CVE-2024-32669
MEDIUMSamsung Open Source escargot <4.0.0 - Buffer Overflow
Title source: llmDescription
Improper Input Validation vulnerability in Samsung Open Source escargot JavaScript engine allows Overflow Buffers. However, it occurs in the test code and does not include in the release. This issue affects escargot: 4.0.0.
References (1)
Core 1
Core References
Issue Tracking
https://github.com/Samsung/escargot/pull/1326
Scores
CVSS v3
5.3
EPSS
0.0023
EPSS Percentile
45.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-125
CWE-20
CWE-787
Status
published
Products (1)
Samsung Open Source/Escargot
4.0.0
Published
May 14, 2024
Tracked Since
Feb 18, 2026