CVE-2026-25205
Heap-Based Buffer Overflow in Samsung Escargot Causes Out-of-Bounds Write
Publication date: 2026-04-13
Last updated on: 2026-04-28
Assigner: Samsung TV & Appliance
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| samsung | escargot | 2026-03-26 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-122 | A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc(). |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a heap-based buffer overflow in Samsung Open Source Escargot. It allows an out-of-bounds write, meaning that the program can write data outside the allocated memory buffer on the heap, which can lead to unexpected behavior or exploitation.
How can this vulnerability impact me? :
The vulnerability can have serious impacts including potential unauthorized modification of data (integrity impact is high), partial loss of confidentiality, and significant disruption of availability. Because it is a heap-based buffer overflow, it could be exploited to execute arbitrary code or cause a crash, leading to denial of service or other malicious outcomes.