CVE-2026-0126
published 2026-06-16CVE-2026-0126: In WC-Radio, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution…
PriorityP264critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.28%
19.4th percentile
In WC-Radio, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| android | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
In WC-Radio, there is a possible out of bounds write due to a missing bounds check.
ghsa_unreviewed·2026-06-16
CVE-2026-0126 In WC-Radio, there is a possible out of bounds write due to a missing bounds check.
In WC-Radio, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.
VulDB
Google Android WC-Radio out-of-bounds write
vuldb·2026-06-16
CVE-2026-0126 Google Android WC-Radio out-of-bounds write
A vulnerability was found in Google Android. It has been declared as critical. This affects an unknown part of the component WC-Radio. Such manipulation leads to out-of-bounds write.
This vulnerability is traded as CVE-2026-0126. The attack may be launched remotely. There is no exploit available.
No detection rules found.
No public exploits indexed.
2026-06-16
Published