CVE-2025-36903
published 2025-09-04CVE-2025-36903: In lwis_io_buffer_write, there is a possible OOB read/write due to improper input validation. This could lead to local escalation of privilege with no…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
In lwis_io_buffer_write, there is a possible OOB read/write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — |
GHSA
GHSA-42g5-9rq6-mwjw: In lwis_io_buffer_write, there is a possible OOB read/write due to improper input validation
ghsa_unreviewed·2025-09-04
CVE-2025-36903 [HIGH] CWE-787 GHSA-42g5-9rq6-mwjw: In lwis_io_buffer_write, there is a possible OOB read/write due to improper input validation
In lwis_io_buffer_write, there is a possible OOB read/write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
OSV
CVE-2025-36903: In lwis_io_buffer_write of TBD, there is a possible OOB read/write due to improper input validation
osv·2025-09-01
CVE-2025-36903 CVE-2025-36903: In lwis_io_buffer_write of TBD, there is a possible OOB read/write due to improper input validation
In lwis_io_buffer_write of TBD, there is a possible OOB read/write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-09-04
Published