CVE-2025-26441 — Out-of-bounds Read

Vendor	Product	Version range	Fixed in
google	android	—	—
google	android	—	—
google	android	—	—
google	android	—	—
google	android	—	—
google	android	—	—
google	android	—	—
platform	packages_modules_bluetooth	>= 13:0 < 13:2025-06-01	13:2025-06-01
platform	packages_modules_bluetooth	>= 14:0 < 14:2025-06-01	14:2025-06-01
platform	packages_modules_bluetooth	>= 15:0 < 15:2025-06-01	15:2025-06-01
platform	packages_modules_bluetooth	>= 16-next:0 < 16-next:2025-06-01	16-next:2025-06-01

GHSA

GHSA-q3q2-6mm5-fxcr: In add_attr of sdp_discovery

ghsa_unreviewed·2025-09-05

CVE-2025-26441 [MEDIUM] CWE-125 GHSA-q3q2-6mm5-fxcr: In add_attr of sdp_discovery In add_attr of sdp_discovery.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

OSV

CVE-2025-26441: In add_attr of sdp_discovery

osv·2025-06-01

CVE-2025-26441 CVE-2025-26441: In add_attr of sdp_discovery In add_attr of sdp_discovery.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

Android

CVE-2025-26441: Android Security Bulletin 2025-06-01 CVE: CVE-2025-26441 Severity: HIGH Type: ID Affected AOSP versions: 13, 14, 15 References: A-367274727

vendor_android·2025-06-01·CVSS 6.5

CVE-2025-26441 [MEDIUM] CVE-2025-26441: Android Security Bulletin 2025-06-01 CVE: CVE-2025-26441 Severity: HIGH Type: ID Affected AOSP versions: 13, 14, 15 References: A-367274727 Android Security Bulletin 2025-06-01 CVE: CVE-2025-26441 Severity: HIGH Type: ID Affected AOSP versions: 13, 14, 15 References: A-367274727

CVE-2025-26441: In add_attr of sdp_discovery.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no…

Affected