Denial of Service Vulnerability in Android Runtime Components by Google
CVE-2026-0043

Currently unrated

Key Information:

Vendor: Google
Status: Android
Vendor: CVE Published:; 1 June 2026

What is CVE-2026-0043?

This vulnerability is manifested in multiple functions of ubsan_throwing_runtime.cpp, which can potentially lead to a persistent denial of service due to an integer overflow. The exploitation of this vulnerability does not require any additional execution privileges, and user interaction is not necessary, highlighting a significant risk for Android users and systems dependent on this runtime.

Affected Version(s)

Android 16-qpr2

Android 16

Android 15

References

https://source.android.com/docs/security/bulletin/2026/20...

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 1, 2026
Vulnerability Reserved
Oct 15, 2025

CVE-2026-0043 Data

JSON