CVE-2026-25204
6.2
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
Deserialization of untrusted data vulnerability in Samsung Open Source Escargot Java Script allows denial of service condition via process abort.
This issue affects escarogt prior to commit hash
97e8115ab1110bc502b4b5e4a0c689a71520d335
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Samsung Open Source | Escargot | 97e8115ab1110bc502b4b5e4a0c689a71520d335 | affected |
Weaknesses
- CWE-502: CWE-502 Deserialization of untrusted data
- CWE-843: CWE-843 Access of resource using incompatible type ('type confusion')
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.