CVE-2026-25204

Summary

Deserialization of untrusted data vulnerability in Samsung Open Source Escargot Java Script allows denial of service condition via process abort.

This issue affects escarogt prior to commit hash

97e8115ab1110bc502b4b5e4a0c689a71520d335

Affected Software

VendorProductVersion RangeStatus
Samsung Open SourceEscargot97e8115ab1110bc502b4b5e4a0c689a71520d335affected

Weaknesses

  • CWE-502: CWE-502 Deserialization of untrusted data
  • CWE-843: CWE-843 Access of resource using incompatible type ('type confusion')

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References