CVE-2026-0123
Published: 10 March 2026
Summary
CVE-2026-0123 is a high-severity Out-of-bounds Write (CWE-787) vulnerability in Google Android. Its CVSS base score is 8.4 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 0.8th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).
Deeper analysis
CVE-2026-0123 is a vulnerability involving an out-of-bounds write due to a missing bounds check in the EfwApTransport::ProcessRxRing function of efw_ap_transport.cc. This issue affects Android systems and is classified under CWE-787.
A local attacker can exploit this vulnerability with low attack complexity, no privileges, and no user interaction required. Successful exploitation enables local escalation of privilege, resulting in high impacts to confidentiality, integrity, and availability, as reflected in its CVSS 3.1 score of 8.4 (AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).
The Android security bulletin dated 2026-03-01 details patches and mitigation measures at https://source.android.com/docs/security/bulletin/2026/2026-03-01.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2026-10856
Vulnerability details
In EfwApTransport::ProcessRxRing of efw_ap_transport.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Out-of-bounds write enables local memory corruption exploit for privilege escalation without requiring prior privileges or user interaction.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
SI-10 requires validation of information inputs including bounds checks, directly preventing the out-of-bounds write due to the missing bounds check in ProcessRxRing.
SI-16 implements memory protection mechanisms such as stack canaries and address space randomization that mitigate exploitation of the out-of-bounds write for privilege escalation.
SI-2 ensures timely identification, reporting, and remediation of flaws like this buffer overflow vulnerability via patching as detailed in the Android security bulletin.