CWE-190: Integer Overflow

CVE-2020-28009 is an integer overflow vulnerability in Exim mail transfer agent versions before 4.94.2. It allows remote attackers to cause buffer ove...

This integer overflow vulnerability in GPAC's filter_props.c allows attackers to trigger a memcpy failure by providing a negative size value, potentia...

An integer overflow vulnerability in libtiff's tif_getimage.c allows attackers to execute arbitrary code when a user opens a malicious TIFF file. This...

An integer overflow vulnerability in Intel Graphics Drivers for Windows and Linux kernel allows a privileged user to potentially escalate privileges v...

This CVE describes an integer overflow vulnerability in certain Intel Graphics Drivers that could allow a privileged user to escalate their privileges...

CVE-2021-26825 is an integer overflow vulnerability in Godot Engine that allows attackers to trigger a stack buffer overflow by loading specially craf...

This vulnerability allows remote attackers to execute arbitrary code or cause denial of service via a specially crafted BMP image file. It affects app...

This vulnerability in NVIDIA vGPU manager allows attackers to cause integer overflow by providing unvalidated input indexes. Successful exploitation c...

A heap-based buffer overflow vulnerability in glib's g_escape_uri_string() function allows attackers to write beyond allocated memory boundaries when ...

This CVE describes an integer overflow vulnerability in TensorFlow's TFLite component where an attacker can craft a malicious TFLite model to trigger ...

This CVE describes an integer overflow vulnerability in TensorFlow's Range operation that can lead to undefined behavior or excessive memory allocatio...

An integer overflow vulnerability in ESPHome's API protobuf decoder allows denial-of-service attacks when API encryption is disabled. Malicious client...

An integer overflow vulnerability in FFmpeg's libswscale component allows attackers to cause heap corruption when processing specially crafted YUV vid...

An integer overflow in Apache HTTP Server's ACME certificate renewal process causes the backoff timer to reset to zero after approximately 30 days of ...

CVE-2025-63829 is an integer overflow vulnerability in eProsima Fast-DDS that causes an infinite loop in the Time_t::fraction() function. This allows ...

An integer overflow vulnerability in GameMaker IDE versions below 2024.14.0 can cause application crashes through denial-of-service attacks. This affe...

CVE-2025-59942 is an integer overflow vulnerability in go-f3's message validation that causes Filecoin nodes to panic and crash when processing specia...

An integer overflow vulnerability in Mongoose's WebSocket component (versions 7.5 through 7.17) allows attackers to crash applications via specially c...

CVE-2025-55552 is an integer overflow vulnerability in PyTorch v2.8.0 that occurs when torch.rot90 and torch.randn_like functions are used together, p...

NVIDIA Triton Inference Server contains an integer overflow vulnerability where sending an invalid request can cause a segmentation fault and crash th...

NVIDIA Triton Inference Server contains an integer overflow vulnerability (CWE-190) where specially crafted inputs could cause denial of service or da...

An integer overflow vulnerability in Apache Tomcat's multipart upload handling allows attackers to bypass configured size limits, potentially causing ...

This CVE describes an integer overflow vulnerability in libxml2's xmlBuildQName function that can cause stack-based buffer overflow when processing ma...

This CVE describes an integer overflow vulnerability in multiple Apple operating systems that could allow a remote attacker to leak memory. The vulner...

This vulnerability allows network-adjacent attackers to execute arbitrary code on Tesla Model 3 vehicles by exploiting an integer overflow in the VCSE...

This vulnerability allows an attacker to cause a denial-of-service (DoS) condition by sending specially crafted beacon frames with malformed Multi-Lin...

An integer overflow vulnerability in Cesanta Mongoose Web Server v7.14 allows attackers to crash the server by sending specially crafted TLS packets. ...

This vulnerability in Bitcoin Core allows attackers to cause a network split by exploiting an integer overflow when calculating time offsets for new p...

An integer overflow vulnerability in Snort's Modbus preprocessor allows remote attackers to cause denial of service by sending crafted Modbus traffic....

An integer overflow vulnerability in Shopkit 1.0 allows attackers to add products with negative quantities to shopping carts via the qtd parameter. Th...

This vulnerability allows an attacker to cause a Denial of Service (DoS) by sending specially crafted Wi-Fi beacon frames with malformed Multi-Link (M...

CVE-2023-33976 is a vulnerability in TensorFlow's array_ops.upper_bound function that causes a segmentation fault when provided with a tensor that is ...

CVE-2023-49441 is an integer overflow vulnerability in dnsmasq's forward_query function that could allow remote attackers to cause a denial of service...

An integer overflow vulnerability in Mbed TLS's mbedtls_x509_set_extension() function allows attackers to cause denial of service (DoS) by triggering ...

An integer overflow vulnerability in FFmpeg's avcodec/osq module allows attackers to cause denial of service (DoS) by triggering crashes or resource e...

This vulnerability in Apache Guacamole allows integer overflow when processing malicious VNC server data, potentially leading to memory corruption and...

An integer overflow vulnerability in the QuickSec IPSec toolkit used in Zyxel VPN devices allows unauthenticated attackers to cause denial-of-service ...

This vulnerability in Windows Deployment Services (WDS) allows attackers to cause a denial of service by sending specially crafted packets to vulnerab...

This CVE describes an integer overflow vulnerability in Eclipse Jetty's HTTP/2 HPACK header processing. Attackers can send specially crafted HTTP/2 re...

This CVE describes an integer overflow vulnerability in OPC UA implementations (ANSI C and C++) that causes infinite loops during certificate validati...

CVE-2020-21699 is an integer overflow vulnerability in Tengine's range filter module that allows attackers to leak potentially sensitive information f...

CVE-2023-39125 is an integer overflow and out-of-bounds write vulnerability in NTSC-CRT's BMP loading function. Attackers can exploit this by providin...

This CVE describes an integer overflow vulnerability in MediaTek wlan firmware that can cause system crashes. Attackers can remotely trigger denial of...

This CVE describes an integer overflow vulnerability in MediaTek wlan firmware that can cause system crashes. Attackers can remotely trigger denial of...

This vulnerability in MediaTek wlan firmware allows remote attackers to cause a system crash (denial of service) without authentication or user intera...

This CVE describes an integer overflow vulnerability in Android's VideoFrame component that could allow remote information disclosure without user int...

A buffer overflow vulnerability in the Kilo text editor allows remote attackers to cause denial of service by exploiting the editorUpdateRow function....

CVE-2023-32058 is an integer overflow vulnerability in Vyper smart contract language where loop iterator variables can overflow their type bounds when...

CVE-2023-30463 is an integer overflow vulnerability in Altran picoTCP's IPv6 implementation that allows memory corruption when processing large ICMPv6...

CVE-2023-25662 is an integer overflow vulnerability in TensorFlow's EditDistance function that could allow attackers to cause denial of service or pot...