← volver
CVE-2026-0095

CVE-2026-0095

CVSS 8 HIGHEPSS 0.1%CWE-190
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 8EPSS 0.1%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
01 jun 2026Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
In l2c_fcr_clone_buf of l2c_fcr.cc, there is a possible way to trigger controlled heap corruption within the privileged Bluetooth process due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Productos afectados
Google · Android