PatchSiren cyber security CVE debrief
CVE-2026-0151 Google CVE debrief
CVE-2026-0151 is a vulnerability in IntfGraphCreate of intfgraph.c, which could lead to an out of bounds write due to an integer overflow. This could result in remote code execution with no additional execution privileges needed. User interaction is not required for exploitation. The CVE was published on {cvePublishedAt} and last modified on {cveModifiedAt}.
- Vendor
- Product
- Android
- CVSS
- HIGH 8.8
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-16
- Original CVE updated
- 2026-06-17
- Advisory published
- 2026-06-16
- Advisory updated
- 2026-06-17
Who should care
Android users and developers should be aware of this vulnerability and take necessary precautions to ensure their systems are secure.
Technical summary
The vulnerability is caused by an integer overflow in IntfGraphCreate of intfgraph.c, which could lead to an out of bounds write. This could potentially allow for remote code execution.
Defensive priority
High
Recommended defensive actions
- Apply patches or updates as soon as they are available.
- Use secure coding practices to prevent similar vulnerabilities.
Evidence notes
The vendor is listed as Unknown Vendor, but there is evidence suggesting the product is Android.
Official resources
-
CVE-2026-0151 CVE record
CVE.org
-
CVE-2026-0151 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2026-0151 was published on {cvePublishedAt} and last modified on {cveModifiedAt}.