CVE-2026-0144
MediumCVSS 6.5Exploitation Probability (EPSS)
Low risk16th percentile — higher than 16% of all known CVEs
Summary
In the writeAocCommand function of AocAudioCodec.cpp, there is a possible memory safety issue due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed.
Risk Assessment
The organization may be vulnerable to attacks that could lead to remote denial of service, impacting service availability.
Recommendation
It is recommended to review the code to add appropriate bounds checks and to monitor systems for potential attack attempts.
Original NVD description (English source)
In writeAocCommand of AocAudioCodec.cpp, there is a possible memory safety issue due to a missing bounds check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.

