CVE-2026-40446 MEDIUM

CVE-2026-40446

Vendor Samsung Open Source
Product Escargot
Weakness CWE-843
Published April 13, 2026
Last update April 13, 2026

CVSS base score

6.9/10
Attack vector Local
Attack complexity High
Privileges required None
User interaction None
Confidentiality Low
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:H

What the vulnerability does

01Description

Access of resource using incompatible type ('type confusion') vulnerability in Samsung Open Source Escargot allows Pointer Manipulation.This issue affects Escargot: 97e8115ab1110bc502b4b5e4a0c689a71520d335.

Key dates

02Disclosure timeline

April 13, 2026 CVE published
April 13, 2026 Record updated