Skip to main content

Mondoo

Vulnerability Management
Technology
Services

Solutions

Financial Services
Manufacturing
Healthcare

Resources

Blog
Vulnerability Database
Documentation
GitHub

Company

About
Careers
Partners
Contact

Legal

Privacy
Terms
Imprint

© 2026 Mondoo, Inc.

Log in Get Assessment

CVE-2026-41664 | Mondoo Vulnerability Intelligence

Vulnerability IntelligenceCVE-2026-41664

CVE-2026-41664

MEDIUM6.6

Integer overflow in memory copy size calculation in Samsung Open Source ONE could lead to invalid memory operations with large tensor shapes

Published Apr 22, 2026

Modified Yesterday

Details

Integer overflow in memory copy size calculation in Samsung Open Source ONE could lead to invalid memory operations with large tensor shapes. Affected version is prior to commit 1.30.0.

References

https://github.com/Samsung/ONE/pull/16481

https://www.cve.org/CVERecord?id=CVE-2026-41664

CVSS Analysis

CVSS v3.1

6.6

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

NonePR:N

User Interaction

RequiredUI:R

Scope

Scope

UnchangedS:U

Impact

Confidentiality

LowC:L

Integrity

LowI:L

Availability

HighA:H

6.6/CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H

Weakness Type (CWE)

Other

Ecosystems

Timeline

PublishedApr 22, 2026

ModifiedApr 22, 2026