CVE-2026-14160 | Time-of-check time-of-use (TOCTOU) race condition vulnerabil… | CVSS 5.9 MEDIUM

Description

Time-of-check time-of-use (TOCTOU) race condition vulnerability in Samsung Open Source Escargot allows Leveraging Race Conditions. This issue affects Escargot: bab3a5797557014ce3c2e28419a6310cfba90d0d.

Metadata

CVE ID: CVE-2026-14160
State: PUBLISHED
Assigner: samsung.tv_appliance
Reserved: 2026-06-30 01:49 UTC
Published: 2026-06-30 02:09 UTC
Last updated: 2026-06-30 02:27 UTC
Primary CWE: CWE-367
CWE-367 Time-of-check time-of-use (TOCTOU) race condition
Vendor / Product: Samsung Open Source / Escargot
Sources: cve.org · NVD

Severity & Metrics

5.9 MEDIUM CVSS 3.1

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected products (1)

Vendor	Product	Platform	Versions
Samsung Open Source	Escargot	—	bab3a5797557014ce3c2e28419a6310cfba90d0d

Weakness (CWE)

CWE	Source	Description
CWE-367	cna	CWE-367 Time-of-check time-of-use (TOCTOU) race condition

CVSS scores (1)

Score	Severity	Version	Source	Vector
5.9	MEDIUM	3.1	cna	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

References (1)

https://github.com/Samsung/escargot/commit/9e8084ecc2f68e8584d389414c3f37fda12dab7d