CWE-131

High likelihood

Incorrect Calculation of Buffer Size

Parent: CWE-682 - Incorrect Calculation

The product does not correctly calculate the size to be used when allocating a buffer, which could lead to a buffer overflow.

182 vulnerabilities with CWE-131
CVE-2023-2687 LOW
Silicon Labs Gecko SDK <4.2.1 - Buffer Overflow
CVSS 2.9
CVE-2023-24819 CRITICAL
RIOT-OS <2022.10 - Memory Corruption
CVSS 9.8
CVE-2023-20627 MEDIUM
Android - Local Privilege Escalation via Missing Bounds Check in pqframework
CVSS 6.7
CVE-2023-1175 MEDIUM
vim < 9.0.1378 - Buffer Overflow via Incorrect Calculation of Buffer Size
CVSS 6.6
CVE-2023-0568 HIGH
PHP 8.0.X-8.2.X - Memory Corruption
CVSS 7.5
CVE-2022-48889 MEDIUM
Linux Kernel 5.17-6.1.7 - Buffer Overflow in ASoC Intel sof-nau8825 Module Alias
CVSS 5.5
CVE-2022-33211 CRITICAL
Qualcomm Modem Firmware - Memory Corruption
CVSS 9.8
CVE-2022-25731 HIGH
Qualcomm Mdm9205 Firmware - Information Disclosure
CVSS 7.5
CVE-2022-4378 HIGH
Linux Kernel 4.9.0-4.9.336 - Stack Overflow in SYSCTL Subsystem
CVSS 7.8
CVE-2022-32651 MEDIUM
Android - Use-After-Free in mtk-aie
CVSS 6.7
CVE-2022-32650 MEDIUM
Android - Use-After-Free in mtk-isp
CVSS 6.7
CVE-2022-32649 MEDIUM
Android - Use-After-Free in JPEG Component
CVSS 6.7
CVE-2022-32630 MEDIUM
Android - Out-of-Bounds Write via Throttling Buffer Size Calculation
CVSS 6.7
CVE-2022-32624 MEDIUM
Android - Out-of-Bounds Write in Throttling
CVSS 6.7
CVE-2022-41907 MEDIUM
TensorFlow < 2.8.4 - Integer Overflow in ResizeNearestNeighborGrad
CVSS 4.8
CVE-2022-41887 MEDIUM
TensorFlow 2.9.0-2.9.2 - Denial of Service via Integer Overflow in tf.keras.losses.poisson
CVSS 4.8
CVE-2022-41886 MEDIUM
TensorFlow < 2.8.4 - Integer Overflow in ImageProjectiveTransformV2
CVSS 4.8
CVE-2022-41885 MEDIUM
TensorFlow < 2.7.4 - Integer Overflow in FusedResizeAndPadConv2D
CVSS 4.8
CVE-2022-31630 MEDIUM
PHP <7.4.33, 8.0.25, 8.1.12 - Memory Corruption
CVSS 6.5
CVE-2022-32618 MEDIUM
Android - Local Privilege Escalation via Incorrect Buffer Size Calculation in TypeC
CVSS 6.8
CVE-2022-32617 MEDIUM
Android - Local Privilege Escalation via TypeC Buffer Size Calculation
CVSS 6.8
CVE-2022-39377 HIGH
sysstat 9.1.16-12.7.0 - Remote Code Execution via Buffer Size Overflow in sa_common.c
CVSS 7.0
CVE-2022-43945 HIGH
Linux kernel <5.19.17,6.0.2 - Buffer Overflow
CVSS 7.5
CVE-2022-26474 MEDIUM
Sensorhub - Local Privilege Escalation
CVSS 6.7
CVE-2022-2520 MEDIUM
libtiff 4.4.0rc1 - Memory Corruption
CVSS 6.5
Details
Vulnerabilities 182
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits