Google Android vulnerabilities

CVE-2025-71254 [HIGH] CWE-20 CVE-2025-71254: In Modem IMS, there is a possible improper input validation. This could lead to remote denial of ser In Modem IMS, there is a possible improper input validation. This could lead to remote denial of service with no additional execution privileges needed.

CVE-2025-71255 [HIGH] CWE-20 CVE-2025-71255: In Modem IMS, there is a possible improper input validation. This could lead to remote denial of ser In Modem IMS, there is a possible improper input validation. This could lead to remote denial of service with no additional execution privileges needed.

CVE-2025-71253 [HIGH] CWE-20 CVE-2025-71253: In Modem IMS, there is a possible improper input validation. This could lead to remote denial of ser In Modem IMS, there is a possible improper input validation. This could lead to remote denial of service with no additional execution privileges needed.

CVE-2025-71251 [HIGH] CVE-2025-71251: In IMS, there is a possible system crash due to improper input validation. This could lead to remote In IMS, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed.

CVE-2025-71252 [HIGH] CWE-20 CVE-2025-71252: In Modem IMS, there is a possible improper input validation. This could lead to remote denial of ser In Modem IMS, there is a possible improper input validation. This could lead to remote denial of service with no additional execution privileges needed.

CVE-2025-71256 [HIGH] CWE-20 CVE-2025-71256: In nr modem, there is a possible improper input validation. This could lead to remote denial of serv In nr modem, there is a possible improper input validation. This could lead to remote denial of service with no additional execution privileges needed.

CVE-2026-0073 [HIGH] CWE-303 CVE-2026-0073: In adbd_tls_verify_cert of auth.cpp, there is a possible bypass of wireless ADB mutual authenticatio In adbd_tls_verify_cert of auth.cpp, there is a possible bypass of wireless ADB mutual authentication due to a logic error in the code. This could lead to remote (proximal/adjacent) code execution as the shell user with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2026-0049 [MEDIUM] CWE-400 CVE-2026-0049: In onHeaderDecoded of LocalImageResolver.java, there is a possible persistent denial of service due In onHeaderDecoded of LocalImageResolver.java, there is a possible persistent denial of service due to resource exhaustion. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2025-48651 [MEDIUM] CWE-20 CVE-2025-48651: In importWrappedKey of KMKeymasterApplet.java, there is a possible way access keys that should be re In importWrappedKey of KMKeymasterApplet.java, there is a possible way access keys that should be restricted due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2026-0114 [CRITICAL] CWE-787 CVE-2026-0114: In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead In Modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2026-0111 [CRITICAL] CWE-787 CVE-2026-0111: In ns_GetUserData of ns_SmscbUtilities.c, there is a possible out of bounds write due to an incorrec In ns_GetUserData of ns_SmscbUtilities.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2026-0116 [CRITICAL] CWE-787 CVE-2026-0116: In __mfc_handle_released_buf of mfc_core_isr.c, there is a possible out of bounds write due to a mis In __mfc_handle_released_buf of mfc_core_isr.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2026-0120 [CRITICAL] CWE-787 CVE-2026-0120: In modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead In modem, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2026-0124 [CRITICAL] CWE-787 CVE-2026-0124: There is a possible out of bounds write due to a missing bounds check. This could lead to local esca There is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2026-0113 [CRITICAL] CWE-787 CVE-2026-0113: In ns_GetUserData of ns_SmscbUtilities.c, there is a possible out of bounds write due to an incorrec In ns_GetUserData of ns_SmscbUtilities.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2026-0110 [CRITICAL] CWE-120 CVE-2026-0110: In MM_DATA_IND of cn_NrSmMsgHdlrFromMM.cpp, there is a possible EoP due to memory corruption. This c In MM_DATA_IND of cn_NrSmMsgHdlrFromMM.cpp, there is a possible EoP due to memory corruption. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2025-48611 [HIGH] CWE-120 CVE-2025-48611: In DeviceId of DeviceId.java, there is a possible desync in persistence due to a missing bounds chec In DeviceId of DeviceId.java, there is a possible desync in persistence due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2026-0109 [HIGH] CWE-754 CVE-2026-0109: In dhd_tcpdata_info_get of dhd_ip.c, there is a possible Denial of Service due to a precondition che In dhd_tcpdata_info_get of dhd_ip.c, there is a possible Denial of Service due to a precondition check failure. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2026-0112 [HIGH] CWE-362 CVE-2026-0112: In vpu_open_inst of vpu_ioctl.c, there is a possible use after free due to a race condition. This co In vpu_open_inst of vpu_ioctl.c, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

CVE-2026-0123 [HIGH] CWE-787 CVE-2026-0123: In EfwApTransport::ProcessRxRing of efw_ap_transport.cc, there is a possible out of bounds write due In EfwApTransport::ProcessRxRing of efw_ap_transport.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.