CWE-190

Medium likelihood

Integer Overflow or Wraparound

Parent: CWE-682 - Incorrect Calculation

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

3,209 vulnerabilities with CWE-190
CVE-2017-15836 HIGH
Qualcomm Android for MSM - Integer Overflow in Firmware Event Handling
CVSS 7.3
CVE-2017-18255 HIGH
Linux Kernel < 4.11 - Integer Overflow in perf_cpu_time_max_percent_handler
CVSS 7.8
CVE-2017-17766 CRITICAL
Android for MSM - Integer Overflow in wma_peer_info_event_handler
CVSS 9.8
CVE-2017-15325 HIGH
Huawei Prague Smartphone Firmware - Integer Overflow in Bdat Driver
CVSS 7.8
CVE-2017-15831 HIGH
Android - Integer Overflow in wma_ndp_end_indication_event_handler
CVSS 7.8
CVE-2017-14887 HIGH
Android - Heap Buffer Overflow in eWNI_SME_MODIFY_ADDITIONAL_IES Message Processing
CVSS 7.8
CVE-2017-18233 MEDIUM
exempi < 2.4.4 - Denial of Service via Integer Overflow in RIFF Chunk Class
CVSS 5.5
CVE-2017-17328 MEDIUM
Huawei MHA-AL00AC00B125 - Info Disclosure
CVSS 5.5
CVE-2017-17324 HIGH
Huawei Mate 9 Pro - Buffer Overflow
CVSS 7.8
CVE-2017-17147 MEDIUM
Huawei DP300 V500R002C00 - Integer Overflow
CVSS 5.5
CVE-2017-17765 HIGH
Android - Integer Overflow to Buffer Overflow in wma_get_ll_stats_ext_buf()
CVSS 7.8
CVE-2017-17764 HIGH
Android - Integer Overflow in wma_rx_aggr_failure_event_handler
CVSS 7.8
CVE-2017-15862 HIGH
Android - Integer Overflow and Buffer Overflow in wma_unified_link_radio_stats_event_handler()
CVSS 7.8
CVE-2017-5804 CRITICAL
HPE Intelligent Management Center PLAT 7.2 - Remote Code Execution
CVSS 9.8
CVE-2017-17288 MEDIUM
Huawei DP300, RP200, TE30, TE40, TE50, TE60 Firmware - Integer Overflow via Crafted Messages
CVSS 5.3
CVE-2017-17187 MEDIUM
Huawei DP300, RP200, TE30, TE40, TE50, TE60 Firmware - Authenticated Denial of Service via SOAP Packet Integer Overflow
CVSS 4.3
CVE-2017-17184 MEDIUM
Huawei DP300, RP200, TE30, TE40, TE50, TE60 Firmware - Authenticated Denial of Service via SOAP Packet Integer Overflow
CVSS 4.3
CVE-2017-17183 MEDIUM
Huawei DP300, RP200, TE30, TE40, TE50, TE60 Firmware - Authenticated Denial of Service via SOAP Packet Integer Overflow
CVSS 4.3
CVE-2017-15344 HIGH
Huawei AR3200 V200R006C10-V200R008C30 - Unauthenticated Denial of Service via SCTP Message Integer Overflow
CVSS 7.5
CVE-2017-15343 HIGH
Huawei AR3200 V200R006C10-V200R008C30 - Unauthenticated Denial of Service via SCTP Message Integer Overflow
CVSS 7.5
CVE-2017-18187 CRITICAL
ARM mbed TLS < 2.7.0 - Integer Overflow in PSK Identity Parsing
CVSS 9.8
CVE-2017-17725 MEDIUM
Exiv2 0.26 - Denial of Service via Integer Overflow in getULong Function
CVSS 6.5
CVE-2017-5131 HIGH
Google Chrome <62.0.3202.62 - Heap Corruption
CVSS 8.8
CVE-2017-5130 HIGH
libxml2 <2.9.5 - Heap Corruption
CVSS 8.8
CVE-2017-12470 CRITICAL
ccn-lite < 2.0.0 - Integer Overflow in ndn_parse_sequence
CVSS 9.8
Details
Vulnerabilities 3,209
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits