VYPR

CWE-839

Numeric Range Comparison Without Minimum Check

BaseIncomplete

Description

The product checks a value to ensure that it is less than or equal to a maximum, but it does not also verify that the value is greater than or equal to the minimum.

Hierarchy (View 1000)

Parents

Children

none

CVEs mapped to this weakness (1)

  • CVE-2026-48840MedMay 30, 2026
    risk 0.34cvss 5.3epss 0.00

    Exim 4.88 before 4.99.4, in some proxy configurations, mishandles certain short payloads, leading to disclosure of uninitialized stack memory values to a client.