Question 1

What is CVE-2026-0148 — CVE-2026-0148?

Accepted Answer

In multiple functions of VideoRtpPayloadDecoderNode.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation.

Question 2

What is the authoritative source for CVE-2026-0148?

Accepted Answer

CVE-2026-0148 (CVE-2026-0148) is catalogued in NVD + CISA KEV + FIRST EPSS and curated for EU compliance use cases by SQUR.

EPSS	0.28% probability of exploitation · percentile 19.2% · 2026-06-19T12:03:05Z
Last modified	2026-06-16

CVE-2026-0148CVE-2026-0148

Description

Scoring