CVE-2026-47306 PUBLISHED

Assigner: samsung.tv_appliance
Reserved: 19.05.2026 Published: 04.06.2026 Updated: 04.06.2026

Uncontrolled Recursion vulnerability in Samsung Open Source rlottie allows Oversized Serialized Data Payloads.

This issue affects rlottie: before e2d19e3b150e0e4a9586fa90b56fd3061cc98945.

Metrics

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H
CVSS Score: 6.1

Product Status

Vendor Samsung Open Source
Product rlottie
Versions Default: unaffected
  • Version e2d19e3b150e0e4a9586fa90b56fd3061cc98945 is unaffected

References

Problem Types

  • CWE-674 Uncontrolled Recursion CWE

Impacts

  • CAPEC-231 Oversized Serialized Data Payloads