Vulnerability Details CVE-2026-40450
Integer overflow in output tensor copy size calculation in Samsung Open Source ONE could cause incorrect copy length and memory corruption for oversized tensors.
Affected version is prior to commit 1.30.0.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 2.9%
CVSS Severity
CVSS v3 Score 6.6
References
Products affected by CVE-2026-40450
-
cpe:2.3:a:samsung:one:1.10.0
-
cpe:2.3:a:samsung:one:1.11.0
-
cpe:2.3:a:samsung:one:1.11.1
-
cpe:2.3:a:samsung:one:1.12.0
-
cpe:2.3:a:samsung:one:1.12.1
-
cpe:2.3:a:samsung:one:1.13.0
-
cpe:2.3:a:samsung:one:1.14.0
-
cpe:2.3:a:samsung:one:1.15.0
-
cpe:2.3:a:samsung:one:1.16.0
-
cpe:2.3:a:samsung:one:1.16.1
-
cpe:2.3:a:samsung:one:1.17.0
-
cpe:2.3:a:samsung:one:1.18.0
-
cpe:2.3:a:samsung:one:1.19.0
-
cpe:2.3:a:samsung:one:1.20.0
-
cpe:2.3:a:samsung:one:1.21.0
-
cpe:2.3:a:samsung:one:1.22.0
-
cpe:2.3:a:samsung:one:1.22.1
-
cpe:2.3:a:samsung:one:1.23.0
-
cpe:2.3:a:samsung:one:1.24.0
-
cpe:2.3:a:samsung:one:1.24.1
-
cpe:2.3:a:samsung:one:1.25.0
-
cpe:2.3:a:samsung:one:1.26.0
-
cpe:2.3:a:samsung:one:1.27.0
-
cpe:2.3:a:samsung:one:1.27.1
-
cpe:2.3:a:samsung:one:1.27.2
-
cpe:2.3:a:samsung:one:1.28.0
-
cpe:2.3:a:samsung:one:1.29.0
-
cpe:2.3:a:samsung:one:1.4.0
-
cpe:2.3:a:samsung:one:1.5.0
-
cpe:2.3:a:samsung:one:1.6.0
-
cpe:2.3:a:samsung:one:1.6.1
-
cpe:2.3:a:samsung:one:1.7.0
-
cpe:2.3:a:samsung:one:1.8.0
-
cpe:2.3:a:samsung:one:1.9.0
-
cpe:2.3:a:samsung:one:1.9.1