Out of Bounds Read in SAEMM_RadioMessageCodec.c Affects Android Pixel Devices
CVE-2024-56189

Currently unrated

Key Information:

Vendor: Google
Status: Android
Vendor: CVE Published:; 4 September 2025

What is CVE-2024-56189?

A comprehensive vulnerability has been identified in the SAEMM_RadioMessageCodec.c component of Android Pixel devices. This issue arises due to a missing bounds check in the SAEMM_DiscloseMsId function, potentially allowing an out of bounds read. Consequently, this vulnerability could result in the unauthorized disclosure of information after user authentication. Notably, no additional execution privileges are required for exploitation, which heightens the risk of information exposure without the need for user interaction.

Affected Version(s)

Android Android kernel

References

https://source.android.com/security/bulletin/pixel/2025-0...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 4, 2025
Vulnerability Reserved
Dec 18, 2024

Google

What is CVE-2024-56189?

Affected Version(s)

References

Timeline