Uncontrolled Recursion in Samsung Escargot Product
CVE-2026-47309

5.5MEDIUM

Key Information:

Vendor: Samsung Open Source
Status: Escargot
Vendor: CVE Published:; 19 May 2026

🔔 Create Samsung Open Source Vulnerability Alert

What is CVE-2026-47309?

An uncontrolled recursion vulnerability exists in Samsung's Escargot that allows processing of oversized serialized data payloads. This flaw may lead to excessive resource consumption, potentially causing denial of service. Developers and users are urged to review the affected version and apply necessary updates to mitigate risks.

Affected Version(s)

Escargot 590345cc6258317c5da850d846ce6baaf2afc2d3

References

https://github.com/Samsung/escargot/pull/1565

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 19, 2026
Vulnerability Reserved
May 19, 2026

CVE-2026-47309 Data

JSON