CVE-2026-47308

#include <stdio.h> #include <stdlib.h> // Simulation of the vulnerability logic void vulnerable_function(char* user_input) { // Vulnerability: No NULL check before dereferencing user_input // This mimics the NULL pointer dereference in Walrus if (*user_input == 'T') { printf("Processing valid input\n"); } } int main() { printf("PoC for CVE-2026-47308\n"); // Step 1: Prepare a NULL pointer char *malicious_input = NULL; // Step 2: Call the vulnerable function with NULL pointer // This requires Local Access and User Interaction context printf("Triggering NULL pointer dereference...\n"); vulnerable_function(malicious_input); return 0; }

{"cve": {"id": "CVE-2026-47308", "sourceIdentifier": "[email protected]", "published": "2026-05-19T05:16:25.490", "lastModified": "2026-05-19T14:25:40.320", "vulnStatus": "Awaiting Analysis", "cveTags": [], "descriptions": [{"lang": "en", "value": "NULL pointer dereference vulnerability in Samsung Open Source Walrus allows Pointer Manipulation.\n\nThis issue affects Walrus: f339b8ee4ea701772e8ae640b3d1b12ac02b1ae9."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "baseScore": 5.5, "baseSeverity": "MEDIUM", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "HIGH"}, "exploitabilityScore": 1.8, "impactScore": 3.6}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-476"}]}], "references": [{"url": "https://github.com/Samsung/walrus/pull/409", "source": "[email protected]"}]}}