A product calculates or uses an incorrect maximum or minimum value that is 1 more, or 1 less, than the correct value.
198 vulnerabilities with CWE-193
CVE-2026-8357
MEDIUM
The Document Foundation LibreOffice - Heap Buffer Overflow in Calc Formula Compilation
CVE-2026-54410
HIGH
Debevv nanoMODBUS < 1.23.0 - Off-by-one Error
CVSS 8.6
CVE-2026-46559
MEDIUM
ImageMagick: Heap Buffer Over-Write of a single byte in the JP2 encoder
CVSS 4.0
CVE-2026-45380
LOW
bit7z: Path Traversal via Null Byte Injection from `gcount()` Off-by-One in `restoreSymlink()`
CVSS 3.6
CVE-2026-45358
MEDIUM
ImageMagick: Out-of-Bounds Read of a single byte in meta encoder
CVSS 5.3
CVE-2026-49127
HIGH
Music Player Daemon < 0.24.11 Stack Buffer Overflow via pcm_unpack_24be
CVSS 8.6
CVE-2026-42015
MEDIUM
Gnutls: gnutls: memory corruption due to off-by-one error in pkcs#12 bag handling
CVSS 5.3
CVE-2026-48689
CRITICAL
Pavel-odintsov Fastnetmon < 1.2.9 - Out-of-bounds Write
CVSS 9.8
CVE-2026-44065
MEDIUM
Netatalk papd lp_write() - Adjacent Data Modification and Service Disruption
CVSS 4.2
CVE-2026-45232
LOW
Rsync < 3.4.3 Off-by-One Stack Write via HTTP Proxy
CVSS 3.1
CVE-2026-44603
LOW
Tor < 0.4.9.7 - Out-of-Bounds Read via Malformed BEGIN Cell
CVSS 3.7
CVE-2026-7572
MEDIUM
Velociraptor EVTX Parser — Process Crash via Crafted .evtx File
CVSS 4.4
CVE-2026-43964
LOW
Postfix < 3.8.16, 3.9 < 3.9.10, 3.10 < 3.10.9 - Denial of Service via Enhanced Status Code Parsing
CVSS 3.7
CVE-2026-43860
LOW
mutt < 2.3.2 - Off-by-one Error in IMAP CRAM-MD5 Password Hashing
CVSS 3.7
CVE-2026-41502
HIGH
BACnet Stack: Off-by-One Out-of-Bounds Read in ReadPropertyMultiple Object ID Decoder
CVSS 7.5
CVE-2026-40254
MEDIUM
FreeRDP: contains_dotdot() off-by-one allows drive channel path traversal via terminal ..
CVSS 4.2
CVE-2026-6861
MEDIUM
Emacs: emacs: memory corruption vulnerability when processing svg css
CVSS 6.1
CVE-2026-40312
MEDIUM
ImageMagick: Off-by-One in MSL decoder could result in crash
CVSS 6.2
CVE-2026-32605
HIGH
Nimiq: Remote crash via off-by-one signer bounds check in proposal buffer
CVSS 7.5
CVE-2026-33997
MEDIUM
Moby: Off-by-one error in plugin privilege validation
CVSS 6.8
CVE-2026-5123
LOW
osrg GoBGP bgp.go DecodeFromBytes off-by-one
CVSS 3.7
CVE-2026-22593
HIGH
EVerest has off-by-one stack buffer overflow in IsoMux certificate filename parsing
CVSS 8.4
CVE-2026-4887
MEDIUM
Gimp: gimp:memory disclosure and denial of service via specially crafted pcx image
CVSS 6.1
CVE-2026-34085
MEDIUM
fontconfig < 2.17.1 - Off-by-one Error in FcFontCapabilities
CVSS 5.9
CVE-2026-23257
MEDIUM
net: liquidio: Fix off-by-one error in PF setup_nic_devices() cleanup
CVSS 5.5
Details
Vulnerabilities
198