Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
4.4
Microsoft Products: Missing Check Allows Unauthorized Access to Data
CVE-2026-20429
Summary
A bug in Microsoft products can allow an attacker who already has full system access to read sensitive data. This issue doesn't require user interaction to exploit. Affected users should update to the latest patch to fix the problem.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| android | 14.0 | – | |
| android | 15.0 | – | |
| android | 16.0 | – |
Original title
In display, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure if a malicious actor has already obtained the System privilege. Use...
Original description
In display, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5535.
nvd CVSS3.1
4.4
Vulnerability type
CWE-125
Out-of-bounds Read
- https://corp.mediatek.com/product-security-bulletin/March-2026 Vendor Advisory
Published: 2 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026