Enable automatic security updates to ensure the device receives any future fixes promptly.
  • Minimize exposure to untrusted media content by blocking or filtering external multimedia streams until a patch is applied.

Generated by OpenCVE AI on June 17, 2026 at 21:14 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 16 Jun 2026 21:30:00 +0000

Type Values Removed Values Added
Weaknesses CWE-120
CWE-125
Metrics cvssV3_1

{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 16 Jun 2026 21:00:00 +0000

Type Values Removed Values Added
First Time appeared Google
Google android
Vendors & Products Google
Google android

Tue, 16 Jun 2026 19:30:00 +0000

Type Values Removed Values Added
Description In ImsMediaBitReader::ReadByteBuffer, there is a possible OOB read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
References

Subscriptions

Google Android
cve-icon MITRE

Status: PUBLISHED

Assigner: Google_Devices

Published:

Updated: 2026-06-16T20:30:57.394Z

Reserved: 2025-10-23T08:44:49.025Z

Link: CVE-2026-0155

cve-icon Vulnrichment

Updated: 2026-06-16T19:50:45.550Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-16T20:16:26.150

Modified: 2026-06-16T20:42:25.013

Link: CVE-2026-0155

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-16T20:45:02Z

Weaknesses
  • CWE-120

    Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

  • CWE-125

    Out-of-bounds Read