Primary

Context

Android Pixel and Nexus Devices Out-of-Bounds Read Vulnerability in ASN.1 Decoder

Vulnerability

A vulnerability allowing a possible out-of-bounds read has been identified in the ASN.1 decoder component of Android. This issue arises from a missing bounds check, which could lead to local information disclosure. Exploitation of this vulnerability requires System execution privileges, but does not involve user interaction.

Impact

Exploitation of this vulnerability could result in unauthorized local information disclosure.

Remediation

Users can update their devices to the June 2018 security patch level to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

2.8

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

2.8

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Android Pixel and Nexus Devices Out-of-Bounds Read Vulnerability in ASN.1 Decoder

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating