Weaknesses of type CWE-190

1,310 results
CVE-2026-56407MEDIUMlibexpat before 2.8.2 has an integer overflow in doProlog that is related to storeEntityValue and entity textLen.EPSS 0.1%CVE-2026-41664MEDIUMInteger overflow in memory copy size calculation in Samsung Open Source ONE could lead to invalid memory operations with large tensor shapesEPSS 0.1%CVE-2024-31333HIGHIn _MMU_AllocLevel of mmu_common.c, there is a possible arbitrary code execution due to an integer overflow. This could lead to local escalaEPSS 0.1%CVE-2026-30937MEDIUMImageMagick has a heap buffer overflow in WriteXWDImage due to CARD32 arithmetic overflow in bytes_per_line calculationEPSS 0.1%CVE-2023-20602MEDIUMIn ged, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System exeEPSS 0.1%CVE-2026-56409MEDIUMxmlwf in libexpat before 2.8.2 has an integer overflow for the output filename when -d outputDir is used.EPSS 0.1%CVE-2022-47489MEDIUMIn soter service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with SysEPSS 0.1%CVE-2025-48637HIGHIn multiple functions of mem_protect.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalatEPSS 0.1%CVE-2023-20682MEDIUMIn wlan, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System exEPSS 0.1%CVE-2024-45575HIGHInteger Overflow or Wraparound in Camera DriverEPSS 0.1%CVE-2023-20661MEDIUMIn wlan, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System exEPSS 0.1%CVE-2023-20663MEDIUMIn wlan, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System exEPSS 0.1%CVE-2023-20662MEDIUMIn wlan, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System exEPSS 0.1%CVE-2026-40385MEDIUMIn libexif through 0.6.25, an unsigned 32bit integer overflow in Nikon MakerNote handling could be used by local attackers to cause crashes EPSS 0.1%CVE-2021-0874HIGHIn PVRSRVBridgeDevicememHistorySparseChange of the PowerVR kernel driver, a missing size check means there is a possible integer overflow thEPSS 0.1%CVE-2021-0879HIGHIn PVRSRVBridgeRGXTDMSubmitTransfer of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that couldEPSS 0.1%CVE-2021-0878HIGHIn PVRSRVBridgeServerSyncGetStatus of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could EPSS 0.1%CVE-2021-0873HIGHIn PVRSRVBridgeRGXKickRS of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-EPSS 0.1%CVE-2021-0875HIGHIn PVRSRVBridgeChangeSparseMem of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could alloEPSS 0.1%CVE-2021-0885HIGHIn PVRSRVBridgeSyncPrimOpTake of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allowEPSS 0.1%