CVE-2026-40448_CVE-2026-40448

5.3 / 10

MEDIUM

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H

Description

Potential Integer overflow in tensor allocation size calculation could lead to insufficient memory allocation for large tensors in Samsung Open Source ONE.
Affected version is prior to commit 1.30.0.

Basic Information

ID CVE-2026-40448

Source samsung.tv_appliance

Published Apr 22, 2026 at 05:40

Modified Apr 22, 2026 at 05:49

Affected Product

Vendor Samsung Open Source

Product ONE

Version 95fba2da1880ab3eabc719520e8591c33b65b272

Affected Versions Samsung Open Source ONE 95fba2da1880ab3eabc719520e8591c33b65b272

CWE Classification

CWE-190

References

github.com /Samsung/ONE/pull/16481

{
    "lastseen": "",
    "description": "Potential Integer overflow in tensor allocation size calculation could lead to insufficient memory allocation for large tensors in Samsung Open Source ONE.\nAffected version is prior to commit\u00a0\u00a01.30.0.",
    "published": "2026-04-22T05:40:26.361Z",
    "modified": "2026-04-22T05:49:00.292Z",
    "type": "cve",
    "title": "CVE-2026-40448",
    "source": "samsung.tv_appliance",
    "references": "https://github.com/Samsung/ONE/pull/16481",
    "id": "CVE-2026-40448",
    "bulletinFamily": "",
    "cwe": [
        "CWE-190"
    ],
    "cvelist": null,
    "sourceData": "Samsung Open Source ONE 95fba2da1880ab3eabc719520e8591c33b65b272",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "ONE",
    "version": "95fba2da1880ab3eabc719520e8591c33b65b272",
    "vendor": "Samsung Open Source",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}