Out-of-Bounds Read Vulnerability in Android Pixels and Nexus Devices
CVE-2026-0157
4.3MEDIUM
What is CVE-2026-0157?
A notable out-of-bounds read vulnerability exists within the RtcpHeader::decodeRtcpHeader method of the Android operating system. The issue arises from a lack of proper bounds checking, potentially enabling attackers to read sensitive information from memory. This vulnerability allows for remote information disclosure without the need for user interaction or additional execution privileges, making it a significant concern for users of Android Pixel and Nexus devices.
Affected Version(s)
Android Android kernel