Question 1

What is CVE-2026-0142 — CVE-2026-0142?

Accepted Answer

In iavb_parse_key_data of avb_rsa.c, there is a possible out of bounds read due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.

Question 2

What is the authoritative source for CVE-2026-0142?

Accepted Answer

CVE-2026-0142 (CVE-2026-0142) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

EPSS	0.09% probability of exploitation · percentile 0.5% · 2026-06-18T12:00:27Z
Last modified	2026-06-16

CVE-2026-0142CVE-2026-0142

Description

Scoring