PatchSiren cyber security CVE debrief
CVE-2026-0136 Google CVE debrief
CVE-2026-0136 is a vulnerability in Modem that could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. The vulnerability is due to a possible out of bounds read caused by a missing bounds check.
- Vendor
- Product
- Android
- CVSS
- MEDIUM 6.5
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-16
- Original CVE updated
- 2026-06-17
- Advisory published
- 2026-06-16
- Advisory updated
- 2026-06-17
Who should care
Users of affected Android devices
Technical summary
In Modem, there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.
Defensive priority
High
Recommended defensive actions
- Apply patches or updates from the vendor as soon as they become available.
- Use secure communication protocols to protect against exploitation.
Evidence notes
Vendor: Unknown Vendor, Product: Android
Official resources
-
CVE-2026-0136 CVE record
CVE.org
-
CVE-2026-0136 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2026-0136 was published on 2026-06-16T20:16:24.440Z and modified on 2026-06-16T20:42:25.013Z.