Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
2.1
Trusted Execution Environment May Leak Sensitive Keys
CVE-2026-0115
Summary
A flaw in the Trusted Execution Environment could allow attackers to steal sensitive keys, potentially compromising data security. This requires user interaction to exploit, but could have serious consequences if a malicious user is able to take advantage of it. Update the software to the latest version to fix this issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| android | All versions | – |
Original title
In Trusted Execution Environment, there is a possible key leak due to side channel information disclosure. This could lead to physical information disclosure with no additional execution privileges...
Original description
In Trusted Execution Environment, there is a possible key leak due to side channel information disclosure. This could lead to physical information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.
Vulnerability type
CWE-1300
Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 10 Mar 2026