Home

Description

Missing bounds validation for operator could allow out of range operator-code lookup during model loading Affected version is prior to commit 1.30.0.

PUBLISHED Reserved 2026-04-22 | Published 2026-04-22 | Updated 2026-04-22 | Assigner samsung.tv_appliance




MEDIUM: 5.5CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Problem types

CWE-129 Improper validation of array index

Product status

Default status
unaffected

1.30.0
affected

References

github.com/Samsung/ONE/pull/16481

cve.org (CVE-2026-6840)

nvd.nist.gov (CVE-2026-6840)

Download JSON