CVE-2025-36907
published 2025-09-04CVE-2025-36907: In draw_surface_image() of abl/android/lib/draw/draw.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local…
high7.3CVSS 3.1
AVLACLPRLUIRSUCHIHAH
In draw_surface_image() of abl/android/lib/draw/draw.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege via USB fastboot, after a bootloader unlock, with no additional execution privileges needed. User interaction is needed for exploitation.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — |
GHSA
GHSA-hfgv-9cq7-qp2v: In draw_surface_image() of abl/android/lib/draw/draw
ghsa_unreviewed·2025-09-04
CVE-2025-36907 [HIGH] CWE-122 GHSA-hfgv-9cq7-qp2v: In draw_surface_image() of abl/android/lib/draw/draw
In draw_surface_image() of abl/android/lib/draw/draw.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege via USB fastboot, after a bootloader unlock, with no additional execution privileges needed. User interaction is needed for exploitation.
OSV
CVE-2025-36907: In draw_surface_image() of abl/android/lib/draw/draw
osv·2025-09-01
CVE-2025-36907 CVE-2025-36907: In draw_surface_image() of abl/android/lib/draw/draw
In draw_surface_image() of abl/android/lib/draw/draw.c, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege via USB fastboot, after a bootloader unlock, with no additional execution privileges needed. User interaction is needed for exploitation.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2025-09-04
Published