CWE-190— Integer Overflow or Wraparound
The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.— MITRE CWE catalog
2,945 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-190page 44 of 59
- CVE-2023-52933MEDIUMCVSS 5.5EG 5.52025-03-27
In the Linux kernel, the following vulnerability has been resolved: Squashfs: fix handling and sanity checking of xattr_ids count A Sysbot [1] corrupted filesystem exposes two flaws in the handling and sanity checking of the xattr_ids co…
- CVE-2023-53032MEDIUMCVSS 5.5EG 5.52025-03-27
In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Fix overflow before widen in the bitmap_ip_create() function. When first_ip is 0, last_ip is 0xFFFFFFFF, and netmask is 31, the value of an arithmetic …
- CVE-2023-53156MEDIUMCVSS 4.5EG 4.52025-07-27
The transpose crate before 0.2.3 for Rust allows an integer overflow via input_width and input_height arguments.
- CVE-2023-53309MEDIUMCVSS 5.5EG 5.52025-09-16
In the Linux kernel, the following vulnerability has been resolved: drm/radeon: Fix integer overflow in radeon_cs_parser_init The type of size is unsigned, if size is 0x40000000, there will be an integer overflow, size will be zero after…
- CVE-2023-53474MEDIUMCVSS 5.5EG 5.52025-10-01
In the Linux kernel, the following vulnerability has been resolved: x86/MCE/AMD: Use an u64 for bank_map Thee maximum number of MCA banks is 64 (MAX_NR_BANKS), see a0bc32b3cacf ("x86/mce: Increase maximum number of banks to 64"). How…
- CVE-2023-53524HIGHCVSS 7.8EG 7.82025-10-01
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: pcie: Fix integer overflow in iwl_write_to_user_buf An integer overflow occurs in the iwl_write_to_user_buf() function, which is called by the iwl_dbgfs_m…
- CVE-2023-53570HIGHCVSS 7.8EG 7.82025-10-04
In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: fix integer overflow in nl80211_parse_mbssid_elems() nl80211_parse_mbssid_elems() uses a u8 variable num_elems to count the number of MBSSID elements in t…
- CVE-2023-53624MEDIUMCVSS 5.5EG 5.52025-10-07
In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_fq: fix integer overflow of "credit" if sch_fq is configured with "initial quantum" having values greater than INT_MAX, the first assignment of "credit" d…
- CVE-2023-53661MEDIUMCVSS 5.5EG 5.52025-10-07
In the Linux kernel, the following vulnerability has been resolved: bnxt: avoid overflow in bnxt_get_nvram_directory() The value of an arithmetic expression is subject of possible overflow due to a failure to cast operands to a larger da…
- CVE-2023-5849HIGHCVSS 8.8EG 8.82023-11-01
Integer overflow in USB in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
- CVE-2023-5869HIGHCVSS 8.8EG 8.82023-12-10
A flaw was found in PostgreSQL that allows authenticated database users to execute arbitrary code through missing overflow checks during SQL array value modification. This issue exists due to an integer overflow during array modification w…
- CVE-2023-6345CRITICALCVSS 9.6EG 9.6⚠ KEV2023-11-29
Integer overflow in Skia in Google Chrome prior to 119.0.6045.199 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a malicious file. (Chromium security severity: High)
- CVE-2023-6478HIGHCVSS 7.5EG 7.62023-12-13
A flaw was found in xorg-server. A specially crafted request to RRChangeProviderProperty or RRChangeOutputProperty can trigger an integer overflow which may lead to a disclosure of sensitive information.
- CVE-2023-6780MEDIUMCVSS 5.3EG 5.32024-01-31
An integer overflow was found in the __vsyslog_internal function of the glibc library. This function is called by the syslog and vsyslog functions. This issue occurs when these functions are called with a very long message, leading to an i…
- CVE-2024-0803CRITICALCVSS 9.8EG 9.82024-03-15
Integer Overflow or Wraparound vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series and MELSEC-L Series CPU modules allows a remote unauthenticated attacker to execute malicious code on a target product by sending a specially c…
- CVE-2024-10394HIGHCVSS 7.8EG 7.82024-11-14
A local user can bypass the OpenAFS PAG (Process Authentication Group) throttling mechanism in Unix clients, allowing the user to create a PAG using an existing id number, effectively joining the PAG and letting the user steal the credent…
- CVE-2024-10917LOWCVSS 3.7EG 3.72024-11-11
In Eclipse OpenJ9 versions up to 0.47, the JNI function GetStringUTFLength may return an incorrect value which has wrapped around. From 0.48 the value is correct but may be truncated to include a smaller number of characters.
- CVE-2024-11236CRITICALCVSS 9.8EG 9.82024-11-24
In PHP versions 8.1.* before 8.1.31, 8.2.* before 8.2.26, 8.3.* before 8.3.14, uncontrolled long string inputs to ldap_escape() function on 32-bit systems can cause an integer overflow, resulting in an out-of-bounds write.
- CVE-2024-11347HIGHCVSS 7.3EG 7.32025-02-13
Integer Overflow or Wraparound vulnerability in Lexmark International CX, XC, CS, et. Al. (Postscript interpreter modules) allows Forced Integer Overflow.The vulnerability can be leveraged by an attacker to execute arbitrary code as an unp…
- CVE-2024-1305CRITICALCVSS 9.8EG 9.82024-07-08
tap-windows6 driver version 9.26 and earlier does not properly check the size data of incomming write operations which an attacker can use to overflow memory buffers, resulting in a bug check and potentially arbitrary code execution in …
- CVE-2024-13614MEDIUMCVSS 5.3EG 5.32025-02-06
Kaspersky has fixed a security issue in Kaspersky Anti-Virus SDK for Windows, Kaspersky Security for Virtualization Light Agent, Kaspersky Endpoint Security for Windows, Kaspersky Small Office Security, Kaspersky for Windows (Standard, Plu…
- CVE-2024-1580MEDIUMCVSS 5.9EG 5.92024-02-19
An integer overflow in dav1d AV1 decoder that can occur when decoding videos with large frame size. This can lead to memory corruption within the AV1 decoder. We recommend upgrading past version 1.4.0 of dav1d.
- CVE-2024-1633LOWCVSS 2.0EG 2.02024-02-19
During the secure boot, bl2 (the second stage of the bootloader) loops over images defined in the table “bl2_mem_params_descs”. For each image, the bl2 reads the image length and destination from the image’s certificate. Because of …
- CVE-2024-1916CRITICALCVSS 9.8EG 9.82024-03-15
Integer Overflow or Wraparound vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series and MELSEC-L Series CPU modules allows a remote unauthenticated attacker to execute malicious code on a target product by sending a specially c…
- CVE-2024-1917CRITICALCVSS 9.8EG 9.82024-03-15
Integer Overflow or Wraparound vulnerability in Mitsubishi Electric Corporation MELSEC-Q Series and MELSEC-L Series CPU modules allows a remote unauthenticated attacker to execute malicious code on a target product by sending a specially c…
- CVE-2024-20016MEDIUMCVSS 4.4EG 4.42024-02-05
In ged, there is a possible out of bounds write due to an integer overflow. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation Patch ID: ALPS07835901; Issue I…
- CVE-2024-20025MEDIUMCVSS 6.7EG 6.72024-03-04
In da, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08541686; I…
- CVE-2024-20046MEDIUMCVSS 6.6EG 6.62024-04-01
In battery, there is a possible escalation of privilege due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08…
- CVE-2024-20047MEDIUMCVSS 5.4EG 5.42024-04-01
In battery, there is a possible out of bounds read due to an integer overflow. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08587865…
- CVE-2024-20434MEDIUMCVSS 4.3EG 4.32024-09-25
A vulnerability in Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on the control plane of an affected device. This vulnerability is due to improper handling of frames…
- CVE-2024-20654HIGHCVSS 8.0EG 8.02024-01-09
Microsoft ODBC Driver Remote Code Execution Vulnerability
- CVE-2024-20698HIGHCVSS 7.8EG 7.82024-01-09
Windows Kernel Elevation of Privilege Vulnerability
- CVE-2024-20730HIGHCVSS 7.8EG 7.82024-02-15
Acrobat Reader versions 20.005.30539, 23.008.20470 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue req…
- CVE-2024-20795HIGHCVSS 7.8EG 7.82024-04-11
Animate versions 23.0.4, 24.0.1 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interact…
- CVE-2024-21105LOWCVSS 2.0EG 2.02024-04-16
Vulnerability in the Oracle Solaris product of Oracle Systems (component: Utility). The supported version that is affected is 11. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Ora…
- CVE-2024-21350HIGHCVSS 8.8EG 8.82024-02-13
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
- CVE-2024-21372HIGHCVSS 8.8EG 8.82024-02-13
Windows OLE Remote Code Execution Vulnerability
- CVE-2024-21379HIGHCVSS 7.8EG 7.82024-02-13
Microsoft Word Remote Code Execution Vulnerability
- CVE-2024-21420HIGHCVSS 8.8EG 8.82024-02-13
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
- CVE-2024-21428HIGHCVSS 8.8EG 8.82024-07-09
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
- CVE-2024-21441HIGHCVSS 8.8EG 8.82024-03-12
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
- CVE-2024-21444HIGHCVSS 8.8EG 8.82024-03-12
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
- CVE-2024-21450HIGHCVSS 8.8EG 8.82024-03-12
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
- CVE-2024-21454HIGHCVSS 7.5EG 7.52024-04-01
Transient DOS while decoding the ToBeSignedMessage in Automotive Telematics.
- CVE-2024-21470HIGHCVSS 8.4EG 8.42024-04-01
Memory corruption while allocating memory for graphics.
- CVE-2024-21631MEDIUMCVSS 6.5EG 6.52024-01-03
Vapor is an HTTP web framework for Swift. Prior to version 4.90.0, Vapor's `vapor_urlparser_parse` function uses `uint16_t` indexes when parsing a URI's components, which may cause integer overflows when parsing untrusted inputs. This vuln…
- CVE-2024-21646CRITICALCVSS 9.8EG 9.82024-01-09
Azure uAMQP is a general purpose C library for AMQP 1.0. The UAMQP library is used by several clients to implement AMQP protocol communication. When clients using this library receive a crafted binary type data, an integer overflow or wra…
- CVE-2024-21783MEDIUMCVSS 4.8EG 4.82024-11-13
Integer overflow for some Intel(R) VPL software before version 24.1.4 may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2024-21812CRITICALCVSS 9.8EG 9.82024-02-20
An integer overflow vulnerability exists in the sopen_FAMOS_read functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111). A specially crafted .famos file can lead to an out-of-bounds write which in turn can lead to…
- CVE-2024-21825HIGHCVSS 8.8EG 8.82024-02-26
A heap-based buffer overflow vulnerability exists in the GGUF library GGUF_TYPE_ARRAY/GGUF_TYPE_STRING parsing functionality of llama.cpp Commit 18c2e17. A specially crafted .gguf file can lead to code execution. An attacker can provide a …
Map vulnerabilities like CWE-190 to your infrastructure
EchelonGraph correlates every CVE — across CWE-190 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →