CVE-2026-0115

CWE-13004 documents4 sources
Severity
2.1LOW
EPSS
0.0%
top 99.32%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Google Android
Timeline
PublishedMar 10

Description

In Trusted Execution Environment, there is a possible key leak due to side channel information disclosure. This could lead to physical information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:NExploitability: 0.7 | Impact: 1.4

Affected Packages2 packages

Android:unknown:Pixel-family specific:0Pixel-family specific:2026-03-05
CVEListV5google/androidAndroid kernel

🔴Vulnerability Details

3
GHSA
GHSA-x34p-qwfp-988f: In Trusted Execution Environment, there is a possible key leak due to side channel information disclosure2026-03-10
CVEList
CVE-2026-0115: In Trusted Execution Environment, there is a possible key leak due to side channel information disclosure2026-03-10
OSV
CVE-2026-0115: In Trusted Execution Environment, there is a possible key leak due to side channel information disclosure2026-03-01
CVE-2026-0115 (LOW CVSS 2.1) | In Trusted Execution Environment | cvebase.io