Out-of-Bounds Read Vulnerability in Samsung Open Source Escargot
CVE-2026-25206

6.7MEDIUM

Key Information:

Vendor: Samsung Open Source
Status: Escargot
Vendor: CVE Published:; 13 April 2026

🔔 Create Samsung Open Source Vulnerability Alert

What is CVE-2026-25206?

An out-of-bounds read vulnerability exists in Samsung's Open Source Escargot, which potentially allows an attacker to expose sensitive information through resource leaks. This flaw specifically impacts the Escargot version identified by the hash 97e8115ab1110bc502b4b5e4a0c689a71520d335, posing risks to system integrity and user data confidentiality. Mitigation strategies should be implemented to safeguard against exploitation of this vulnerability.

Affected Version(s)

Escargot 97e8115ab1110bc502b4b5e4a0c689a71520d335

References

https://github.com/Samsung/escargot/pull/1554

CVSS V3.1

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 13, 2026
Vulnerability Reserved
Jan 30, 2026

Credit

Sebastián Alba Vives / @Sebasteuo

CVE-2026-25206 Data

JSON