CWE-190

Medium likelihood

Integer Overflow or Wraparound

Parent: CWE-682 - Incorrect Calculation

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

3,173 vulnerabilities with CWE-190
CVE-2025-46285 HIGH
macOS < 14.8.3 - Integer Overflow to Privilege Escalation
CVSS 7.8
CVE-2025-64721 CRITICAL
Sandboxie 1.14.0-1.16.6 - Heap Overflow via SbieIniServer::RC4Crypt
CVSS 10.0
CVE-2025-36936 HIGH
Android - Integer Overflow to Out-of-Bounds Write in GetTachyonCommand
CVSS 7.8
CVE-2025-14512 MEDIUM
glib < 2.86.3 - Heap Buffer Overflow and Denial of Service via GIO escape_byte_string() Integer Overflow
CVSS 6.5
CVE-2025-65803 MEDIUM
FreeImage < 3.18.0 - Denial of Service via PSD Image Data Parsing
CVSS 6.5
CVE-2025-14087 MEDIUM
GLib < 2.86.3 - Heap Corruption via GVariant Parser Buffer Underflow
CVSS 5.6
CVE-2025-64894 MEDIUM
DNG SDK <= 1.7.0 - Denial of Service via Integer Overflow
CVSS 5.5
CVE-2025-64783 HIGH
DNG SDK < 1.7.0 - Integer Overflow or Wraparound via Malicious File
CVSS 7.8
CVE-2025-62467 HIGH
Windows Projected File System - Authenticated Privilege Escalation via Integer Overflow
CVSS 7.8
CVE-2025-14308 CRITICAL
Robocode 1.9.3.6 - Integer Overflow in Buffer Write Method
CVSS 9.8
CVE-2025-48637 HIGH
mem_protect.c - Privilege Escalation
CVSS 7.8
CVE-2025-55753 HIGH
Apache HTTP Server 2.4.30-2.4.65 - Integer Overflow in ACME Certificate Renewal Backoff Timer
CVSS 7.5
CVE-2025-34297 HIGH
mborgerding/kissfft < 1b083165 - Heap Buffer Overflow via Integer Overflow in kiss_fft_alloc
CVE-2025-3500 CRITICAL
Avast Antivirus 25.1.981.6-25.3 - Privilege Escalation via Integer Overflow
CVSS 9.0
CVE-2025-66030 MEDIUM
node-forge < 1.3.2 - Integer Overflow via ASN.1 OID Arc Truncation
CVSS 5.3
CVE-2025-63938 MEDIUM
Tinyproxy <1.11.2 - Buffer Overflow
CVSS 6.5
CVE-2025-13601 HIGH
Red Hat CodeReady Linux Builder - Heap-Based Buffer Overflow via g_escape_uri_string()
CVSS 7.7
CVE-2025-52538 HIGH
AMD Xilinx Run Time (XRT) >=2025.1 - Integer Overflow via XOCL Driver Input Validation
CVSS 8.0
CVE-2025-0005 HIGH
AMD Xilinx Run Time (XRT) >=2025.1 - Denial of Service via Integer Overflow in XOCL Driver
CVSS 7.3
CVE-2025-63829 HIGH
eProsima Fast-DDS <v3.3 - Memory Corruption
CVSS 7.5
CVE-2025-12818 MEDIUM
PostgreSQL <18.1, 17.7, 16.11, 15.15, 14.20, 13.23 - Memory Corruption
CVSS 5.9
CVE-2025-27918 CRITICAL
AnyDesk < 9.0.0 - Heap-Based Buffer Overflow via UDP Discovery Packet
CVSS 9.8
CVE-2025-47365 HIGH
Qualcomm Firmware - Memory Corruption via Large Input Data
CVSS 7.8
CVE-2025-12501 HIGH
GameMaker IDE < 2024.14.0 - Denial of Service via Integer Overflow in network_create_server()
CVSS 7.5
CVE-2025-62231 HIGH
X.Org Xwayland < 24.1.9 - Memory Corruption via XkbSetCompatMap Integer Overflow
CVSS 7.3
Details
Vulnerabilities 3,173
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits