Out-of-bounds read, Reachable assertion vulnerability in Samsung Open Source Escargot allows Overread Buffers, Input Data Manipulation. This issue affects Escargot: before 2dee22f5c7b8bf31cb7252d7731fae8c07f2842c.
History

Tue, 14 Jul 2026 04:30:00 +0000

Type Values Removed Values Added
Title Out-of-Bounds Read and Assertion Vulnerability in Samsung Escargot JavaScript Engine

Mon, 13 Jul 2026 07:45:00 +0000

Type Values Removed Values Added
Title Escargot Out-of-Bounds Read Enables Memory Overread and Assertion Crash

Sat, 11 Jul 2026 19:45:00 +0000

Type Values Removed Values Added
Title Escargot Out-of-Bounds Read Enables Memory Overread and Assertion Crash

Fri, 10 Jul 2026 19:45:00 +0000

Type Values Removed Values Added
Title Out-of-Bounds Read in Samsung Escargot Allows Overread of Buffers

Fri, 10 Jul 2026 05:15:00 +0000

Type Values Removed Values Added
Title Out-of-Bounds Read in Samsung Escargot Allows Overread of Buffers

Thu, 09 Jul 2026 12:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 09 Jul 2026 11:45:00 +0000

Type Values Removed Values Added
First Time appeared Samsung Open Source
Samsung Open Source escargot
Vendors & Products Samsung Open Source
Samsung Open Source escargot

Thu, 09 Jul 2026 10:45:00 +0000

Type Values Removed Values Added
Description Out-of-bounds read, Reachable assertion vulnerability in Samsung Open Source Escargot allows Overread Buffers, Input Data Manipulation. This issue affects Escargot: before 2dee22f5c7b8bf31cb7252d7731fae8c07f2842c.
Weaknesses CWE-125
CWE-617
References
Metrics cvssV3_1

{'score': 6.1, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: samsung.tv_appliance

Published: 2026-07-09T10:33:01.635Z

Updated: 2026-07-09T12:04:20.924Z

Reserved: 2026-06-30T01:49:44.822Z

Link: CVE-2026-58307

cve-icon Vulnrichment

Updated: 2026-07-09T12:03:32.825Z

cve-icon NVD

No data.

cve-icon Redhat

No data.