VYPR

CWE-190

Integer Overflow or Wraparound

BaseStableLikelihood: Medium

Description

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

Hierarchy (View 1000)

Parents

Children

Related attack patterns (CAPEC)

CAPEC-92

CVEs mapped to this weakness (1,551)

page 22 of 78
  • CVE-2014-9944HigJun 6, 2017
    risk 0.51cvss 7.8epss 0.01

    In the Secure File System in all Android releases from CAF using the Linux kernel, an Integer Overflow to Buffer Overflow vulnerability could potentially exist.

  • CVE-2016-5735HigMay 23, 2017
    risk 0.51cvss 7.8epss 0.02

    Integer overflow in the rwpng_read_image24_libpng function in rwpng.c in pngquant 2.7.0 allows remote attackers to have unspecified impact via a crafted PNG file, which triggers a buffer overflow.

  • CVE-2016-10239HigMay 16, 2017
    risk 0.51cvss 7.8epss 0.01

    In TrustZone access control policy may potentially be bypassed in all Android releases from CAF using the Linux kernel due to improper input validation an integer overflow vulnerability leading to a buffer overflow could potentially occur and a buffer over-read vulnerability…

  • CVE-2015-8998HigMay 16, 2017
    risk 0.51cvss 7.8epss 0.01

    In TrustZone an integer overflow vulnerability can potentially occur in all Android releases from CAF using the Linux kernel.

  • CVE-2015-8995HigMay 16, 2017
    risk 0.51cvss 7.8epss 0.01

    In TrustZone an integer overflow vulnerability can potentially occur in all Android releases from CAF using the Linux kernel.

  • CVE-2014-9935HigMay 16, 2017
    risk 0.51cvss 7.8epss 0.01

    In TrustZone an integer overflow vulnerability leading to a buffer overflow could potentially occur in a DRM routine in all Android releases from CAF using the Linux kernel.

  • CVE-2014-9932HigMay 16, 2017
    risk 0.51cvss 7.8epss 0.01

    In TrustZone, an integer overflow vulnerability can potentially occur in all Android releases from CAF using the Linux kernel due to an improper address range computation.

  • CVE-2017-0597HigMay 12, 2017
    risk 0.51cvss 7.8epss 0.01

    An elevation of privilege vulnerability in Audioserver could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local access to elevated capabilities, which are…

  • CVE-2017-5037HigApr 24, 2017
    risk 0.51cvss 7.8epss 0.01

    An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a crafted video file, related to ChunkDemuxer.

  • CVE-2016-6916HigApr 24, 2017
    risk 0.51cvss 7.8epss 0.00

    Integer overflow in nvhost_job.c in the NVIDIA video driver for Android, Shield TV before OTA 3.3, Shield Table before OTA 4.4, and Shield Table TK1 before OTA 1.5 allows local users to cause a denial of service (system crash) via unspecified vectors, which triggers a buffer…

  • CVE-2017-7975HigApr 19, 2017
    risk 0.51cvss 7.8epss 0.02

    Artifex jbig2dec 0.13, as used in Ghostscript, allows out-of-bounds writes because of an integer overflow in the jbig2_build_huffman_table function in jbig2_huffman.c during operations on a crafted JBIG2 file, leading to a denial of service (application crash) or possibly…

  • CVE-2017-7948HigApr 19, 2017
    risk 0.51cvss 7.8epss 0.02

    Integer overflow in the mark_curve function in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified other impact via a crafted PostScript document.

  • CVE-2017-3011HigApr 12, 2017
    risk 0.51cvss 7.8epss 0.08

    Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable integer overflow vulnerability in the CCITT fax PDF filter. Successful exploitation could lead to arbitrary code execution.

  • CVE-2017-7603HigApr 9, 2017
    risk 0.51cvss 7.8epss 0.01

    au_channel.h in HE-AAC+ Codec (aka libaacplus) 2.0.2 has a signed integer overflow, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted audio file.

  • CVE-2017-7602HigApr 9, 2017
    risk 0.51cvss 7.8epss 0.03

    LibTIFF 4.0.7 has a signed integer overflow, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image.

  • CVE-2017-2440HigApr 2, 2017
    risk 0.51cvss 7.8epss 0.01

    An issue was discovered in certain Apple products. iOS before 10.3 is affected. macOS before 10.12.4 is affected. tvOS before 10.2 is affected. watchOS before 3.2 is affected. The issue involves the "Kernel" component. It allows attackers to execute arbitrary code in a…

  • CVE-2017-7294HigMar 29, 2017
    risk 0.51cvss 7.8epss 0.00

    The vmw_surface_define_ioctl function in drivers/gpu/drm/vmwgfx/vmwgfx_surface.c in the Linux kernel through 4.10.6 does not validate addition of certain levels data, which allows local users to trigger an integer overflow and out-of-bounds write, and cause a denial of service…

  • CVE-2016-9387HigMar 23, 2017
    risk 0.51cvss 7.8epss 0.02

    Integer overflow in the jpc_dec_process_siz function in libjasper/jpc/jpc_dec.c in JasPer before 1.900.13 allows remote attackers to have unspecified impact via a crafted file, which triggers an assertion failure.

  • CVE-2017-0307HigMar 8, 2017
    risk 0.51cvss 7.8epss 0.02

    An elevation of privilege vulnerability in the NVIDIA GPU driver could enable a local malicious application to execute arbitrary code within the context of the kernel. This issue is rated as Critical due to the possibility of a local permanent device compromise, which may…

  • CVE-2016-6241HigMar 7, 2017
    risk 0.51cvss 7.8epss 0.01

    Integer overflow in the amap_alloc1 function in OpenBSD 5.8 and 5.9 allows local users to execute arbitrary code with kernel privileges via a large size value.