CWE-190: Integer Overflow

This CVE describes an integer overflow vulnerability in the Linux kernel's CDC-NCM network driver. A malicious or broken USB device could trigger this...

A Linux kernel BPF subsystem vulnerability allows incorrect overflow checking in jump offset calculations, potentially enabling local privilege escala...

This CVE describes an integer overflow vulnerability in the Linux kernel's Xe graphics driver. The flaw occurs during page size calculations and could...

This CVE describes an integer overflow vulnerability in the Linux kernel's DCTCP congestion control module. Attackers with local access can trigger a ...

A missing size check in the Linux kernel's BPF bloom filter map implementation allows attackers to trigger integer overflows when creating maps with v...

This CVE describes an integer overflow vulnerability in the Linux kernel's virtio-blk driver. When virtio_max_dma_size() returns a value larger than U...

This CVE-2023-52676 is an integer overflow vulnerability in the Linux kernel's BPF verifier that could allow local attackers to bypass stack limit che...

This CVE describes an integer overflow vulnerability in the Linux kernel's io_uring subsystem. The flaw occurs when processing network messages, where...

Apache ActiveMQ has an integer overflow vulnerability in MQTT packet handling that allows malformed packets to cause unexpected broker behavior. This ...

This vulnerability in FreeRDP's Stream_EnsureCapacity function can cause an endless blocking loop, potentially leading to denial of service. It affect...

This vulnerability in soroban-sdk allows arithmetic overflow in slice and random number generation methods, potentially causing contracts to operate o...

ImageMagick versions before 7.1.2-12 contain an integer overflow vulnerability in the WriteSVGImage function that can trigger a buffer overflow. This ...

PyTorch v2.8.0 contains an integer overflow vulnerability in torch.nan_to_num-.long() that could allow memory corruption or denial of service. This af...

This vulnerability in WebAssembly Micro Runtime (WAMR) causes runtime hangs or crashes when executing WebAssembly programs with specific memory.fill i...

An integer overflow vulnerability in Fortinet SSL-VPN RDP/VNC bookmarks allows authenticated users to craft requests that may crash the SSL-VPN servic...

An integer overflow vulnerability in Fortinet FortiOS allows remote unauthenticated attackers to crash the csfd daemon via specially crafted requests....

This vulnerability in RestApp Inc.'s Online Ordering System allows attackers to exploit integer overflow/wraparound issues by providing malicious inpu...

CVE-2024-36619 is an integer overflow vulnerability in FFmpeg's WAVARC decoder that can cause a denial-of-service condition when processing specially ...

An integer overflow vulnerability in libSEF.quram.so allows local attackers to write out-of-bounds memory, potentially leading to privilege escalation...

An integer overflow vulnerability in Intel VPL software allows authenticated local users to potentially escalate privileges. This affects systems runn...

A vulnerability in containerd allows containers launched with UID/GID values exceeding 32-bit signed integer limits to overflow and run as root (UID 0...

This vulnerability in libavif (AV1 Image File Format library) involves an integer overflow in the makeRoom function in stream.c, which can lead to a b...

This CVE describes a signed integer overflow vulnerability in docopt.cpp v0.6.2 that occurs when merging occurrence counters. Attackers can bypass log...

This CVE-2024-42131 is an integer overflow vulnerability in the Linux kernel's dirty page throttling logic that could lead to kernel instability or cr...

This CVE describes an integer overflow vulnerability in Artifex Ghostscript's PDF OCR device that leads to heap-based buffer overflow when processing ...

An integer overflow vulnerability in Intel Converged Security and Management Engine (CSME) firmware allows unauthenticated attackers on the same netwo...

This vulnerability in AMD's Trusted OS (TOS) allows a malicious userspace process to trigger an integer overflow by exploiting insufficient parameter ...

A stack overflow vulnerability in GRUB2's BFS filesystem parser allows an attacker to crash the bootloader by providing a specially crafted BFS filesy...

A floating-point exception vulnerability in Poppler's PSStack::roll function allows attackers to cause denial of service by crashing applications that...

An integer overflow vulnerability in glib's g_buffered_input_stream_peek() function allows attackers to trigger a buffer overflow by providing special...

Malwarebytes 1.0.14 for Linux has a signature computation vulnerability that allows malware to bypass detection. This affects Linux systems running th...

An integer wraparound vulnerability in Silicon Labs' Matter SDK creates an infinite loop that causes denial of service. Attackers can trigger this to ...

An integer overflow vulnerability in RawTherapee's rtengine modules could allow attackers to cause denial of service or potentially execute arbitrary ...

An integer overflow vulnerability in the hiredis module of swoole-src allows attackers to cause memory corruption through specially crafted input. Thi...

An integer overflow vulnerability in the Apache Commons Compress TarUtils module used by AppManager allows attackers to cause denial of service or pot...

A vulnerability in WasmEdge WebAssembly runtime allows integer overflow in memory boundary checking, leading to segmentation faults. This affects all ...

This CVE describes an integer overflow vulnerability in KissFFT library versions prior to fix commit 1b083165. On 32-bit architectures, an attacker ca...