Integer Overflow Vulnerability in Samsung Open Source rlottie
CVE-2026-49510

6.1MEDIUM

Key Information:

Status
Vendor
CVE Published:
4 June 2026

What is CVE-2026-49510?

An integer overflow vulnerability in Samsung's open-source rlottie library can lead to integer attacks. This flaw affects versions prior to 21292665023e5074b38254432716866d00f1985f, potentially allowing attackers to exploit the overflow condition for unauthorized access or manipulation of data.

Affected Version(s)

rlottie 21292665023e5074b38254432716866d00f1985f

References

CVSS V3.1

Score:
6.1
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.