Falhas do tipo CWE-190
1.287 resultadosCVE-2018-1084HIGHcorosync before version 2.4.4 is vulnerable to an integer overflow in exec/totemcrypto.c.EPSS 3.2%CVE-2020-11904—The Treck TCP/IP stack before 6.0.1.66 has an Integer Overflow during Memory Allocation that causes an Out-of-Bounds Write.EPSS 3.2%CVE-2018-10911MEDIUMA flaw was found in the way dic_unserialize function of glusterfs does not handle negative key length values. An attacker could use this flaEPSS 3.1%CVE-2017-5130HIGHAn integer overflow in xmlmemory.c in libxml2 before 2.9.5, as used in Google Chrome prior to 62.0.3202.62 and other products, allowed a remEPSS 3.0%CVE-2023-0754CRITICAL
The affected products are vulnerable to an integer
overflow or wraparound, which could allow an attacker to crash the server and remotely
EPSS 2.9%CVE-2023-45853HIGHMiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_64 via a long filename,EPSS 2.9%CVE-2020-10070CRITICALMQTT buffer overflow on receive bufferEPSS 2.9%CVE-2022-41318HIGHA buffer over-read was discovered in libntlmauth in Squid 2.5 through 5.6. Due to incorrect integer-overflow protection, the SSPI and SMB auEPSS 2.8%CVE-2022-22826HIGHnextScaffoldPart in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.EPSS 2.8%CVE-2022-22827HIGHstoreAtts in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.EPSS 2.8%CVE-2022-35951HIGHRedis subject to Integer Overflow leading to Remote Code Execution via Heap OverflowEPSS 2.7%CVE-2023-35383HIGHMicrosoft Message Queuing Information Disclosure VulnerabilityEPSS 2.7%CVE-2021-21036HIGHAcrobat Reader DC Integer Overflow Vulnerability Could Lead To Arbitrary Code ExecutionEPSS 2.7%CVE-2014-9192—Trihedral Engineering Limited VTScada Integer OverflowEPSS 2.7%CVE-2022-22825HIGHlookup in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow.EPSS 2.6%CVE-2023-41056HIGHRedis vulnerable to integer overflow in certain payloadsEPSS 2.6%CVE-2019-5093HIGHAn exploitable code execution vulnerability exists in the DICOM network response functionality of LEADTOOLS libltdic.so version 20.0.2019.3.EPSS 2.5%CVE-2021-32762HIGHInteger overflow that can lead to heap overflow in redis-cli, redis-sentinel on some platformsEPSS 2.5%CVE-2021-20308—Integer overflow in the htmldoc 1.9.11 and before may allow attackers to execute arbitrary code and cause a denial of service that is similaEPSS 2.5%CVE-2023-36395HIGHWindows Deployment Services Denial of Service VulnerabilityEPSS 2.5%