CVSS: 9.8EPSS: 0%CPEs: 18EXPL: 0CVE-2021-33316
https://notcve.org/view.php?id=CVE-2021-33316
11 May 2022 — The TRENDnet TI-PG1284i switch(hw v2.0R) prior to version 2.0.2.S0 suffers from an integer underflow vulnerability. ... Due to lack of proper validation on length field of ChassisID TLV, by sending a crafted lldp packet to the device, integer underflow would occur and the negative number will be passed to memcpy() later, which may cause buffer overflow or invalid memory access. • https://www.trendnet.com/support/view.asp?cat=4&id=81 • CWE-20: Improper Input Validation •
CVSS: 4.7EPSS: 0%CPEs: 98EXPL: 0CVE-2021-26347
https://notcve.org/view.php?id=CVE-2021-26347
11 May 2022 — Failure to validate the integer operand in ASP (AMD Secure Processor) bootloader may allow an attacker to introduce an integer overflow in the L2 directory table in SPI flash resulting in a potential denial of service. • https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1031 • CWE-1284: Improper Validation of Specified Quantity in Input •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-29030
https://notcve.org/view.php?id=CVE-2022-29030
10 May 2022 — The Mono_Loader.dll library is vulnerable to integer overflow condition while parsing specially crafted TG4 files. • https://cert-portal.siemens.com/productcert/pdf/ssa-553086.pdf • CWE-190: Integer Overflow or Wraparound CWE-680: Integer Overflow to Buffer Overflow •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 1CVE-2022-27114 – Gentoo Linux Security Advisory 202405-07
https://notcve.org/view.php?id=CVE-2022-27114
09 May 2022 — In image_load_jpeg function image.cxx when it calls malloc,'img->width' and 'img->height' they are large enough to cause an integer overflow. • https://github.com/michaelrsweet/htmldoc/commit/31f780487e5ddc426888638786cdc47631687275 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.4EPSS: 0%CPEs: 2EXPL: 1CVE-2022-26073
https://notcve.org/view.php?id=CVE-2022-26073
05 May 2022 — A denial of service vulnerability exists in the libxm_av.so DemuxCmdInBuffer functionality of Anker Eufy Homebase 2 2.1.8.5h. A specially-crafted set of network packets can lead to a device reboot. An attacker can send packets to trigger this vulnerability. Se presenta una vulnerabilidad de denegación de servicio en la funcionalidad libxm_av.so DemuxCmdInBuffer de Anker Eufy Homebase 2 versión 2.1.8.5h. Un conjunto de paquetes de red especialmente diseñado puede conllevar un reinicio del dispositivo. • https://talosintelligence.com/vulnerability_reports/TALOS-2022-1480 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 0%CPEs: 209EXPL: 0CVE-2022-28705
https://notcve.org/view.php?id=CVE-2022-28705
05 May 2022 — On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x versions prior to 14.1.4.6, and 13.1.x versions prior to 13.1.5, on platforms with an ePVA and the pva.fwdaccel BigDB variable enabled, undisclosed requests to a virtual server with a FastL4 profile that has ePVA acceleration enabled can cause the Traffic Management Microkernel (TMM) process to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated En F5 BIG-IP versiones... • https://support.f5.com/csp/article/K52340447 • CWE-190: Integer Overflow or Wraparound •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-28471
https://notcve.org/view.php?id=CVE-2022-28471
05 May 2022 — In ffjpeg (commit hash: caade60), the function bmp_load() in bmp.c contains an integer overflow vulnerability, which eventually results in the heap overflow in jfif_encode() in jfif.c. • https://github.com/rockcarry/ffjpeg/issues/49 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 12%CPEs: 1EXPL: 0CVE-2021-27433 – ARM mbed-ualloc memory library Integer Overflow or Wraparound
https://notcve.org/view.php?id=CVE-2021-27433
03 May 2022 — ARM mbed-ualloc memory library version 1.3.0 is vulnerable to integer wrap-around in function mbed_krbs, which can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution. • https://github.com/ARMmbed/mbed-os/pull/14408 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 10%CPEs: 1EXPL: 0CVE-2021-27439 – TencentOS-tiny Integer Overflow or Wraparound
https://notcve.org/view.php?id=CVE-2021-27439
03 May 2022 — TencentOS-tiny version 3.1.0 is vulnerable to integer wrap-around in function 'tos_mmheap_alloc incorrect calculation of effective memory allocation size. • https://www.cisa.gov/uscert/ics/advisories/icsa-21-119-04 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 10%CPEs: 1EXPL: 0CVE-2021-22680 – NXP MQX Integer Overflow or Wraparound
https://notcve.org/view.php?id=CVE-2021-22680
03 May 2022 — NXP MQX Versions 5.1 and prior are vulnerable to integer overflow in mem_alloc, _lwmem_alloc and _partition functions. • https://www.cisa.gov/uscert/ics/advisories/icsa-21-119-04 • CWE-190: Integer Overflow or Wraparound •