Vulnerability Details CVE-2026-40449
Integer overflow in buffer size calculation could result in out of bounds memory access when handling large tensors in Samsung Open Source ONE.
Affected version is prior to commit 1.30.0.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 1.9%
CVSS Severity
CVSS v3 Score 6.6
References
Products affected by CVE-2026-40449
-
cpe:2.3:a:samsung:one:1.10.0
-
cpe:2.3:a:samsung:one:1.11.0
-
cpe:2.3:a:samsung:one:1.11.1
-
cpe:2.3:a:samsung:one:1.12.0
-
cpe:2.3:a:samsung:one:1.12.1
-
cpe:2.3:a:samsung:one:1.13.0
-
cpe:2.3:a:samsung:one:1.14.0
-
cpe:2.3:a:samsung:one:1.15.0
-
cpe:2.3:a:samsung:one:1.16.0
-
cpe:2.3:a:samsung:one:1.16.1
-
cpe:2.3:a:samsung:one:1.17.0
-
cpe:2.3:a:samsung:one:1.18.0
-
cpe:2.3:a:samsung:one:1.19.0
-
cpe:2.3:a:samsung:one:1.20.0
-
cpe:2.3:a:samsung:one:1.21.0
-
cpe:2.3:a:samsung:one:1.22.0
-
cpe:2.3:a:samsung:one:1.22.1
-
cpe:2.3:a:samsung:one:1.23.0
-
cpe:2.3:a:samsung:one:1.24.0
-
cpe:2.3:a:samsung:one:1.24.1
-
cpe:2.3:a:samsung:one:1.25.0
-
cpe:2.3:a:samsung:one:1.26.0
-
cpe:2.3:a:samsung:one:1.27.0
-
cpe:2.3:a:samsung:one:1.27.1
-
cpe:2.3:a:samsung:one:1.27.2
-
cpe:2.3:a:samsung:one:1.28.0
-
cpe:2.3:a:samsung:one:1.29.0
-
cpe:2.3:a:samsung:one:1.4.0
-
cpe:2.3:a:samsung:one:1.5.0
-
cpe:2.3:a:samsung:one:1.6.0
-
cpe:2.3:a:samsung:one:1.6.1
-
cpe:2.3:a:samsung:one:1.7.0
-
cpe:2.3:a:samsung:one:1.8.0
-
cpe:2.3:a:samsung:one:1.9.0
-
cpe:2.3:a:samsung:one:1.9.1