CWE-131

High likelihood

Incorrect Calculation of Buffer Size

Parent: CWE-682 - Incorrect Calculation

The product does not correctly calculate the size to be used when allocating a buffer, which could lead to a buffer overflow.

182 vulnerabilities with CWE-131
CVE-2022-2873 MEDIUM
Linux kernel Intel's iSMT SMBus host controller - Memory Corruption
CVSS 5.5
CVE-2022-22137 MEDIUM
Accusoft ImageGear <19.10 - Memory Corruption
CVSS 6.5
CVE-2021-46943 HIGH
Linux Kernel 5.2-5.4.118 - Denial of Service via SW-IOMMU Buffer Overflow
CVSS 7.8
CVE-2021-35134 HIGH
Snapdragon Connectivity/Snapdragon Industrial IOT/Snapdragon Mobile...
CVSS 8.4
CVE-2021-4155 MEDIUM
Linux Kernel < 5.16 - Data Leak via XFS_IOC_ALLOCSP IOCTL
CVSS 5.5
CVE-2021-38435 MEDIUM
RTI Connext DDS <6.1.0 - Buffer Overflow
CVSS 6.6
CVE-2021-38423 MEDIUM
GurumDDS - Buffer Overflow via Incorrect Buffer Size Calculation
CVSS 6.6
CVE-2021-4206 HIGH
QEMU < 7.0.0 - Heap-Based Buffer Overflow via QXL Cursor Allocation
CVSS 8.2
CVE-2021-44510 HIGH
FIS GT.M V7.0-000 - Memory Corruption
CVSS 7.5
CVE-2021-40052 HIGH
HarmonyOS - Denial of Service via Video Framework Buffer Size Calculation
CVSS 7.5
CVE-2021-40048 HIGH
Huawei EMUI - Denial of Service via Video Framework Buffer Size Calculation
CVSS 7.5
CVE-2021-40526 MEDIUM
onepeloton TTR01 Firmware <= PTV55G - Denial of Service via GymKit Daemon Heap Overflow
CVSS 4.8
CVE-2021-22415 HIGH
Huawei Smartphone - Buffer Overflow
CVSS 7.5
CVE-2021-22392 HIGH
Huawei Smartphone - Buffer Overflow
CVSS 7.5
CVE-2021-22391 HIGH
Huawei Smartphone - Buffer Overflow
CVSS 7.5
CVE-2021-21793 HIGH
Accusoft ImageGear 19.8-19.9 - Out-of-Bounds Write via JPG sof_nb_comp Header Processing
CVSS 8.8
CVE-2021-21824 CRITICAL
Accusoft ImageGear 19.9 - Out-of-Bounds Write via JPG Handle_JPEG420
CVSS 9.8
CVE-2021-3491 HIGH
Linux Kernel 5.7-5.10.37 - Heap Overflow via io_uring PROVIDE_BUFFERS Operation
CVSS 7.8
CVE-2021-29608 MEDIUM
TensorFlow < 2.1.4 - Heap Buffer Overflow via RaggedTensorToTensor Input Validation
CVSS 5.3
CVE-2021-29545 LOW
TensorFlow < 2.1.4 - Denial of Service via Sparse Tensor to CSR Matrix Conversion
CVSS 2.5
CVE-2021-29542 LOW
TensorFlow < 2.1.4 - Heap Buffer Overflow via StringNGrams Op
CVSS 2.5
CVE-2021-29537 LOW
TensorFlow < 2.1.4 - Heap Buffer Overflow in QuantizedResizeBilinear
CVSS 2.5
CVE-2021-29536 LOW
TensorFlow < 2.1.4 - Heap Buffer Overflow in QuantizedReshape via Invalid Quantization Thresholds
CVSS 2.5
CVE-2021-29535 LOW
TensorFlow < 2.1.4 - Heap Buffer Overflow in QuantizedMul via Invalid Quantization Thresholds
CVSS 2.5
CVE-2021-29529 LOW
TensorFlow < 2.1.4 - Heap Buffer Overflow in QuantizedResizeBilinear
CVSS 2.5
Details
Vulnerabilities 182
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits