CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Related To CWE-190

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2023-23559 190 Overflow 2023-01-13 2023-01-23
0.0
None ??? ??? ??? ??? ??? ???
In rndis_query_oid in drivers/net/wireless/rndis_wlan.c in the Linux kernel through 6.1.5, there is an integer overflow in an addition.
2 CVE-2023-22895 190 DoS Overflow 2023-01-10 2023-01-13
0.0
None ??? ??? ??? ??? ??? ???
The bzip2 crate before 0.4.4 for Rust allow attackers to cause a denial of service via a large file that triggers an integer overflow in mem.rs. NOTE: this is unrelated to the https://crates.io/crates/bzip2-rs product.
3 CVE-2023-22458 190 2023-01-20 2023-01-23
0.0
None ??? ??? ??? ??? ??? ???
Redis is an in-memory database that persists on disk. Authenticated users can issue a `HRANDFIELD` or `ZRANDMEMBER` command with specially crafted arguments to trigger a denial-of-service by crashing Redis with an assertion failure. This problem affects Redis versions 6.2 or newer up to but not including 6.2.9 as well as versions 7.0 up to but not including 7.0.8. Users are advised to upgrade. There are no known workarounds for this vulnerability.
4 CVE-2023-21579 190 Exec Code Overflow 2023-01-18 2023-01-26
0.0
None ??? ??? ??? ??? ??? ???
Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
5 CVE-2023-0077 190 Overflow 2023-01-05 2023-01-11
0.0
None ??? ??? ??? ??? ??? ???
Integer overflow or wraparound vulnerability in CGI component in Synology Router Manager (SRM) before 1.2.5-8227-6 and 1.3.1-9346-3 allows remote attackers to overflow buffers via unspecified vectors.
6 CVE-2022-47660 190 Overflow 2023-01-05 2023-01-11
0.0
None ??? ??? ??? ??? ??? ???
GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is has an integer overflow in isomedia/isom_write.c
7 CVE-2022-47629 190 Overflow 2022-12-20 2023-01-03
0.0
None ??? ??? ??? ??? ??? ???
Libksba before 1.6.3 is prone to an integer overflow vulnerability in the CRL signature parser.
8 CVE-2022-47092 190 Overflow 2023-01-05 2023-01-11
0.0
None ??? ??? ??? ??? ??? ???
GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is contains an Integer overflow vulnerability in gf_hevc_read_sps_bs_internal function of media_tools/av_parsers.c:8316
9 CVE-2022-45934 190 2022-11-27 2023-01-26
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_REQ packets.
10 CVE-2022-44638 190 Overflow 2022-11-03 2022-12-13
0.0
None ??? ??? ??? ??? ??? ???
In libpixman in Pixman before 0.42.2, there is an out-of-bounds write (aka heap-based buffer overflow) in rasterize_edges_8 due to an integer overflow in pixman_sample_floor_y.
11 CVE-2022-44432 190 DoS 2023-01-04 2023-01-10
0.0
None ??? ??? ??? ??? ??? ???
In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services.
12 CVE-2022-44426 190 DoS 2023-01-04 2023-01-11
0.0
None ??? ??? ??? ??? ??? ???
In wlan driver, there is a possible missing bounds check. This could lead to local denial of service in wlan services.
13 CVE-2022-43974 190 Exec Code Overflow XSS 2023-01-09 2023-01-13
0.0
None ??? ??? ??? ??? ??? ???
MatrixSSL 4.0.4 through 4.5.1 has an integer overflow in matrixSslDecodeTls13. A remote attacker might be able to send a crafted TLS Message to cause a buffer overflow and achieve remote code execution. This is fixed in 4.6.0.
14 CVE-2022-42898 190 DoS Exec Code Overflow 2022-12-25 2023-01-05
0.0
None ??? ??? ??? ??? ??? ???
PAC parsing in MIT Kerberos 5 (aka krb5) before 1.19.4 and 1.20.x before 1.20.1 has integer overflows that may lead to remote code execution (in KDC, kadmind, or a GSS or Kerberos application server) on 32-bit platforms (which have a resultant heap-based buffer overflow), and cause a denial of service on other platforms. This occurs in krb5_pac_parse in lib/krb5/krb/pac.c. Heimdal before 7.7.1 has "a similar bug."
15 CVE-2022-42805 190 Exec Code Overflow 2022-12-15 2022-12-20
0.0
None ??? ??? ??? ??? ??? ???
An integer overflow was addressed with improved input validation. This issue is fixed in iOS 15.6 and iPadOS 15.6, macOS Monterey 12.5. An app may be able to execute arbitrary code with kernel privileges.
16 CVE-2022-42767 190 DoS 2022-12-06 2022-12-07
0.0
None ??? ??? ??? ??? ??? ???
In wlan driver, there is a possible missing bounds check, This could lead to local denial of service in wlan services.
17 CVE-2022-42765 190 DoS 2022-12-06 2022-12-07
0.0
None ??? ??? ??? ??? ??? ???
In wlan driver, there is a possible missing bounds check, This could lead to local denial of service in wlan services.
18 CVE-2022-42764 190 DoS 2022-12-06 2022-12-07
0.0
None ??? ??? ??? ??? ??? ???
In wlan driver, there is a possible missing bounds check, This could lead to local denial of service in wlan services.
19 CVE-2022-42763 190 DoS 2022-12-06 2022-12-08
0.0
None ??? ??? ??? ??? ??? ???
In wlan driver, there is a possible missing bounds check, This could lead to local denial of service in wlan services.
20 CVE-2022-42533 190 Overflow 2022-11-17 2022-11-22
0.0
None ??? ??? ??? ??? ??? ???
In shared_metadata_init of SharedMetadata.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-239415718References: N/A
21 CVE-2022-42265 190 Overflow 2022-12-30 2023-01-12
0.0
None ??? ??? ??? ??? ??? ???
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow may lead to information disclosure or data tampering.
22 CVE-2022-42263 190 DoS Overflow 2022-12-30 2023-01-11
0.0
None ??? ??? ??? ??? ??? ???
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where an Integer overflow may lead to denial of service or information disclosure.
23 CVE-2022-42259 190 DoS Overflow 2022-12-30 2023-01-05
0.0
None ??? ??? ??? ??? ??? ???
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow may lead to denial of service.
24 CVE-2022-42258 190 DoS Overflow 2022-12-30 2023-01-05
0.0
None ??? ??? ??? ??? ??? ???
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow may lead to denial of service, data tampering, or information disclosure.
25 CVE-2022-42257 190 DoS Overflow 2022-12-30 2023-01-05
0.0
None ??? ??? ??? ??? ??? ???
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow may lead to information disclosure, data tampering or denial of service.
26 CVE-2022-42256 190 DoS Overflow 2022-12-30 2023-01-06
0.0
None ??? ??? ??? ??? ??? ???
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow in index validation may lead to denial of service, information disclosure, or data tampering.
27 CVE-2022-41903 190 Exec Code Overflow 2023-01-17 2023-01-25
0.0
None ??? ??? ??? ??? ??? ???
Git is distributed revision control system. `git log` can display commits in an arbitrary format using its `--format` specifiers. This functionality is also exposed to `git archive` via the `export-subst` gitattribute. When processing the padding operators, there is a integer overflow in `pretty.c::format_and_pad_commit()` where a `size_t` is stored improperly as an `int`, and then added as an offset to a `memcpy()`. This overflow can be triggered directly by a user running a command which invokes the commit formatting machinery (e.g., `git log --format=...`). It may also be triggered indirectly through git archive via the export-subst mechanism, which expands format specifiers inside of files within the repository during a git archive. This integer overflow can result in arbitrary heap writes, which may result in arbitrary code execution. The problem has been patched in the versions published on 2023-01-17, going back to v2.30.7. Users are advised to upgrade. Users who are unable to upgrade should disable `git archive` in untrusted repositories. If you expose git archive via `git daemon`, disable it by running `git config --global daemon.uploadArch false`.
28 CVE-2022-41550 190 Overflow 2022-10-11 2022-10-13
0.0
None ??? ??? ??? ??? ??? ???
GNU oSIP v5.3.0 was discovered to contain an integer overflow via the component osip_body_parse_header.
29 CVE-2022-41325 190 Exec Code Overflow 2022-12-06 2022-12-08
0.0
None ??? ??? ??? ??? ??? ???
An integer overflow in the VNC module in VideoLAN VLC Media Player through 3.0.17.4 allows attackers, by tricking a user into opening a crafted playlist or connecting to a rogue VNC server, to crash VLC or execute code under some conditions.
30 CVE-2022-40983 190 Exec Code Overflow 2023-01-12 2023-01-20
0.0
None ??? ??? ??? ??? ??? ???
An integer overflow vulnerability exists in the QML QtScript Reflect API of Qt Project Qt 6.3.2. A specially-crafted javascript code can trigger an integer overflow during memory allocation, which can lead to arbitrary code execution. Target application would need to access a malicious web page to trigger this vulnerability.
31 CVE-2022-40303 190 Overflow 2022-11-23 2023-01-11
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option enabled, several integer counters can overflow. This results in an attempt to access an array at a negative 2GB offset, typically leading to a segmentation fault.
32 CVE-2022-39907 190 Overflow 2022-12-08 2022-12-12
0.0
None ??? ??? ??? ??? ??? ???
Integer overflow vulnerability in Samsung decoding library for video thumbnails prior to SMR Dec-2022 Release 1 allows local attacker to perform Out-Of-Bounds Write.
33 CVE-2022-39842 190 Overflow Bypass 2022-09-05 2022-12-19
0.0
None ??? ??? ??? ??? ??? ???
** DISPUTED ** An issue was discovered in the Linux kernel before 5.19. In pxa3xx_gcu_write in drivers/video/fbdev/pxa3xx-gcu.c, the count parameter has a type conflict of size_t versus int, causing an integer overflow and bypassing the size check. After that, because it is used as the third argument to copy_from_user(), a heap overflow may occur. NOTE: the original discoverer disputes that the overflow can actually happen.
34 CVE-2022-39343 190 Overflow 2022-11-08 2022-11-10
0.0
None ??? ??? ??? ??? ??? ???
Azure RTOS FileX is a FAT-compatible file system that’s fully integrated with Azure RTOS ThreadX. In versions before 6.2.0, the Fault Tolerant feature of Azure RTOS FileX includes integer under and overflows which may be exploited to achieve buffer overflow and modify memory contents. When a valid log file with correct ID and checksum is detected by the `_fx_fault_tolerant_enable` function an attempt to recover the previous failed write operation is taken by call of `_fx_fault_tolerant_apply_logs`. This function iterates through the log entries and performs required recovery operations. When properly crafted a log including entries of type `FX_FAULT_TOLERANT_DIR_LOG_TYPE` may be utilized to introduce unexpected behavior. This issue has been patched in version 6.2.0. A workaround to fix line 218 in fx_fault_tolerant_apply_logs.c is documented in the GHSA.
35 CVE-2022-38784 190 Exec Code Overflow 2022-08-30 2022-10-28
0.0
None ??? ??? ??? ??? ??? ???
Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2022-38171 in Xpdf.
36 CVE-2022-38216 190 Overflow 2022-08-16 2022-08-17
0.0
None ??? ??? ??? ??? ??? ???
An integer overflow exists in Mapbox's closed source gl-native library prior to version 10.6.1, which is bundled with multiple Mapbox products including open source libraries. The overflow is caused by large image height and width values when creating a new Image and allows for out of bounds writes, potentially crashing the Mapbox process.
37 CVE-2022-38171 190 Exec Code Overflow 2022-08-22 2022-10-27
0.0
None ??? ??? ??? ??? ??? ???
Xpdf prior to version 4.04 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIG2Stream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2021-30860 (Apple CoreGraphics).
38 CVE-2022-37454 190 Exec Code Overflow 2022-10-21 2022-12-08
0.0
None ??? ??? ??? ??? ??? ???
The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the sponge function interface.
39 CVE-2022-36934 190 Exec Code Overflow 2022-09-22 2022-09-24
0.0
None ??? ??? ??? ??? ??? ???
An integer overflow in WhatsApp could result in remote code execution in an established video call.
40 CVE-2022-36402 190 DoS Overflow +Priv 2022-09-16 2022-09-20
0.0
None ??? ??? ??? ??? ??? ???
An integer overflow vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_execbuf.c in GPU component of Linux kernel with device file '/dev/dri/renderD128 (or Dxxx)'. This flaw allows a local attacker with a user account on the system to gain privilege, causing a denial of service(DoS).
41 CVE-2022-36125 190 2022-08-09 2022-08-12
0.0
None ??? ??? ??? ??? ??? ???
It is possible to crash (panic) an application by providing a corrupted data to be read. This issue affects Rust applications using Apache Avro Rust SDK prior to 0.14.0 (previously known as avro-rs). Users should update to apache-avro version 0.14.0 which addresses this issue.
42 CVE-2022-36015 190 2022-09-16 2022-09-20
0.0
None ??? ??? ??? ??? ??? ???
TensorFlow is an open source platform for machine learning. When `RangeSize` receives values that do not fit into an `int64_t`, it crashes. We have patched the issue in GitHub commit 37e64539cd29fcfb814c4451152a60f5d107b0f0. The fix will be included in TensorFlow 2.10.0. We will also cherrypick this commit on TensorFlow 2.9.1, TensorFlow 2.8.1, and TensorFlow 2.7.2, as these are also affected and still in supported range. There are no known workarounds for this issue.
43 CVE-2022-36008 190 Overflow 2022-08-19 2022-08-25
0.0
None ??? ??? ??? ??? ??? ???
Frontier is Substrate's Ethereum compatibility layer. A security issue was discovered affecting parsing of the RPC result of the exit reason in case of EVM reversion. In release build, this would cause the exit reason being incorrectly parsed and returned by RPC. In debug build, this would cause an overflow panic. No action is needed unless you have a bridge node that needs to distinguish different reversion exit reasons and you used RPC for this. There are currently no known workarounds.
44 CVE-2022-35977 190 Overflow 2023-01-20 2023-01-23
0.0
None ??? ??? ??? ??? ??? ???
Redis is an in-memory database that persists on disk. Authenticated users issuing specially crafted `SETRANGE` and `SORT(_RO)` commands can trigger an integer overflow, resulting with Redis attempting to allocate impossible amounts of memory and abort with an out-of-memory (OOM) panic. The problem is fixed in Redis versions 7.0.8, 6.2.9 and 6.0.17. Users are advised to upgrade. There are no known workarounds for this vulnerability.
45 CVE-2022-35951 190 Exec Code Overflow 2022-09-23 2022-11-09
0.0
None ??? ??? ??? ??? ??? ???
Redis is an in-memory database that persists on disk. Versions 7.0.0 and above, prior to 7.0.5 are vulnerable to an Integer Overflow. Executing an `XAUTOCLAIM` command on a stream key in a specific state, with a specially crafted `COUNT` argument may cause an integer overflow, a subsequent heap overflow, and potentially lead to remote code execution. This has been patched in Redis version 7.0.5. No known workarounds exist.
46 CVE-2022-35940 190 Overflow 2022-09-16 2022-09-20
0.0
None ??? ??? ??? ??? ??? ???
TensorFlow is an open source platform for machine learning. The `RaggedRangOp` function takes an argument `limits` that is eventually used to construct a `TensorShape` as an `int64`. If `limits` is a very large float, it can overflow when converted to an `int64`. This triggers an `InvalidArgument` but also throws an abort signal that crashes the program. We have patched the issue in GitHub commit 37cefa91bee4eace55715eeef43720b958a01192. The fix will be included in TensorFlow 2.10.0. We will also cherrypick this commit on TensorFlow 2.9.1, TensorFlow 2.8.1, and TensorFlow 2.7.2, as these are also affected and still in supported range. There are no known workarounds for this issue.
47 CVE-2022-35289 190 Exec Code Overflow 2022-10-11 2022-10-11
0.0
None ??? ??? ??? ??? ??? ???
A write-what-where condition in hermes caused by an integer overflow, prior to commit 5b6255ae049fa4641791e47fad994e8e8c4da374 allows attackers to potentially execute arbitrary code via crafted JavaScript. Note that this is only exploitable if the application using Hermes permits evaluation of untrusted JavaScript. Hence, most React Native applications are not affected.
48 CVE-2022-34612 190 DoS Overflow 2022-07-27 2022-09-27
0.0
None ??? ??? ??? ??? ??? ???
Rizin v0.4.0 and below was discovered to contain an integer overflow via the function get_long_object(). This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted binary.
49 CVE-2022-34481 190 Overflow 2022-12-22 2022-12-30
0.0
None ??? ??? ??? ??? ??? ???
In the <code>nsTArray_Impl::ReplaceElementsAt()</code> function, an integer overflow could have occurred when the number of elements to replace was too large for the container. This vulnerability affects Firefox < 102, Firefox ESR < 91.11, Thunderbird < 102, and Thunderbird < 91.11.
50 CVE-2022-33719 190 Overflow 2022-08-05 2022-08-12
0.0
None ??? ??? ??? ??? ??? ???
Improper input validation in baseband prior to SMR Aug-2022 Release 1 allows attackers to cause integer overflow to heap overflow.
Total number of vulnerabilities : 1777   Page : 1 (This Page)2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.