CWE-191: CWE-191

Adobe Animate versions 23.0.8, 24.0.5 and earlier contain an integer underflow vulnerability that could allow arbitrary code execution when a user ope...

Adobe Animate versions 23.0.8, 24.0.5 and earlier contain an integer underflow vulnerability that could allow arbitrary code execution when a user ope...

This vulnerability allows remote attackers to execute arbitrary code on systems running vulnerable versions of 7-Zip when processing malicious Zstanda...

A buffer overflow vulnerability in the Linux kernel's s5p-jpeg media driver allows local attackers to cause memory corruption. This affects systems us...

Adobe Framemaker versions 2020.6, 2022.4 and earlier contain an integer underflow vulnerability that could allow arbitrary code execution when a user ...

This CVE-2024-46759 is an integer underflow vulnerability in the Linux kernel's adc128d818 hardware monitoring driver. When users write large negative...

Adobe Illustrator versions 28.6, 27.9.5 and earlier contain an integer underflow vulnerability that could allow arbitrary code execution when a user o...

This vulnerability allows an authenticated attacker to elevate privileges on Windows systems by exploiting the Workstation Service. It affects Windows...

This CVE describes a vulnerability in the Linux kernel's AMD display driver where missing ODM (Output Data Mux) calculations during pipe split policy ...

This vulnerability in 7-Zip's PPMd7 compression module allows attackers to craft malicious 7Z archives that trigger an integer underflow, leading to i...

This vulnerability in Visual Studio allows attackers to execute arbitrary code on a victim's system by tricking them into opening a specially crafted ...

This CVE describes an integer underflow/wraparound vulnerability in Adobe Acrobat Reader that could allow arbitrary code execution when a user opens a...

This Windows kernel vulnerability allows local attackers to escalate privileges from a lower-privileged account to SYSTEM-level access. It affects Win...

CVE-2023-28272 is a Windows kernel elevation of privilege vulnerability that allows authenticated attackers to execute arbitrary code with SYSTEM priv...

CVE-2023-21815 is a remote code execution vulnerability in Visual Studio that allows attackers to execute arbitrary code on affected systems. This aff...

CVE-2022-22715 is a Windows Named Pipe File System elevation of privilege vulnerability that allows authenticated attackers to gain SYSTEM-level privi...

CVE-2021-31956 is a Windows NTFS elevation of privilege vulnerability that allows authenticated attackers to gain SYSTEM-level privileges on affected ...

CVE-2021-3472 is an integer underflow vulnerability in xorg-x11-server that allows local attackers to escalate privileges on affected systems. This fl...

CVE-2021-27486 is an integer underflow vulnerability in FATEK Automation WinProladder PLC programming software that can lead to out-of-bounds writes a...

An integer underflow vulnerability in gpsd's NAVCOM packet parser causes a denial of service condition. When processing malicious packets, the parser ...

Two vulnerabilities in cbor2's C extension allow remote attackers to cause denial of service through process crashes or memory exhaustion. Attackers c...

IBM Informix Dynamic Server contains an integer underflow vulnerability when processing network packets, allowing remote attackers to cause denial of ...

An integer underflow vulnerability in libsoup's soup_multipart_new_from_message() function allows specially crafted multipart messages to cause memory...

This vulnerability in Eclipse ThreadX NetX Duo's HTTP server allows attackers to cause integer underflow and denial of service by sending specially cr...

An integer underflow vulnerability in NetX HTTP server functionality of Eclipse ThreadX NetX Duo allows attackers to cause denial of service by sendin...

An integer underflow vulnerability in NetX HTTP server functionality of Eclipse ThreadX NetX Duo allows attackers to cause denial of service by sendin...

This vulnerability in Windows MapUrlToZone function allows attackers to cause denial of service by crashing affected systems. It affects Windows syste...

An integer underflow vulnerability in FORT RPKI validator versions 1.6.3 and 1.6.4 allows a malicious RPKI repository to cause a denial of service by ...

This CVE describes an integer underflow vulnerability in GStreamer's qtdemux component that can lead to out-of-bounds memory reads. Attackers could ex...

An integer underflow vulnerability in Renesas ARM Trusted Firmware's image range check calculations could allow attackers to bypass address restrictio...

This vulnerability in the DHCP Server service allows an attacker to send specially crafted packets that cause a denial of service (DoS) condition. The...

CVE-2023-47360 is an integer underflow vulnerability in VLC media player's MMS protocol handler that can cause incorrect packet length calculations. T...

An integer underflow vulnerability in SoftEther VPN's vpnserver OvsProcessData functionality allows attackers to cause denial of service by sending sp...

This vulnerability in libjxl (JPEG XL library) allows an integer underflow during patch dictionary decoding, which can cause denial of service through...

A remotely exploitable integer underflow vulnerability in MaraDNS allows attackers to cause Denial of Service by sending specially crafted DNS packets...

This vulnerability in Windows Network File System (NFS) allows an attacker to read sensitive information from memory that should be protected. It affe...

This CVE describes an integer underflow vulnerability in Huawei smartphones' Samgr component, which could allow an attacker to cause a denial-of-servi...

This vulnerability allows unauthenticated attackers to send specially crafted packets to Weidmueller Industrial WLAN devices, causing an integer under...

CVE-2021-37706 is an integer underflow vulnerability in PJSIP's STUN message processing that allows remote code execution. Attackers on the same netwo...

This vulnerability in Microsoft Message Queuing (MSMQ) allows remote attackers to execute arbitrary code on affected systems by sending specially craf...

This CVE addresses an integer underflow vulnerability in the Linux kernel's remoteproc subsystem. If exploited, it could allow local attackers to caus...

This vulnerability in the gnark zk-SNARK library allows for multiple valid bit decompositions of certain in-circuit values due to field overflow. This...

This vulnerability allows attackers to execute arbitrary code or cause denial of service by tricking users into opening a malicious .lxt2 file in GTKW...

A vulnerability in Yokogawa's Vnet/IP Interface Package allows remote attackers to cause denial of service by sending maliciously crafted packets, whi...

This vulnerability allows information disclosure when parsing sub-IE length during new IE generation in Qualcomm components. It affects devices using ...

This vulnerability in Windows Hyper-V allows an authenticated attacker on a guest virtual machine to cause a denial of service condition on the host s...

This vulnerability in ESP-IDF's WPS Enrollee implementation allows integer underflow when processing malformed EAP-WSC packets with truncated payloads...

This CVE describes an integer underflow vulnerability in the MediaTek MT7601U WiFi driver in the Linux kernel. An attacker could manipulate network pa...

A vulnerability in the Linux kernel's i2c driver for Realtek RTL9300 chips allows improper handling of zero-length data transfers. This can cause unin...

This CVE-2023-53226 is an out-of-bounds (OOB) and integer underflow vulnerability in the mwifiex WiFi driver in the Linux kernel. It allows attackers ...