Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.4
Arbitrary Code Execution in mem_protect.c
CVE-2026-0038
Summary
A programming mistake in the mem_protect.c code allows an attacker to potentially gain more access to your system without needing extra permissions. This could happen without any interaction. To protect your system, apply the latest updates or patches for the affected software.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| android | All versions | – |
Original title
In multiple functions of mem_protect.c, there is a possible way to execute arbitrary code due to a logic error in the code. This could lead to local escalation of privilege with no additional execu...
Original description
In multiple functions of mem_protect.c, there is a possible way to execute arbitrary code due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
nvd CVSS3.1
8.4
- https://android.googlesource.com/kernel/common/+/1bf8033b56a45165602f8116e0a0d2e... Patch Product
- https://android.googlesource.com/kernel/common/+/513ea99ae008b81dd266bf6e361627c... Patch Product
- https://android.googlesource.com/kernel/common/+/652b7b6bf9a62cc12c3a071bab4e923... Patch Product
- https://android.googlesource.com/kernel/common/+/7e1d15d29b7fe0f858926a8bcaf929b... Patch Product
- https://android.googlesource.com/kernel/common/+/b23a5bfa1fb8f9525e21f095a87486a... Patch Product
- https://android.googlesource.com/kernel/common/+/d884f499434c224285c30d460681f1c... Patch Product
- https://android.googlesource.com/kernel/common/+/f090d4b083a9ef4831f99e692c23954... Patch Product
- https://source.android.com/docs/security/bulletin/2026/2026-03-01
Published: 2 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026