CVE-2026-0161 | In numberOfReportBlocks of RtpSession.cpp, there is a possib… | CVSS 8.8 HIGH

Description

In numberOfReportBlocks of RtpSession.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

Metadata

CVE ID: CVE-2026-0161
State: PUBLISHED
Assigner: Google_Devices
Reserved: 2025-10-23 08:44 UTC
Published: 2026-06-16 18:51 UTC
Last updated: 2026-06-17 03:56 UTC
Primary CWE: CWE-190
CWE-190 Integer Overflow or Wraparound
Vendor / Product: Google / Android
Sources: cve.org · NVD

Severity & Metrics

8.8 HIGH CVSS 3.1

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

SSVC — CISA Coordinator

Exploitation: none
Automatable: no
Tech. Impact: total

Affected products (1)

Vendor	Product	Platform	Versions
Google	Android	—	Android kernel

Weakness (CWE)

CWE	Source	Description
—	cna	Elevation of privilege
CWE-190	adp	CWE-190 Integer Overflow or Wraparound
CWE-787	adp	CWE-787 Out-of-bounds Write

CVSS scores (1)

Score	Severity	Version	Source	Vector
8.8	HIGH	3.1	adp	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

References (1)

https://source.android.com/docs/security/bulletin/pixel/2026/2026-06-01