CVE Catalog

CVE-2026-0139

HighCVSS 8.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.27%

18th percentile - higher than 18% of all known CVEs

Summary

In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed.

Risk Assessment

The organization may be exposed to remote attacks that could lead to system takeover without user interaction.

Recommendation

It is recommended to update Modem to the latest version to mitigate the vulnerability and implement additional security measures.

Original NVD description (English source)

In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS