CWE-190: Integer Overflow

A low-privileged remote attacker can execute arbitrary code by sending specially crafted calls to the Device Manager web service or local API, exploit...

This CVE describes an integer overflow vulnerability in the Graphics component of Mozilla products that allows sandbox escape. Attackers could exploit...

This vulnerability allows attackers to trigger a heap out-of-bounds write by providing an excessively large BigInt string to QuickJS. Successful explo...

An integer overflow vulnerability in Microsoft Windows Speech components allows authenticated attackers to execute arbitrary code with elevated privil...

An integer overflow vulnerability in the SVG component of Mozilla products allows attackers to execute arbitrary code or cause denial of service. This...

An integer overflow vulnerability in the Windows Kernel allows authenticated attackers to escalate privileges locally. This affects Windows systems wh...

This vulnerability in ImageMagick allows integer overflow during PNG/MNG image processing, leading to memory corruption. Attackers can exploit this by...

This vulnerability allows attackers within Bluetooth range to execute arbitrary code with root privileges on Sony XAV-AX8500 infotainment systems with...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious ICO files in GIMP. An integer overflow d...

This vulnerability in Windows Telephony Service allows remote attackers to execute arbitrary code on affected systems by sending specially crafted req...

This is a remote code execution vulnerability in the Windows Telephony Service that allows attackers to execute arbitrary code on affected systems. It...

An integer overflow vulnerability in RedisBloom's CMS.INITBYDIM command allows authenticated Redis clients to allocate less heap memory than required,...

CVE-2018-9472 is an integer overflow vulnerability in libxml2's xmlmemory.c that can lead to out-of-bounds write and remote code execution. It affects...

This vulnerability allows attackers to gain SYSTEM-level privileges on Windows systems by exploiting an integer overflow in the Kernel Streaming WOW T...

This vulnerability allows remote attackers to execute arbitrary code on systems running vulnerable versions of SQL Server Native Client OLE DB Provide...

CVE-2024-30064 is a Windows kernel elevation of privilege vulnerability that allows authenticated attackers to execute arbitrary code with SYSTEM priv...

This CVE describes an integer overflow vulnerability in Apple's WebKit browser engine that could allow arbitrary code execution when processing malici...

This CVE-2023-40474 vulnerability in GStreamer allows remote attackers to execute arbitrary code by exploiting an integer overflow when parsing malici...

This vulnerability in GStreamer's RealMedia file parser allows remote attackers to execute arbitrary code by exploiting an integer overflow when proce...

This vulnerability allows remote attackers to execute arbitrary code by exploiting an integer overflow in GStreamer's FLAC file parser. Attackers can ...

This vulnerability in Microsoft OLE DB Driver for SQL Server allows remote attackers to execute arbitrary code on affected systems by sending speciall...

This vulnerability in Microsoft ODBC Driver for SQL Server allows remote attackers to execute arbitrary code by sending specially crafted requests to ...

This vulnerability in Microsoft's WDAC OLE DB provider for SQL Server allows remote attackers to execute arbitrary code by exploiting an integer overf...

This vulnerability in Microsoft's WDAC OLE DB provider for SQL Server allows remote attackers to execute arbitrary code by exploiting an integer overf...

A heap-based buffer overflow vulnerability in the GGUF library header.n_kv functionality of llama.cpp allows remote code execution when processing mal...

A heap-based buffer overflow vulnerability in llama.cpp's GGUF library allows remote code execution when processing malicious .gguf files. This affect...

This vulnerability allows remote attackers to execute arbitrary code on affected Windows systems through malicious OLE objects. It affects Windows sys...

An integer overflow vulnerability in FreeImage's BMP plugin allows attackers to read memory contents, crash applications, or execute arbitrary code wh...

This CVE-2023-5869 vulnerability in PostgreSQL allows authenticated database users to execute arbitrary code on the server through an integer overflow...

This CVE describes an integer overflow vulnerability in Chrome's USB component that could allow heap corruption. Attackers could exploit this via a ma...

A buffer overflow vulnerability in OpenImageIO's read_rle_image function allows remote attackers to execute arbitrary code or cause denial of service....

This CVE describes an integer overflow vulnerability in Android's Bluetooth stack (gatt_sr.cc) that allows remote attackers within Bluetooth range to ...

This vulnerability allows remote attackers to execute arbitrary code on affected Windows systems by sending specially crafted packets to the Layer-2 B...

This vulnerability allows remote attackers to execute arbitrary code on affected systems by exploiting integer overflow in Microsoft PostScript and PC...

This vulnerability allows remote attackers to execute arbitrary code on Windows systems via the Bluetooth service without user interaction. It affects...

This vulnerability allows remote code execution through the Microsoft WDAC OLE DB provider for SQL Server. Attackers can exploit integer overflow (CWE...

This vulnerability in Vyper smart contract language allows integer overflow/underflow when using <iface>.returns_int128() in complex expressions, lead...

This vulnerability is an integer overflow in Chrome's Mojo IPC framework that could allow a remote attacker to trigger heap corruption by tricking use...

An integer overflow vulnerability in WatchGuard Firebox and XTM appliances allows authenticated remote attackers to trigger a heap-based buffer overfl...

This CVE describes an integer overflow vulnerability in TensorFlow's Grappler component during cost estimation for crop and resize operations. Attacke...

CVE-2022-22826 is an integer overflow vulnerability in Expat's XML parser that can lead to heap memory corruption. Attackers can exploit this by provi...

This integer overflow vulnerability in Accops HyWorks DVM Tools allows local attackers to execute arbitrary code with kernel privileges or crash the o...

This integer overflow vulnerability in Accops HyWorks DVM Tools allows local attackers to execute arbitrary code with kernel privileges or crash the o...

This vulnerability in NoMachine Cloud Server allows local attackers to execute arbitrary code with kernel privileges or cause denial of service throug...

CVE-2021-42987 is an integer overflow vulnerability in Eltima USB Network Gate's IOCTL handler that allows local attackers to execute arbitrary code w...

This vulnerability in Amzetta zPortal Windows zClient allows local attackers to execute arbitrary code with kernel privileges or cause denial of servi...