Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-681

CWE-681

High likelihood

Incorrect Conversion between Numeric Types

Parent: CWE-704 - Incorrect Type Conversion or Cast

When converting from one data type to another, such as long to integer, data can be omitted or translated in a way that produces unexpected values. If the resulting values are used in a sensitive context, then dangerous behaviors may occur.

116 vulnerabilities with CWE-681

CVE-2020-35926 CRITICAL

nanorand < 0.5.1 - Incorrect Conversion between Numeric Types

CVE-2020-13985 HIGH

Contiki < 3.0 - Memory Corruption via RPL Extension Header Handling

CVE-2020-27194 MEDIUM

Linux kernel <5.8.15 - Memory Corruption

CVE-2020-1913 HIGH

Facebook Hermes < 0.4.3 / hermes-engine < 0.5.2 - DoS or RCE via Integer Signedness Error

CVE-2020-12417 HIGH

Firefox < 78.0 - Memory Corruption via JavaScript ValueTag Confusion

CVE-2020-4032 LOW

FreeRDP < 2.1.2 - Integer Casting Vulnerability in update_recv_secondary_order

CVE-2020-2908 HIGH

Oracle VM VirtualBox <5.2.40-6.1.6 - Privilege Escalation

CVE-2020-6096 HIGH

GNU glibc 2.30.9000 - Memory Corruption

CVE-2020-6582 HIGH

Nagios NRPE 3.2.1 - Heap-Based Buffer Overflow via Incorrect Numeric Conversion

CVE-2019-14563 HIGH

EDK II - Integer Truncation via Local Access

CVE-2019-10624 HIGH

Qualcomm APQ8096AU Firmware - Buffer Overflow via Integer Truncation in Vendor Command Handling

CVE-2019-19945 HIGH

OpenWrt 18.06.0-18.06.5 and 19.x through 19.07.0-rc2 - Denial of Service via uhttpd Integer Signedness Error

CVE-2019-19958 MEDIUM

libiec61850 1.4.0 - Denial of Service via Integer Signedness Issue in StringUtils_createStringFromBuffer

CVE-2019-16778 LOW

TensorFlow < 1.15.0 - Heap Buffer Overflow in UnsortedSegmentSum

CVE-2019-19317 CRITICAL

SQLite 3.30.1 - Denial of Service via Generated Column Bitmask Handling

CVE-2019-14842 CRITICAL

libnbd < 1.0.3 - Remote Code Execution via Negative Chunk Offset in Structured Reply

CVE-2019-10203 MEDIUM

PowerDNS pdns <4.0.9, <4.1.11 - DoS

CVE-2019-16200 HIGH

GNU Serveez <0.2.2 - Info Disclosure

CVE-2019-1010204 MEDIUM

GNU binutils 2.21-2.31.1 and binutils_gold 1.11-1.16 - Denial of Service via Invalid ELF e_shoff Header

CVE-2019-9749 HIGH

Fluent Bit <1.0.4 - Memory Corruption

CVE-2019-7310 HIGH

Poppler 0.73.0 - Heap-Based Buffer Over-Read via XRef::getEntry Integer Signedness Error

CVE-2018-8786 CRITICAL

FreeRDP <2.0.0-rc4 - Memory Corruption

CVE-2018-3999 HIGH

Atlantis Word Processor 3.2.5.0 - Stack-Based Buffer Overflow in JPEG Parser

CVE-2018-1000224 HIGH

Godot Engine < 2.1.5 and 3.0 < 3.0.6 - Denial of Service via Malformed Network Packet

CVE-2018-10887 HIGH

libgit2 < 0.27.3 - Integer Overflow and Out-of-Bounds Read in git_delta_apply

Previous Page 4 of 5 Next

Details

Vulnerabilities 116

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy