The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result.
392 vulnerabilities with CWE-191
CVE-2026-3538
HIGH
Google Chrome <145.0.7632.159 - Memory Corruption
CVSS 8.8
CVE-2026-27596
HIGH
Exiv2 <0.28.8 - Memory Corruption
CVSS 7.5
CVE-2026-23748
LOW
Golioth Firmware SDK 0.10.0-0.21.9 - Memory Corruption
CVSS 3.7
CVE-2026-27710
MEDIUM
NanaZip 5.0.1252.0-6.0.1637.0 - DoS
CVSS 5.0
CVE-2026-3172
HIGH
pgvector 0.6.0-0.8.1 - Buffer Overflow
CVSS 8.1
CVE-2025-14547
Silicon Labs PSA Crypto - DoS
CVE-2025-14055
Silicon Labs Secure NCP - Buffer Overflow
CVE-2025-48021
MEDIUM
Yokogawa Electric Corporation - DoS
CVSS 6.5
CVE-2025-1924
HIGH
Yokogawa Electric Corporation - DoS
CVSS 8.2
CVE-2026-25532
MEDIUM
ESF-IDF <5.5.2 - Buffer Overflow
CVSS 6.3
CVE-2026-23951
MEDIUM
SumatraPDF - Buffer Overflow
CVSS 5.5
CVE-2025-62291
HIGH
strongSwan <6.0.3 - Buffer Overflow
CVSS 8.1
CVE-2026-20957
HIGH
Microsoft Office Excel - Code Injection
CVSS 7.8
CVE-2026-22185
OpenLDAP LMDB <0.9.14 - Buffer Overflow
CVE-2026-21489
MEDIUM
Color Iccdev < 2.3.1.2 - Integer Underflow
CVSS 6.1
CVE-2025-10933
Silicon Labs Z-Wave Protocol Controller - Memory Corruption
CVE-2025-67269
HIGH
Gpsd < 3.27.1 - Integer Underflow
CVSS 7.5
CVE-2025-62567
MEDIUM
Microsoft Windows 10 1607 < 10.0.14393.8688 - Integer Underflow
CVSS 5.3
CVE-2025-66217
HIGH
AIS-catcher <0.64 - Buffer Overflow/DoS/RCE
CVSS 7.5
CVE-2025-59368
Aicloud - Integer Underflow
CVE-2025-11931
HIGH
Wolfssl - Integer Underflow
CVSS 8.2
CVE-2025-65092
Espressif IOT Dev Framework <5.5.1-5.3.4 - Buffer Overflow
CVE-2025-64076
HIGH
Agronholm Cbor2 < 5.7.0 - Integer Underflow
CVSS 7.5
CVE-2025-61835
HIGH
Adobe Substance 3D Stager < 3.1.6 - Integer Underflow
CVSS 7.8
CVE-2025-61836
HIGH
Adobe Illustrator ON Ipad < 3.0.10 - Integer Underflow
CVSS 7.8
Details
Vulnerabilities
392