Vulnerability intelligence
CVE-2026-0059
In multiple functions of sdp_discovery.cc, there is a possible way to achieve code execution due to a heap buffer overflow. This could lead to remote (proximal/adjacent) code execution with no additional execution privileges needed. User interaction is not needed for exploitation.
CVSS Score
8
High
EPSS — Exploit Probability
0.1%
Riskier than 2% of all CVEs
Exploitation
Not in CISA KEV
No federal exploitation record
Remediation
unknown
Check vendor advisories
1 article across 1 outlet · first covered Jun 2, 2026 · latest Jun 2, 2026
Tracked incidents
Coverage timeline
-
Google patches Android zero day CVE‑2025‑48595 among 124 fixeswww.securityweek.com · Jun 2, 2026