CWE-190

Medium likelihood

Integer Overflow or Wraparound

Parent: CWE-682 - Incorrect Calculation

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

3,200 vulnerabilities with CWE-190
CVE-2022-31005 HIGH
Vapor < 4.60.3 - Denial of Service via Integer Overflow in FileMiddleware
CVSS 7.5
CVE-2022-1926 MEDIUM
polonel/trudesk <1.2.3 - Memory Corruption
CVSS 4.9
CVE-2022-26775 CRITICAL
macOS 10.15-10.15.6 and 12.0.0-12.3 - Integer Overflow to Remote Code Execution
CVSS 9.8
CVE-2022-26711 CRITICAL
iTunes < 12.12.4 - Remote Code Execution via Integer Overflow
CVSS 9.8
CVE-2022-29358 MEDIUM
epub2txt2 v2.04 - Denial of Service via Integer Overflow in _parse_special_tag
CVSS 5.5
CVE-2022-29219 HIGH
Lodestar < 0.36.0 - Consensus Split via Integer Overflow in AttesterSlashing and ProposerSlashing
CVSS 7.5
CVE-2022-31264 HIGH
solana_rbpf < 0.2.29 - Integer Overflow via ELF Program Header Parsing
CVSS 7.5
CVE-2022-29203 MEDIUM
TensorFlow <2.9.0, <2.8.1, <2.7.2, <2.6.4 - DoS
CVSS 5.5
CVE-2022-29030 MEDIUM
JT2Go, Teamcenter Visualization <13.3.0.3 - DoS
CVSS 5.5
CVE-2022-1754 MEDIUM
trudesk < 1.2.2 - Integer Overflow or Wraparound
CVSS 6.5
CVE-2022-22976 MEDIUM
Spring Security 5.5.x < 5.5.7 and 5.6.x < 5.6.4 - Integer Overflow in BCrypt Work Factor
CVSS 5.3
CVE-2022-1116 HIGH
Linux Kernel 5.4.24-5.4.188 - Integer Overflow in io_uring
CVSS 7.8
CVE-2022-1728 MEDIUM
trudesk < 1.2.2 - Denial of Service via Long Password
CVSS 6.5
CVE-2022-28937 HIGH
FISCO-BCOS release-3.0.0-rc2 - Denial of Service via Invalid Proposal Header
CVSS 7.5
CVE-2022-28936 HIGH
FISCO-BCOS release-3.0.0-rc2 - Denial of Service via Large Viewchange Message Packet
CVSS 7.5
CVE-2022-1699 HIGH
organizr < 2.1.2000 - Uncontrolled Resource Consumption
CVSS 7.5
CVE-2022-27114 MEDIUM
htmldoc 1.9.16 - Integer Overflow in JPEG Image Processing
CVSS 5.5
CVE-2022-26073 MEDIUM
Anker Eufy Homebase 2 <2.1.8.5h - DoS
CVSS 6.5
CVE-2022-28705 HIGH
F5 BIG-IP <16.1.2.2, 15.1.5.1, 14.1.4.6, 13.1.5 - DoS
CVSS 7.5
CVE-2022-28471 MEDIUM
ffjpeg - Integer Overflow in bmp_load() Leading to Heap Overflow
CVSS 6.5
CVE-2022-21743 HIGH
Android - Use-After-Free via Integer Overflow in ion
CVSS 7.8
CVE-2022-20107 MEDIUM
Android - Denial of Service via Integer Overflow in Subtitle Service
CVSS 4.4
CVE-2022-29824 MEDIUM
libxml2 < 2.9.14 - Integer Overflow via Buffer Handling Functions
CVSS 6.5
CVE-2022-1475 MEDIUM
FFmpeg < 4.4.2 and < 5.0.1 - Integer Overflow in g729_parse()
CVSS 5.5
CVE-2022-28197 MEDIUM
NVIDIA Jetson Linux < 32.7.2 - Integer Overflow in Cboot ext4_mount Function
CVSS 5.0
Details
Vulnerabilities 3,200
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits