CVE-2026-40446

MEDIUM

Samsung Open Source Escargot 97e8115ab1110bc502b4b5e4a0c689a71520d335 - Type Confusion

Title source: llm

Description

Access of resource using incompatible type ('type confusion') vulnerability in Samsung Open Source Escargot allows Pointer Manipulation.This issue affects Escargot: 97e8115ab1110bc502b4b5e4a0c689a71520d335.

References (1)

Core 1

Core References

https://github.com/Samsung/escargot/pull/1554

Scores

CVSS v3 6.9

EPSS 0.0023

EPSS Percentile 13.7%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-843

Status published

Products (2)

samsung/escargot 2026-03-28

Samsung Open Source/Escargot 97e8115ab1110bc502b4b5e4a0c689a71520d335

Published Apr 13, 2026

Tracked Since Apr 13, 2026