The product performs a calculation to determine how much memory to allocate, but an integer overflow can occur that causes less memory to be allocated than expected, leading to a buffer overflow.
103 vulnerabilities with CWE-680
CVE-2024-21454
HIGH
Qualcomm C-v2x 9150 Firmware - Integer Overflow
CVSS 7.5
CVE-2024-2608
HIGH
Firefox <124, Firefox ESR <115.9, Thunderbird <115.9 - Buffer Overflow
CVSS 8.4
CVE-2024-24478
HIGH
Wireshark <4.2.0 - DoS
CVSS 7.5
CVE-2023-33022
HIGH
Qualcomm 315 5G Iot Modem Firmware - Integer Overflow
CVSS 8.4
CVE-2023-33018
HIGH
Qualcomm 315 5G Iot Modem Firmware - Integer Overflow
CVSS 7.8
CVE-2023-28585
HIGH
TEE Kernel - Memory Corruption
CVSS 8.2
CVE-2023-22305
MEDIUM
Intel Aptio V - DoS
CVSS 6.5
CVE-2023-37536
HIGH
Apache Xerces-c++ < 9.5.23 - Integer Overflow
CVSS 8.2
CVE-2023-21644
MEDIUM
Qualcomm RIL Firmware - Memory Corruption
CVSS 6.7
CVE-2023-21648
MEDIUM
Qualcomm RIL Firmware - Memory Corruption
CVSS 6.7
CVE-2023-22443
MEDIUM
Intel(R) Server Board BMC <2.90 - DoS
CVSS 6.0
CVE-2022-36765
HIGH
Tianocore Edk2 < 202311 - Buffer Overflow
CVSS 7.0
CVE-2022-24834
HIGH
Redis < 6.0.20 - Remote Code Execution
CVSS 7.0
CVE-2022-33296
MEDIUM
Qualcomm Modem Firmware - Memory Corruption via Integer Overflow
CVSS 5.9
CVE-2022-33282
HIGH
Automotive Multimedia - Buffer Overflow
CVSS 8.4
CVE-2022-40530
HIGH
Qualcomm Csra6620 Firmware - Integer Overflow
CVSS 8.4
CVE-2022-25705
HIGH
Qualcomm Apq8009 Firmware - Integer Overflow
CVSS 7.8
CVE-2022-33248
HIGH
User Identity Module - Buffer Overflow
CVSS 7.8
CVE-2022-35289
CRITICAL
Facebook Hermes < 0.12.0 - Integer Overflow
CVSS 9.8
CVE-2022-32543
HIGH
Estsoft Alyac - Integer Overflow
CVSS 7.8
CVE-2022-29886
HIGH
Estsoft Alyac - Integer Overflow
CVSS 7.8
CVE-2022-29030
MEDIUM
JT2Go, Teamcenter Visualization <13.3.0.3 - DoS
CVSS 5.5
CVE-2021-40417
CRITICAL
DPDecoder - Buffer Overflow
CVSS 9.8
CVE-2021-3321
HIGH
Zephyr < 2.5.0 - Buffer Overflow
CVSS 7.5
CVE-2021-32765
HIGH
Hiredis - Buffer Overflow
CVSS 8.8
Details
Vulnerabilities
103