CWE-191

Integer Underflow (Wrap or Wraparound)

Parent: CWE-682 - Incorrect Calculation

The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result.

428 vulnerabilities with CWE-191
CVE-2023-21815 HIGH
Visual Studio < - RCE
CVSS 7.8
CVE-2023-21718 HIGH
Microsoft ODBC Driver for SQL Server - RCE
CVSS 7.8
CVE-2023-21684 HIGH
Microsoft PostScript and PCL6 Class Printer Driver - RCE
CVSS 8.8
CVE-2023-0469 MEDIUM
Linux Kernel < 6.1 - Integer Underflow
CVSS 5.5
CVE-2023-21681 HIGH
Microsoft WDAC OLE DB provider for SQL Server - RCE
CVSS 8.8
CVE-2023-21556 HIGH
Windows L2TP - RCE
CVSS 8.1
CVE-2023-21527 HIGH
Windows iSCSI Service - DoS
CVSS 7.5
CVE-2022-50036 MEDIUM
Linux Kernel < 5.10.138 - Integer Underflow
CVSS 5.5
CVE-2022-49650 MEDIUM
Linux Kernel < 5.15.54 - Integer Underflow
CVSS 5.5
CVE-2022-49564 MEDIUM
Linux kernel - Buffer Overflow
CVSS 5.5
CVE-2022-49563 MEDIUM
Linux kernel - Buffer Overflow
CVSS 5.5
CVE-2022-49280 MEDIUM
Linux Kernel - Buffer Overflow
CVSS 5.5
CVE-2022-49278 HIGH
Linux Kernel - Buffer Overflow
CVSS 7.1
CVE-2022-49208 MEDIUM
Linux kernel - Integer Underflow
CVSS 5.5
CVE-2022-49199 MEDIUM
Linux Kernel - Memory Corruption
CVSS 5.5
CVE-2022-48828 MEDIUM
Linux Kernel < 5.4.295 - Integer Underflow
CVSS 5.5
CVE-2022-48804 MEDIUM
Linux Kernel < 4.9.302 - Integer Underflow
CVSS 5.5
CVE-2022-48665 MEDIUM
Linux Kernel < 5.19.12 - Integer Underflow
CVSS 5.5
CVE-2022-48643 MEDIUM
Linux Kernel < 5.10.146 - Integer Underflow
CVSS 5.5
CVE-2022-28733 HIGH
Grub - Buffer Overflow
CVSS 8.1
CVE-2022-38681 MEDIUM
wlan driver - DoS
CVSS 5.5
CVE-2022-4338 CRITICAL
OpenvSwitch <version> - Integer Underflow
CVSS 9.8
CVE-2022-44444 MEDIUM
Google Android - Integer Underflow
CVSS 5.5
CVE-2022-20516 HIGH
Android <13 - Info Disclosure
CVSS 7.5
CVE-2022-20483 HIGH
Android - Info Disclosure
CVSS 7.5
Details
Vulnerabilities 428
Links
MITRE CWE Entry Search this CWE With Exploits