VDB
CISA-2025-32313
CISA-2025-32313
PUBLISHED
CVSS 8.4 HIGH
Reported by google_android · Published March 2, 2026
In UsageEvents of UsageEvents.java, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
Risk Scores
CVSS 3.1
8.4
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Android | 16, 15, 14 | |
| Android | 16, 15, 14 |
Timeline
- Mar 2, 2026 CVE Published
- Mar 6, 2026 CVE Updated