VYPR

CWE-369

Divide By Zero

BaseDraftLikelihood: Medium

Description

The product divides a value by zero.

This weakness typically occurs when an unexpected value is provided to the product, or if an error occurs that is not properly detected. It frequently occurs in calculations involving physical dimensions such as size, length, width, and height.

Hierarchy (View 1000)

Parents

Children

none

CVEs mapped to this weakness (221)

page 8 of 12
  • CVE-2025-9649LowAug 29, 2025
    risk 0.21cvss 3.3epss 0.00

    A security vulnerability has been detected in appneta tcpreplay 4.5.1. Impacted is the function calc_sleep_time of the file send_packets.c. Such manipulation leads to divide by zero. An attack has to be approached locally. The exploit has been disclosed publicly and may be used.…

  • CVE-2026-10201LowJun 1, 2026
    risk 0.14cvss 3.3epss 0.00

    A vulnerability was determined in Assimp up to 6.0.4. This vulnerability affects the function FBXExporter::WriteObjects of the file FBXExporter.cpp of the component UV Channel Handler. Executing a manipulation can lead to divide by zero. The attack needs to be launched locally.…

  • CVE-2025-54873LowAug 6, 2025
    risk 0.11cvss epss 0.00

    RISC Zero is a zero-knowledge verifiable general computing platform based on zk-STARKs and the RISC-V microarchitecture. RISC packages risc0-zkvm versions 2.0.0 through 2.1.0 and risc0-circuit-rv32im and risc0-circuit-rv32im-sys versions 2.0.0 through 2.0.4 contain…

  • CVE-2010-4165Nov 22, 2010
    risk 0.03cvss epss 0.01

    The do_tcp_setsockopt function in net/ipv4/tcp.c in the Linux kernel before 2.6.37-rc2 does not properly restrict TCP_MAXSEG (aka MSS) values, which allows local users to cause a denial of service (OOPS) via a setsockopt call that specifies a small value, leading to a…

  • CVE-2026-25799Feb 24, 2026
    risk 0.00cvss epss 0.00

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a logic error in YUV sampling factor validation allows an invalid sampling factor to bypass checks and trigger a division-by-zero during image…

  • CVE-2025-62594Oct 27, 2025
    risk 0.00cvss epss 0.00

    ImageMagick is a software suite to create, edit, compose, or convert bitmap images. ImageMagick versions prior to 7.1.2-8 are vulnerable to denial-of-service due to unsigned integer underflow and division-by-zero in the CLAHEImage function. When tile width or height is zero,…

  • CVE-2025-55212Aug 26, 2025
    risk 0.00cvss epss 0.01

    ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-28 and 7.1.2-2, passing a geometry string containing only a colon (":") to montage -geometry leads GetGeometry() to set width/height to 0. Later,…

  • CVE-2025-48754May 24, 2025
    risk 0.00cvss epss 0.00

    In the memory_pages crate 0.1.0 for Rust, division by zero can occur.

  • CVE-2024-8063Mar 20, 2025
    risk 0.00cvss epss 0.01

    A divide by zero vulnerability exists in ollama/ollama version v0.3.3. The vulnerability occurs when importing GGUF models with a crafted type for `block_count` in the Modelfile. This can lead to a denial of service (DoS) condition when the server processes the model, causing it…

  • CVE-2025-0317Mar 20, 2025
    risk 0.00cvss epss 0.13

    A vulnerability in ollama/ollama versions <=0.3.14 allows a malicious user to upload and create a customized GGUF model file on the Ollama server. This can lead to a division by zero error in the ggufPadding function, causing the server to crash and resulting in a Denial of…

  • CVE-2023-52313Jan 3, 2024
    risk 0.00cvss epss 0.00

    FPE in paddle.argmin and paddle.argmax in PaddlePaddle before 2.6.0. This flaw can cause a runtime crash and a denial of service.

  • CVE-2023-52308Jan 3, 2024
    risk 0.00cvss epss 0.00

    FPE in paddle.amin in PaddlePaddle before 2.6.0. This flaw can cause a runtime crash and a denial of service.

  • CVE-2023-52306Jan 3, 2024
    risk 0.00cvss epss 0.00

    FPE in paddle.lerp in PaddlePaddle before 2.6.0. This flaw can cause a runtime crash and a denial of service.

  • CVE-2023-52305Jan 3, 2024
    risk 0.00cvss epss 0.00

    FPE in paddle.topk in PaddlePaddle before 2.6.0. This flaw can cause a runtime crash and a denial of service.

  • CVE-2023-38677Jan 3, 2024
    risk 0.00cvss epss 0.00

    FPE in paddle.linalg.eig in PaddlePaddle before 2.6.0. This flaw can cause a runtime crash and a denial of service.

  • CVE-2023-38675Jan 3, 2024
    risk 0.00cvss epss 0.00

    FPE in paddle.linalg.matrix_rank in PaddlePaddle before 2.6.0. This flaw can cause a runtime crash and a denial of service.

  • CVE-2023-38674Jan 3, 2024
    risk 0.00cvss epss 0.00

    FPE in paddle.nanmedian in PaddlePaddle before 2.6.0. This flaw can cause a runtime crash and a denial of service.

  • CVE-2023-38672Jul 26, 2023
    risk 0.00cvss epss 0.01

    FPE in paddle.trace in PaddlePaddle before 2.5.0. This flaw can cause a runtime crash and a denial of service.

  • CVE-2023-29659May 5, 2023
    risk 0.00cvss epss 0.01

    A Segmentation fault caused by a floating point exception exists in libheif 1.15.1 using crafted heif images via the heif::Fraction::round() function in box.cc, which causes a denial of service.

  • CVE-2022-35996Sep 16, 2022
    risk 0.00cvss epss 0.00

    TensorFlow is an open source platform for machine learning. If `Conv2D` is given empty `input` and the `filter` and `padding` sizes are valid, the output is all-zeros. This causes division-by-zero floating point exceptions that can be used to trigger a denial of service attack.…