CVE Catalog

CVE-2026-0144

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.25%

16th percentile — higher than 16% of all known CVEs

Summary

In the writeAocCommand function of AocAudioCodec.cpp, there is a possible memory safety issue due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed.

Risk Assessment

The organization may be vulnerable to attacks that could lead to remote denial of service, impacting service availability.

Recommendation

It is recommended to review the code to add appropriate bounds checks and to monitor systems for potential attack attempts.

Original NVD description (English source)

In writeAocCommand of AocAudioCodec.cpp, there is a possible memory safety issue due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS