CWE-190— Integer Overflow or Wraparound
2,807 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-190page 46 of 57
- CVE-2024-31047LOWCVSS 3.3EG 3.32024-04-08
An issue in Academy Software Foundation openexr v.3.2.3 and before allows a local attacker to cause a denial of service (DoS) via the convert function of exrmultipart.cpp.
- CVE-2024-31333HIGHCVSS 7.8EG 7.82024-08-15
In _MMU_AllocLevel of mmu_common.c, there is a possible arbitrary code execution due to an integer overflow. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is…
- CVE-2024-31416MEDIUMCVSS 5.6EG 5.62024-09-13
The Eaton Foreseer software provides multiple customizable input fields for the users to configure parameters in the tool like alarms, reports, etc. Some of these input fields were not checking the length and bounds of the entered value. T…
- CVE-2024-32039CRITICALCVSS 9.8EG 9.82024-04-22
FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients using a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to integer overflow and out-of-bounds write. Versions 3.5.0 and 2.11.6 patch the issu…
- CVE-2024-32655HIGHCVSS 8.1EG 8.12024-05-14
Npgsql is the .NET data provider for PostgreSQL. The `WriteBind()` method in `src/Npgsql/Internal/NpgsqlConnector.FrontendMessages.cs` uses `int` variables to store the message length and the sum of parameter lengths. Both variables overfl…
- CVE-2024-32913CRITICALCVSS 9.8EG 9.82024-06-13
In wl_notify_rx_mgmt_frame of wl_cfg80211.c, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for ex…
- CVE-2024-33022HIGHCVSS 8.4EG 8.42024-08-05
Memory corruption while allocating memory in HGSL driver.
- CVE-2024-33024HIGHCVSS 7.5EG 7.52024-08-05
Transient DOS while parsing the ML IE when a beacon with length field inside the common info of ML IE greater than the ML IE length.
- CVE-2024-33035HIGHCVSS 8.4EG 8.42024-09-02
Memory corruption while calculating total metadata size when a very high reserved size is requested by gralloc clients.
- CVE-2024-33063HIGHCVSS 7.5EG 7.52024-12-02
Transient DOS while parsing the ML IE when a beacon with common info length of the ML IE greater than the ML IE inside which this element is present.
- CVE-2024-34121HIGHCVSS 7.8EG 7.82024-09-13
Illustrator versions 28.6, 27.9.5 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user intera…
- CVE-2024-34139HIGHCVSS 7.8EG 7.82024-07-09
Bridge versions 14.0.4, 13.0.7, 14.1 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user int…
- CVE-2024-34402HIGHCVSS 8.6EG 8.62024-05-03
An issue was discovered in uriparser through 0.9.7. ComposeQueryEngine in UriQuery.c has an integer overflow via long keys or values, with a resultant buffer overflow.
- CVE-2024-34403MEDIUMCVSS 5.9EG 5.92024-05-03
An issue was discovered in uriparser through 0.9.7. ComposeQueryMallocExMm in UriQuery.c has an integer overflow via a long string.
- CVE-2024-34663MEDIUMCVSS 5.3EG 5.32024-10-08
Integer overflow in libSEF.quram.so prior to SMR Oct-2024 Release 1 allows local attackers to write out-of-bounds memory.
- CVE-2024-34733HIGHCVSS 8.4EG 8.42025-01-28
In DevmemXIntMapPages of devicemem_server.c, there is a possible arbitrary code execution due to an integer overflow. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User inter…
- CVE-2024-34740HIGHCVSS 7.8EG 7.72024-08-15
In attributeBytesBase64 and attributeBytesHex of BinaryXmlSerializer.java, there is a possible arbitrary XML injection due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges nee…
- CVE-2024-35366CRITICALCVSS 9.1EG 9.12024-11-29
FFmpeg n6.1.1 is Integer Overflow. The vulnerability exists in the parse_options function of sbgdec.c within the libavformat module. When parsing certain options, the software does not adequately validate the input. This allows for negativ…
- CVE-2024-35369MEDIUMCVSS 5.5EG 5.52024-11-29
In FFmpeg version n6.1.1, specifically within the avcodec/speexdec.c module, a potential security vulnerability exists due to insufficient validation of certain parameters when parsing Speex codec extradata. This vulnerability could lead t…
- CVE-2024-35827MEDIUMCVSS 5.5EG 5.52024-05-17
In the Linux kernel, the following vulnerability has been resolved: io_uring/net: fix overflow check in io_recvmsg_mshot_prep() The "controllen" variable is type size_t (unsigned long). Casting it to int could lead to an integer underfl…
- CVE-2024-35905HIGHCVSS 7.8EG 7.82024-05-19
In the Linux kernel, the following vulnerability has been resolved: bpf: Protect against int overflow for stack access size This patch re-introduces protection against the size of access to stack memory being negative; the access size ca…
- CVE-2024-36121MEDIUMCVSS 5.9EG 5.92024-06-04
netty-incubator-codec-ohttp is the OHTTP implementation for netty. BoringSSLAEADContext keeps track of how many OHTTP responses have been sent and uses this sequence number to calculate the appropriate nonce to use with the encryption alg…
- CVE-2024-36316MEDIUMCVSS 5.5EG 5.52026-02-11
The integer overflow vulnerability within AMD Graphics driver could allow an attacker to bypass size checks potentially resulting in a denial of service
- CVE-2024-36320HIGHCVSS 7.0EG 0.02026-02-11
Integer Overflow within atihdwt6.sys can allow a local attacker to cause out of bound read/write potentially leading to loss of confidentiality, integrity and availability
- CVE-2024-36328HIGHCVSS 7.3EG 7.32025-04-02
Integer overflow within AMD NPU Driver could allow a local attacker to write out of bounds, potentially leading to loss of integrity or availability.
- CVE-2024-36336HIGHCVSS 7.9EG 7.92025-04-02
Integer overflow within the AMD NPU Driver could allow a local attacker to write out of bounds, potentially leading to a loss of confidentiality, integrity, or availability.
- CVE-2024-36337HIGHCVSS 7.9EG 7.92025-04-02
Integer overflow within AMD NPU Driver could allow a local attacker to write out of bounds, potentially leading to loss of confidentiality, integrity or availability.
- CVE-2024-36474HIGHCVSS 8.4EG 8.42024-10-03
An integer overflow vulnerability exists in the Compound Document Binary File format parser of the GNOME Project G Structured File Library (libgsf) version v1.14.52. A specially crafted file can result in an integer overflow when processin…
- CVE-2024-36613MEDIUMCVSS 6.2EG 6.22025-01-03
FFmpeg n6.1.1 has a vulnerability in the DXA demuxer of the libavformat library allowing for an integer overflow, potentially resulting in a denial-of-service (DoS) condition or other undefined behavior.
- CVE-2024-36616MEDIUMCVSS 6.5EG 6.52024-11-29
An integer overflow in the component /libavformat/westwood_vqa.c of FFmpeg n6.1.1 allows attackers to cause a denial of service in the application via a crafted VQA file.
- CVE-2024-36617MEDIUMCVSS 6.2EG 6.22024-11-29
FFmpeg n6.1.1 has an integer overflow vulnerability in the FFmpeg CAF decoder.
- CVE-2024-36618MEDIUMCVSS 6.2EG 6.22024-11-29
FFmpeg n6.1.1 has a vulnerability in the AVI demuxer of the libavformat library which allows for an integer overflow, potentially resulting in a denial-of-service (DoS) condition.
- CVE-2024-36619MEDIUMCVSS 5.3EG 5.32024-11-29
FFmpeg n6.1.1 has a vulnerability in the WAVARC decoder of the libavcodec library which allows for an integer overflow when handling certain block types, leading to a denial-of-service (DoS) condition.
- CVE-2024-36671CRITICALCVSS 9.8EG 9.82024-11-29
nodemcu before v3.0.0-release_20240225 was discovered to contain an integer overflow via the getnum function at /modules/struct.c.
- CVE-2024-36917MEDIUMCVSS 5.5EG 5.52024-05-30
In the Linux kernel, the following vulnerability has been resolved: block: fix overflow in blk_ioctl_discard() There is no check for overflow of 'start + len' in blk_ioctl_discard(). Hung task occurs if submit an discard ioctl with the f…
- CVE-2024-36918MEDIUMCVSS 5.5EG 5.52024-05-30
In the Linux kernel, the following vulnerability has been resolved: bpf: Check bloom filter map value size This patch adds a missing check to bloom filter creating, rejecting values above KMALLOC_MAX_SIZE. This brings the bloom map in li…
- CVE-2024-36948MEDIUMCVSS 5.5EG 5.52024-05-30
In the Linux kernel, the following vulnerability has been resolved: drm/xe/xe_migrate: Cast to output precision before multiplying operands Addressing potential overflow in result of multiplication of two lower precision (u32) operands …
- CVE-2024-36968MEDIUMCVSS 6.5EG 6.52024-06-08
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix div-by-zero in l2cap_le_flowctl_init() l2cap_le_flowctl_init() can cause both div-by-zero and an integer overflow since hdev->le_mtu may not fall i…
- CVE-2024-37305HIGHCVSS 8.2EG 8.22024-06-17
oqs-provider is a provider for the OpenSSL 3 cryptography library that adds support for post-quantum cryptography in TLS, X.509, and S/MIME using post-quantum algorithms from liboqs. Flaws have been identified in the way oqs-provider handl…
- CVE-2024-37310CRITICALCVSS 9.0EG 9.02024-07-10
EVerest is an EV charging software stack. An integer overflow in the "v2g_incoming_v2gtp" function in the v2g_server.cpp implementation can allow a remote attacker to overflow the process' heap. This vulnerability is fixed in 2024.3.1 and …
- CVE-2024-37323HIGHCVSS 8.8EG 8.82024-07-09
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
- CVE-2024-37336HIGHCVSS 8.8EG 8.82024-07-09
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
- CVE-2024-37356MEDIUMCVSS 5.5EG 5.52024-06-21
In the Linux kernel, the following vulnerability has been resolved: tcp: Fix shift-out-of-bounds in dctcp_update_alpha(). In dctcp_update_alpha(), we use a module parameter dctcp_shift_g as follows: alpha -= min_not_zero(alpha, alpha …
- CVE-2024-3757LOWCVSS 3.3EG 3.32024-05-07
in OpenHarmony v4.0.0 and prior versions allow a local attacker cause service crash through integer overflow.
- CVE-2024-37976MEDIUMCVSS 6.7EG 6.72024-10-08
Windows Resume Extensible Firmware Interface Security Feature Bypass Vulnerability
- CVE-2024-38019HIGHCVSS 7.2EG 7.22024-07-09
Microsoft Windows Performance Data Helper Library Remote Code Execution Vulnerability
- CVE-2024-38034HIGHCVSS 7.8EG 7.82024-07-09
Windows Filtering Platform Elevation of Privilege Vulnerability
- CVE-2024-38080HIGHCVSS 7.8EG 9.0⚠ KEV2024-07-09
Windows Hyper-V Elevation of Privilege Vulnerability
- CVE-2024-38128HIGHCVSS 8.8EG 8.82024-08-13
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
- CVE-2024-38144HIGHCVSS 8.8EG 8.82024-08-13
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
Map vulnerabilities like CWE-190 to your infrastructure
EchelonGraph correlates every CVE — across CWE-190 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →