CVE & Exploit Intelligence Database

CVE-2023-3044 3.3 LOW 1 Writeup EPSS 0.00

An excessively large PDF page size (found in fuzz testing, unlikely in normal PDF files) can result in a divide-by-zero in Xpdf's text extraction code. This is related to CVE-2022-30524, but the problem here is caused by a very large page size, rather than by a very large character coordinate.

CWE-369 Jun 02, 2023

CVE-2022-47525 7.5 HIGH EPSS 0.00

Fox-IT DataDiode (aka Fox DataDiode) 3.4.3 suffers from a Divide-by-Zero vulnerability in the packet parser. A remote attacker could leverage this vulnerability to cause a denial-of-service. Exploitation of this issue does not require user interaction.

CWE-369 May 31, 2023

CVE-2023-2839 7.5 HIGH 1 Writeup EPSS 0.00

Divide By Zero in GitHub repository gpac/gpac prior to 2.2.2.

CWE-369 May 22, 2023

CVE-2023-2662 2.9 LOW EPSS 0.00

In Xpdf 4.04 (and earlier), a bad color space object in the input PDF file can cause a divide-by-zero.

CWE-369 May 11, 2023

CVE-2023-32573 6.5 MEDIUM EPSS 0.00

In Qt before 5.15.14, 6.0.x through 6.2.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1, QtSvg QSvgFont m_unitsPerEm initialization is mishandled.

CWE-369 May 10, 2023

CVE-2023-29659 6.5 MEDIUM EPSS 0.00

A Segmentation fault caused by a floating point exception exists in libheif 1.15.1 using crafted heif images via the heif::Fraction::round() function in box.cc, which causes a denial of service.

CWE-369 May 05, 2023

CVE-2023-31085 5.5 MEDIUM EPSS 0.00

An issue was discovered in drivers/mtd/ubi/cdev.c in the Linux kernel 6.2. There is a divide-by-zero error in do_div(sz,mtd->erasesize), used indirectly by ctrl_cdev_ioctl, when mtd->erasesize is 0.

CWE-369 Apr 24, 2023

CVE-2023-25511 3.3 LOW EPSS 0.00

NVIDIA CUDA Toolkit for Linux and Windows contains a vulnerability in cuobjdump, where a division-by-zero error may enable a user to cause a crash, which may lead to a limited denial of service.

CWE-369 Apr 22, 2023

CVE-2023-1127 7.8 HIGH 1 Writeup EPSS 0.00

Divide By Zero in GitHub repository vim/vim prior to 9.0.1367.

CWE-369 Mar 01, 2023

CVE-2023-23109 7.5 HIGH 1 Writeup EPSS 0.00

In crasm 1.8-3, invalid input validation, specific files passed to the command line application, can lead to a divide by zero fault in the function opdiv.

CWE-369 Feb 27, 2023

CVE-2023-0615 5.5 MEDIUM EPSS 0.00

A memory leak flaw and potential divide by zero and Integer overflow was found in the Linux kernel V4L2 and vivid test code functionality. This issue occurs when a user triggers ioctls, such as VIDIOC_S_DV_TIMINGS ioctl. This could allow a local user to crash the system if vivid test code enabled.

CWE-190 Feb 06, 2023

CVE-2023-0512 7.8 HIGH 1 Writeup EPSS 0.00

Divide By Zero in GitHub repository vim/vim prior to 9.0.1247.

CWE-369 Jan 30, 2023

CVE-2023-21789 7.8 HIGH EPSS 0.02

3D Builder Remote Code Execution Vulnerability

CWE-369 Jan 10, 2023

CVE-2022-41287 3.3 LOW EPSS 0.00

A vulnerability has been identified in JT2Go (All versions < V14.1.0.6), Teamcenter Visualization V13.2 (All versions < V13.2.0.12), Teamcenter Visualization V13.3 (All versions < V13.3.0.8), Teamcenter Visualization V14.0 (All versions < V14.0.0.4), Teamcenter Visualization V14.1 (All versions < V14.1.0.6). The CGM_NIST_Loader.dll contains divide by zero vulnerability when parsing a CGM file. An attacker could leverage this vulnerability to crash the application causing denial of service condition.

CWE-369 Dec 13, 2022

CVE-2022-39318 4.8 MEDIUM 1 Writeup EPSS 0.00

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing input validation in `urbdrc` channel. A malicious server can trick a FreeRDP based client to crash with division by zero. This issue has been addressed in version 2.9.0. All users are advised to upgrade. Users unable to upgrade should not use the `/usb` redirection switch.

CWE-369 Nov 16, 2022

CVE-2022-35996 5.9 MEDIUM 1 Writeup EPSS 0.00

TensorFlow is an open source platform for machine learning. If `Conv2D` is given empty `input` and the `filter` and `padding` sizes are valid, the output is all-zeros. This causes division-by-zero floating point exceptions that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit 611d80db29dd7b0cfb755772c69d60ae5bca05f9. The fix will be included in TensorFlow 2.10.0. We will also cherrypick this commit on TensorFlow 2.9.1, TensorFlow 2.8.1, and TensorFlow 2.7.2, as these are also affected and still in supported range. There are no known workarounds for this issue.

CWE-369 Sep 16, 2022

CVE-2022-38850 5.5 MEDIUM EPSS 0.00

The MPlayer Project mencoder SVN-r38374-13.0.1 is vulnerable to Divide By Zero via the function config () of llibmpcodecs/vf_scale.c.

CWE-369 Sep 15, 2022

CVE-2022-38865 5.5 MEDIUM EPSS 0.00

Certain The MPlayer Project products are vulnerable to Divide By Zero via the function demux_avi_read_packet of libmpdemux/demux_avi.c. This affects mplyer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.

CWE-369 Sep 15, 2022

CVE-2022-38860 5.5 MEDIUM EPSS 0.00

Certain The MPlayer Project products are vulnerable to Divide By Zero via function demux_open_avi() of libmpdemux/demux_avi.c which affects mencoder. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.

CWE-369 Sep 15, 2022

CVE-2022-38266 6.5 MEDIUM 1 Writeup EPSS 0.00

An issue in the Leptonica linked library (v1.79.0) allows attackers to cause an arithmetic exception leading to a Denial of Service (DoS) via a crafted JPEG file.

CWE-369 Sep 09, 2022