Security Advisory

CVE-2025-36918

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-11 19:35:34

Last updated 2026-02-26 16:07:46

Assigner Google_Devices

State PUBLISHED

Description

In aoc_service_read_message of aoc_ipc_core.c, there is a possible out of bounds read due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.

← Browse all CVEs View on cve.org ↗