Out of Bounds Write Vulnerability in RtpSession Component of Android Products
CVE-2026-0161
8.8HIGH
What is CVE-2026-0161?
A vulnerability in the RtpSession component's numberOfReportBlocks function allows for a potential out of bounds write due to an integer overflow. This could enable an attacker to escalate their privileges without requiring additional execution rights, and no user interaction is necessary for exploitation. Organizations using the affected Android releases should take immediate action to mitigate this risk.
Affected Version(s)
Android Android kernel