CWE-369— Divide By Zero
368 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-369page 5 of 8
- CVE-2022-3061MEDIUMCVSS 5.5EG 5.52022-09-01
Found Linux Kernel flaw in the i740 driver. The Userspace program could pass any values to the driver through ioctl() interface. The driver doesn't check the value of 'pixclock', so it may cause a divide by zero error.
- CVE-2022-35996MEDIUMCVSS 5.9EG 5.92022-09-16
TensorFlow is an open source platform for machine learning. If `Conv2D` is given empty `input` and the `filter` and `padding` sizes are valid, the output is all-zeros. This causes division-by-zero floating point exceptions that can be used…
- CVE-2022-38266MEDIUMCVSS 6.5EG 6.52022-09-09
An issue in the Leptonica linked library (v1.79.0) allows attackers to cause an arithmetic exception leading to a Denial of Service (DoS) via a crafted JPEG file.
- CVE-2022-38850MEDIUMCVSS 5.5EG 5.52022-09-15
The MPlayer Project mencoder SVN-r38374-13.0.1 is vulnerable to Divide By Zero via the function config () of llibmpcodecs/vf_scale.c.
- CVE-2022-38860MEDIUMCVSS 5.5EG 5.52022-09-15
Certain The MPlayer Project products are vulnerable to Divide By Zero via function demux_open_avi() of libmpdemux/demux_avi.c which affects mencoder. This affects mplayer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.
- CVE-2022-38865MEDIUMCVSS 5.5EG 5.52022-09-15
Certain The MPlayer Project products are vulnerable to Divide By Zero via the function demux_avi_read_packet of libmpdemux/demux_avi.c. This affects mplyer SVN-r38374-13.0.1 and mencoder SVN-r38374-13.0.1.
- CVE-2022-39318MEDIUMCVSS 4.8EG 4.82022-11-16
FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing input validation in `urbdrc` channel. A malicious server can trick a FreeRDP based client to crash with division by zero. This issue ha…
- CVE-2022-41287LOWCVSS 3.3EG 5.52022-12-13
A vulnerability has been identified in JT2Go (All versions < V14.1.0.6), Teamcenter Visualization V13.2 (All versions < V13.2.0.12), Teamcenter Visualization V13.3 (All versions < V13.3.0.8), Teamcenter Visualization V14.0 (All versions < …
- CVE-2022-47525HIGHCVSS 7.5EG 7.52023-05-31
Fox-IT DataDiode (aka Fox DataDiode) 3.4.3 suffers from a Divide-by-Zero vulnerability in the packet parser. A remote attacker could leverage this vulnerability to cause a denial-of-service. Exploitation of this issue does not require user…
- CVE-2022-49294MEDIUMCVSS 5.5EG 5.52025-02-26
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check if modulo is 0 before dividing. [How & Why] If a value of 0 is read, then this will cause a divide-by-0 panic.
- CVE-2022-49330MEDIUMCVSS 5.5EG 5.52025-02-26
In the Linux kernel, the following vulnerability has been resolved: tcp: fix tcp_mtup_probe_success vs wrong snd_cwnd syzbot got a new report [1] finally pointing to a very old bug, added in initial support for MTU probing. tcp_mtu_prob…
- CVE-2022-49670MEDIUMCVSS 5.5EG 5.52025-02-26
In the Linux kernel, the following vulnerability has been resolved: linux/dim: Fix divide by 0 in RDMA DIM Fix a divide 0 error in rdma_dim_stats_compare() when prev->cpe_ratio == 0. CallTrace: Hardware name: H3C R4900 G3/RS33M2C9S, B…
- CVE-2022-49978MEDIUMCVSS 5.5EG 5.52025-06-18
In the Linux kernel, the following vulnerability has been resolved: fbdev: fb_pm2fb: Avoid potential divide by zero error In `do_fb_ioctl()` of fbmem.c, if cmd is FBIOPUT_VSCREENINFO, var will be copied from user, then go through `fb_set…
- CVE-2022-50010MEDIUMCVSS 5.5EG 5.52025-06-18
In the Linux kernel, the following vulnerability has been resolved: video: fbdev: i740fb: Check the argument of i740_calc_vclk() Since the user can control the arguments of the ioctl() from the user space, under special arguments that ma…
- CVE-2022-50102MEDIUMCVSS 5.5EG 5.52025-06-18
In the Linux kernel, the following vulnerability has been resolved: video: fbdev: arkfb: Fix a divide-by-zero bug in ark_set_pixclock() Since the user can control the arguments of the ioctl() from the user space, under special arguments …
- CVE-2022-50178MEDIUMCVSS 5.5EG 5.52025-06-18
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: 8852a: rfk: fix div 0 exception The DPK is a kind of RF calibration whose algorithm is to fine tune parameters and calibrate, and check the result. If the r…
- CVE-2023-0512HIGHCVSS 7.8EG 7.82023-01-30
Divide By Zero in GitHub repository vim/vim prior to 9.0.1247.
- CVE-2023-0615MEDIUMCVSS 5.5EG 5.52023-02-06
A memory leak flaw and potential divide by zero and Integer overflow was found in the Linux kernel V4L2 and vivid test code functionality. This issue occurs when a user triggers ioctls, such as VIDIOC_S_DV_TIMINGS ioctl. This could allow a…
- CVE-2023-1127HIGHCVSS 7.8EG 7.82023-03-01
Divide By Zero in GitHub repository vim/vim prior to 9.0.1367.
- CVE-2023-20588MEDIUMCVSS 5.5EG 7.52023-08-08
A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.
- CVE-2023-21789HIGHCVSS 7.8EG 7.82023-01-10
3D Builder Remote Code Execution Vulnerability
- CVE-2023-23109HIGHCVSS 7.5EG 7.52023-02-27
In crasm 1.8-3, invalid input validation, specific files passed to the command line application, can lead to a divide by zero fault in the function opdiv.
- CVE-2023-25511LOWCVSS 3.3EG 3.32023-04-22
NVIDIA CUDA Toolkit for Linux and Windows contains a vulnerability in cuobjdump, where a division-by-zero error may enable a user to cause a crash, which may lead to a limited denial of service.
- CVE-2023-2662LOWCVSS 2.9EG 2.92023-05-11
In Xpdf 4.04 (and earlier), a bad color space object in the input PDF file can cause a divide-by-zero.
- CVE-2023-2839HIGHCVSS 7.5EG 6.82023-05-22
Divide By Zero in GitHub repository gpac/gpac prior to 2.2.2.
- CVE-2023-2906MEDIUMCVSS 6.5EG 6.52023-08-25
Due to a failure in validating the length provided by an attacker-crafted CP2179 packet, Wireshark versions 2.0.0 through 4.0.7 is susceptible to a divide by zero allowing for a denial of service attack.
- CVE-2023-29659MEDIUMCVSS 6.5EG 6.52023-05-05
A Segmentation fault caused by a floating point exception exists in libheif 1.15.1 using crafted heif images via the heif::Fraction::round() function in box.cc, which causes a denial of service.
- CVE-2023-30207MEDIUMCVSS 5.5EG 5.52023-07-05
A divide by zero issue discovered in Kodi Home Theater Software 19.5 and earlier allows attackers to cause a denial of service via use of crafted mp3 file.
- CVE-2023-3044LOWCVSS 3.3EG 3.32023-06-02
An excessively large PDF page size (found in fuzz testing, unlikely in normal PDF files) can result in a divide-by-zero in Xpdf's text extraction code. This is related to CVE-2022-30524, but the problem here is caused by a very large p…
- CVE-2023-31085MEDIUMCVSS 5.5EG 5.52023-04-24
An issue was discovered in drivers/mtd/ubi/cdev.c in the Linux kernel 6.2. There is a divide-by-zero error in do_div(sz,mtd->erasesize), used indirectly by ctrl_cdev_ioctl, when mtd->erasesize is 0.
- CVE-2023-32573MEDIUMCVSS 6.5EG 7.52023-05-10
In Qt before 5.15.14, 6.0.x through 6.2.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1, QtSvg QSvgFont m_unitsPerEm initialization is mishandled.
- CVE-2023-37769MEDIUMCVSS 6.5EG 6.52023-07-17
stress-test master commit e4c878 was discovered to contain a FPE vulnerability via the component combine_inner at /pixman-combine-float.c.
- CVE-2023-38672MEDIUMCVSS 4.7EG 4.72023-07-26
FPE in paddle.trace in PaddlePaddle before 2.5.0. This flaw can cause a runtime crash and a denial of service.
- CVE-2023-38674MEDIUMCVSS 4.7EG 4.72024-01-03
FPE in paddle.nanmedian in PaddlePaddle before 2.6.0. This flaw can cause a runtime crash and a denial of service.
- CVE-2023-38675MEDIUMCVSS 4.7EG 4.72024-01-03
FPE in paddle.linalg.matrix_rank in PaddlePaddle before 2.6.0. This flaw can cause a runtime crash and a denial of service.
- CVE-2023-38677MEDIUMCVSS 4.7EG 4.72024-01-03
FPE in paddle.linalg.eig in PaddlePaddle before 2.6.0. This flaw can cause a runtime crash and a denial of service.
- CVE-2023-3896HIGHCVSS 7.8EG 7.82023-08-07
Divide By Zero in vim/vim from 9.0.1367-1 to 9.0.1367-3
- CVE-2023-42467MEDIUMCVSS 5.5EG 5.52023-09-11
QEMU through 8.0.0 could trigger a division by zero in scsi_disk_reset in hw/scsi/scsi-disk.c because scsi_disk_emulate_mode_select does not prevent s->qdev.blocksize from being 256. This stops QEMU and the guest immediately.
- CVE-2023-4678MEDIUMCVSS 5.5EG 5.12023-08-31
Divide By Zero in GitHub repository gpac/gpac prior to 2.3-DEV.
- CVE-2023-46849HIGHCVSS 7.5EG 7.52023-11-11
Using the --fragment option in certain configuration setups OpenVPN version 2.6.0 to 2.6.6 allows an attacker to trigger a divide by zero behaviour which could cause an application crash, leading to a denial of service.
- CVE-2023-51103HIGHCVSS 7.5EG 7.52023-12-26
A floating point exception (divide-by-zero) vulnerability was discovered in Artifex MuPDF 1.23.4 in the function fz_new_pixmap_from_float_data() of pixmap.c.
- CVE-2023-51104HIGHCVSS 7.5EG 7.52023-12-26
A floating point exception (divide-by-zero) vulnerability was discovered in Artifex MuPDF 1.23.4 in function pnm_binary_read_image() of load-pnm.c when span equals zero.
- CVE-2023-51105HIGHCVSS 7.5EG 7.52023-12-26
A floating point exception (divide-by-zero) vulnerability was discovered in Artifex MuPDF 1.23.4 in function bmp_decompress_rle4() of load-bmp.c.
- CVE-2023-51106HIGHCVSS 7.5EG 7.52023-12-26
A floating point exception (divide-by-zero) vulnerability was discovered in mupdf 1.23.4 in function pnm_binary_read_image() of load-pnm.c when fz_colorspace_n returns zero.
- CVE-2023-51107HIGHCVSS 7.5EG 7.52023-12-26
A floating point exception (divide-by-zero) vulnerability was discovered in Artifex MuPDF 1.23.4 in functon compute_color() of jquant2.c. NOTE: this is disputed by the supplier because there was not reasonable evidence to determine the exi…
- CVE-2023-52305MEDIUMCVSS 4.7EG 4.72024-01-03
FPE in paddle.topk in PaddlePaddle before 2.6.0. This flaw can cause a runtime crash and a denial of service.
- CVE-2023-52306MEDIUMCVSS 4.7EG 4.72024-01-03
FPE in paddle.lerp in PaddlePaddle before 2.6.0. This flaw can cause a runtime crash and a denial of service.
- CVE-2023-52308MEDIUMCVSS 4.7EG 4.72024-01-03
FPE in paddle.amin in PaddlePaddle before 2.6.0. This flaw can cause a runtime crash and a denial of service.
- CVE-2023-52313MEDIUMCVSS 4.7EG 4.72024-01-03
FPE in paddle.argmin and paddle.argmax in PaddlePaddle before 2.6.0. This flaw can cause a runtime crash and a denial of service.
- CVE-2024-1298MEDIUMCVSS 6.0EG 6.02024-05-30
EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access. A successful exploit of this vulnerability may lead to a loss of Availability.
Map vulnerabilities like CWE-369 to your infrastructure
EchelonGraph correlates every CVE — across CWE-369 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →