CVE-2026-0128

UNKNOWN NVD

CVSS Score 0

Severity UNKNOWN

Published Jun 16, 2026

Vendor unknown

Description

In RtcpFbPacket::decodeRtcpFbPacket, there is a possible out of bounds read due to an integer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.

References

https://source.android.com/docs/security/bulletin/pixel/2026/2026-06-01