CWE-190

Medium likelihood

Integer Overflow or Wraparound

Parent: CWE-682 - Incorrect Calculation

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

3,200 vulnerabilities with CWE-190
CVE-2021-34513 HIGH
Windows 10 and Windows Server 2016 - Elevation of Privilege via Storage Spaces Controller Integer Overflow
CVSS 7.8
CVE-2021-34512 HIGH
Windows 10 and Windows Server 2016/2019 - Elevation of Privilege via Storage Spaces Controller Integer Overflow
CVSS 7.8
CVE-2021-34510 HIGH
Windows 10 and Windows Server 2016/2019 - Elevation of Privilege via Storage Spaces Controller Integer Overflow
CVSS 7.8
CVE-2021-21807 CRITICAL
Accusoft ImageGear 19.9 - Stack-Based Buffer Overflow via DICOM Meta Info Parsing
CVSS 9.8
CVE-2021-32714 MEDIUM
hyper < 0.14.10 - Integer Overflow in Chunk Size Decoding
CVSS 5.9
CVE-2021-32559 MEDIUM
pywin32 < 301 - Denial of Service via Integer Overflow in ACL Entry Addition
CVSS 6.5
CVE-2021-22323 CRITICAL
Huawei EMUI and Magic UI - Integer Overflow to Privilege Escalation
CVSS 9.8
CVE-2021-34385 MEDIUM
NVIDIA Jetson Linux < 32.5.1 - Integer Overflow to Heap Overflow in Trusty TLK Kernel
CVSS 6.3
CVE-2021-34382 MEDIUM
NVIDIA Jetson Linux < 32.5.1 - Integer Overflow in Trusty TLK tz_map_shared_mem Function
CVSS 6.7
CVE-2021-34381 MEDIUM
NVIDIA Jetson Linux < 32.5.1 - Denial of Service via Integer Overflow in Trusty TLK tz_map_shared_mem
CVSS 6.7
CVE-2021-32491 HIGH
djvulibre < 3.5.28 - Integer Overflow in render() Function via Crafted DJVU File
CVSS 7.8
CVE-2021-29946 HIGH
Firefox < 88.0 and Firefox ESR < 78.10 - Port Blocking Bypass via Alt-Svc Header Integer Overflow
CVSS 8.8
CVE-2021-34392 MEDIUM
NVIDIA Jetson Linux < 32.5.1 - Denial of Service via Integer Overflow in tz_map_shared_mem
CVSS 4.4
CVE-2021-34391 MEDIUM
Jetson Linux < 32.5.1 - Denial of Service via Trusty TLK Kernel SMC Call Integer Overflow
CVSS 5.3
CVE-2021-34390 MEDIUM
Jetson Linux < 32.5.1 - Denial of Service via Trusty TLK Kernel SMC Call Integer Overflow
CVSS 5.3
CVE-2021-34372 HIGH
NVIDIA Jetson Linux < 32.5.1 - Integer Overflow to Heap Buffer Overflow in Trusty OTE Protocol Message Parsing
CVSS 8.2
CVE-2021-0543 MEDIUM
Android - Integer Overflow to Out-of-Bounds Write in phNxpNciHal_process_ext_rsp
CVSS 6.7
CVE-2021-0557 HIGH
Android 11 - Remote Code Execution via Integer Overflow in ABuffer.cpp
CVSS 8.8
CVE-2021-34386 MEDIUM
NVIDIA Jetson Linux < 32.5.1 - Integer Overflow in Trusty TLK Kernel Calloc Size Calculation
CVSS 6.3
CVE-2021-26461 CRITICAL
Apache Nuttx < 10.1.0 - Integer Overflow in Memory Allocation Functions
CVSS 9.8
CVE-2021-0510 HIGH
Android -<8.1, 9, 10, 11 - Privilege Escalation
CVSS 7.8
CVE-2021-0494 HIGH
Android - Integer Overflow to Out-of-Bounds Write in Memory Management Driver
CVSS 7.8
CVE-2021-31807 MEDIUM
Squid Proxy Range Header DoS
CVSS 6.5
CVE-2021-26945 MEDIUM
OpenEXR < 3.0.1 - Heap-Buffer Overflow via Integer Overflow
CVSS 5.5
CVE-2021-26260 MEDIUM
OpenEXR < 3.0.1 - Heap-Buffer Overflow via DwaCompressor Integer Overflow
CVSS 5.5
Details
Vulnerabilities 3,200
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits