CWE-190— Integer Overflow or Wraparound
2,807 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-190page 52 of 57
- CVE-2025-49179HIGHCVSS 7.3EG 6.62025-06-17
A flaw was found in the X Record extension. The RecordSanityCheckRegisterClients function does not check for an integer overflow when computing request length, which allows a client to bypass length checks.
- CVE-2025-49180HIGHCVSS 7.8EG 6.12025-06-17
A flaw was found in the RandR extension, where the RRChangeProviderProperty function does not properly validate input. This issue leads to an integer overflow when computing the total size to allocate.
- CVE-2025-4945LOWCVSS 3.7EG 3.72025-05-19
A flaw was found in the cookie parsing logic of the libsoup HTTP library, used in GNOME applications and other software. The vulnerability arises when processing the expiration date of cookies, where a specially crafted value can trigger a…
- CVE-2025-49531HIGHCVSS 7.8EG 7.82025-07-08
Illustrator versions 28.7.6, 29.5.1 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user inte…
- CVE-2025-49683HIGHCVSS 7.8EG 7.82025-07-08
Integer overflow or wraparound in Virtual Hard Disk (VHDX) allows an unauthorized attacker to execute code locally.
- CVE-2025-49689HIGHCVSS 7.8EG 7.82025-07-08
Integer overflow or wraparound in Virtual Hard Disk (VHDX) allows an unauthorized attacker to elevate privileges locally.
- CVE-2025-49710CRITICALCVSS 9.8EG 9.82025-06-11
An integer overflow was present in `OrderedHashTable` used by the JavaScript engine. This vulnerability was fixed in Firefox 139.0.4.
- CVE-2025-49742HIGHCVSS 7.8EG 7.82025-07-08
Integer overflow or wraparound in Microsoft Graphics Component allows an authorized attacker to execute code locally.
- CVE-2025-5001LOWCVSS 3.3EG 3.32025-05-20
A vulnerability was found in GNU PSPP 82fb509fb2fedd33e7ac0c46ca99e108bb3bdffb. It has been declared as problematic. This vulnerability affects the function calloc of the file pspp-convert.c. The manipulation of the argument -l leads to in…
- CVE-2025-50166MEDIUMCVSS 6.5EG 6.52025-08-12
Integer overflow or wraparound in Windows Distributed Transaction Coordinator allows an authorized attacker to disclose information over a network.
- CVE-2025-50404MEDIUMCVSS 5.3EG 5.32025-07-01
Intelbras RX1500 Router v2.2.17 and before is vulnerable to Integer Overflow. The websReadEvent function incorrectly uses the int type when processing the "command" field of the http header, causing the array to cross the boundary and over…
- CVE-2025-51495HIGHCVSS 7.5EG 7.52025-09-29
An integer overflow vulnerability exists in the WebSocket component of Mongoose 7.5 thru 7.17. By sending a specially crafted WebSocket request, an attacker can cause the application to crash. If downstream vendors integrate this component…
- CVE-2025-52520HIGHCVSS 7.5EG 7.52025-07-10
For some unlikely configurations of multipart upload, an Integer Overflow vulnerability in Apache Tomcat could lead to a DoS via bypassing of size limits. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.8, from 10.1.0-M1 thr…
- CVE-2025-52538HIGHCVSS 8.0EG 8.02025-11-24
Improper input validation within the XOCL driver may allow a local attacker to generate an integer overflow condition, potentially resulting in loss of confidentiality or availability.
- CVE-2025-52581CRITICALCVSS 9.8EG 9.82025-08-25
An integer overflow vulnerability exists in the GDF parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted GDF file can lead to arbitrary code execution. An attacker can provide a mali…
- CVE-2025-52935CRITICALCVSS 9.4EG 0.02025-06-23
Integer Overflow or Wraparound vulnerability in dragonflydb dragonfly (src/redis/lua/struct modules). This vulnerability is associated with program files lua_struct.C. This issue affects dragonfly: 1.30.1, 1.30.0, 1.28.18.
- CVE-2025-53518CRITICALCVSS 9.8EG 9.82025-08-25
An integer overflow vulnerability exists in the ABF parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted ABF file can lead to arbitrary code execution. An attacker can provide a mali…
- CVE-2025-54091HIGHCVSS 7.8EG 7.82025-09-09
Integer overflow or wraparound in Windows Hyper-V allows an authorized attacker to elevate privileges locally.
- CVE-2025-54106HIGHCVSS 8.8EG 8.82025-09-09
Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
- CVE-2025-54110HIGHCVSS 8.8EG 8.82025-09-09
Integer overflow or wraparound in Windows Kernel allows an authorized attacker to elevate privileges locally.
- CVE-2025-54259HIGHCVSS 7.8EG 7.82025-09-09
Substance3D - Modeler versions 1.22.2 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user in…
- CVE-2025-54472HIGHCVSS 7.5EG 7.52025-08-14
Unlimited memory allocation in redis protocol parser in Apache bRPC (all versions < 1.14.1) on all platforms allows attackers to crash the service via network. Root Cause: In the bRPC Redis protocol parser code, memory for arrays or str…
- CVE-2025-5449MEDIUMCVSS 6.5EG 4.32025-07-25
A flaw was found in the SFTP server message decoding logic of libssh. The issue occurs due to an incorrect packet length check that allows an integer overflow when handling large payload sizes on 32-bit systems. This issue leads to failed …
- CVE-2025-54631MEDIUMCVSS 6.7EG 6.72025-08-06
Vulnerability of insufficient data length verification in the partition module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-5473HIGHCVSS 8.8EG 7.82025-06-06
GIMP ICO File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability …
- CVE-2025-5475HIGHCVSS 7.5EG 7.52025-06-21
Sony XAV-AX8500 Bluetooth Packet Handling Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected Sony XAV-AX8500 devices. An attacker must first obta…
- CVE-2025-5478HIGHCVSS 8.8EG 8.82025-06-21
Sony XAV-AX8500 Bluetooth SDP Protocol Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Sony XAV-AX8500 devices. Authenticatio…
- CVE-2025-54804MEDIUMCVSS 6.5EG 6.52025-08-05
Russh is a Rust SSH client & server library. In versions 0.54.0 and below, the channel window adjust message of the SSH protocol is used to track the free space in the receive buffer of the other side of a channel. The current implementati…
- CVE-2025-54895HIGHCVSS 7.8EG 7.82025-09-09
Integer overflow or wraparound in Windows SPNEGO Extended Negotiation allows an authorized attacker to elevate privileges locally.
- CVE-2025-54957CRITICALCVSS 9.8EG 6.52025-10-20
An issue was discovered in Dolby UDC 4.5 through 4.13. A crash of the DD+ decoder process can occur when a malformed DD+ bitstream is processed. When Evolution data is processed by evo_priv.c from the DD+ bitstream, the decoder writes that…
- CVE-2025-55067HIGHCVSS 7.1EG 7.12025-10-23
The TLS4B ATG system is vulnerable to improper handling of Unix time values that exceed the 2038 epoch rollover. When the system clock reaches January 19, 2038, it resets to December 13, 1901, causing authentication failures and disrupting…
- CVE-2025-55068HIGHCVSS 8.2EG 8.22025-09-18
Dover Fueling Solutions ProGauge MagLink LX4 Devices fail to handle Unix time values beyond a certain point. An attacker can manually change the system time to exploit this limitation, potentially causing errors in authentication and lea…
- CVE-2025-55154HIGHCVSS 8.8EG 8.82025-08-13
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-27 and 7.1.2-1, the magnified size calculations in ReadOneMNGIMage (in coders/png.c) are unsafe and can overflow, leadi…
- CVE-2025-55552HIGHCVSS 7.5EG 5.32025-09-25
pytorch v2.8.0 was discovered to display unexpected behavior when the components torch.rot90 and torch.randn_like are used together.
- CVE-2025-55554MEDIUMCVSS 5.3EG 5.32025-09-25
pytorch v2.8.0 was discovered to contain an integer overflow in the component torch.nan_to_num-.long().
- CVE-2025-55753HIGHCVSS 7.5EG 7.52025-12-05
An integer overflow in the case of failed ACME certificate renewal leads, after a number of failures (~30 days in default configurations), to the backoff timer becoming 0. Attempts to renew the certificate then are repeated without delays …
- CVE-2025-57803HIGHCVSS 7.5EG 7.52025-08-26
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-28 and 7.1.2-2 for ImageMagick's 32-bit build, a 32-bit integer overflow in the BMP encoder’s scanline-stride computa…
- CVE-2025-58715HIGHCVSS 8.8EG 8.82025-10-14
Integer overflow or wraparound in Microsoft Windows Speech allows an authorized attacker to elevate privileges locally.
- CVE-2025-58749MEDIUMCVSS 5.3EG 5.32025-09-16
WebAssembly Micro Runtime (WAMR) is a lightweight standalone WebAssembly (Wasm) runtime. In WAMR versions prior to 2.4.2, when running in LLVM-JIT mode, the runtime cannot exit normally when executing WebAssembly programs containing a memo…
- CVE-2025-5914HIGHCVSS 7.8EG 3.92025-06-09
A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a d…
- CVE-2025-5916LOWCVSS 3.9EG 3.92025-06-09
A vulnerability has been identified in the libarchive library. This flaw involves an integer overflow that can be triggered when processing a Web Archive (WARC) file that claims to have more than INT64_MAX - 4 content bytes. An attacker co…
- CVE-2025-59800MEDIUMCVSS 4.3EG 4.32025-09-22
In Artifex Ghostscript through 10.05.1, ocr_begin_page in devices/gdevpdfocr.c has an integer overflow that leads to a heap-based buffer overflow in ocr_line8.
- CVE-2025-59942HIGHCVSS 7.5EG 7.52025-09-29
go-f3 is a Golang implementation of Fast Finality for Filecoin (F3). In versions 0.8.6 and below, go-f3 panics when it validates a "poison" messages causing Filecoin nodes consuming F3 messages to become vulnerable. A "poison" message can …
- CVE-2025-6035MEDIUMCVSS 6.1EG 6.62025-06-13
A flaw was found in GIMP. An integer overflow vulnerability exists in the GIMP "Despeckle" plug-in. The issue occurs due to unchecked multiplication of image dimensions, such as width, height, and bytes-per-pixel (img_bpp), which can resu…
- CVE-2025-6052LOWCVSS 3.7EG 3.72025-06-13
A flaw was found in how GLib’s GString manages memory when adding data to strings. If a string is already very large, combining it with more input can cause a hidden overflow in the size calculation. This makes the system think it has en…
- CVE-2025-61800HIGHCVSS 7.8EG 7.82025-10-14
Dimension versions 4.1.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in …
- CVE-2025-61803HIGHCVSS 7.8EG 7.82025-10-14
Substance3D - Stager versions 3.1.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user inte…
- CVE-2025-61807HIGHCVSS 7.8EG 7.82025-10-14
Substance3D - Stager versions 3.1.4 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user inte…
- CVE-2025-6191HIGHCVSS 8.8EG 8.82025-06-18
Integer overflow in V8 in Google Chrome prior to 137.0.7151.119 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
- CVE-2025-6196MEDIUMCVSS 5.5EG 5.52025-06-17
A flaw was found in libgepub, a library used to read EPUB files. The software mishandles file size calculations when opening specially crafted EPUB files, leading to incorrect memory allocations. This issue causes the application to crash.…
Map vulnerabilities like CWE-190 to your infrastructure
EchelonGraph correlates every CVE — across CWE-190 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →