CVE-2026-6839

Summary

Improper validation of STRING tensor offsets could allows malformed string metadata to trigger out of bounds access during constant tensor import in Samsung Open Source ONE Affected version is prior to commit 1.30.0.

Affected Software

VendorProductVersion RangeStatus
Samsung Open SourceONE1.30.0affected

Weaknesses

  • CWE-1284: CWE-1284 Improper validation of specified quantity in input

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References