CVSS: 9.3EPSS: 0%CPEs: 4EXPL: 1CVE-2021-3624
https://notcve.org/view.php?id=CVE-2021-3624
18 Apr 2022 — There is an integer overflow vulnerability in dcraw. • https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=984761 • CWE-20: Improper Input Validation CWE-190: Integer Overflow or Wraparound •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-6099
https://notcve.org/view.php?id=CVE-2020-6099
18 Apr 2022 — An exploitable code execution vulnerability exists in the file format parsing functionality of Graphisoft BIMx Desktop Viewer 2019.2.2328. A specially crafted file can cause a heap buffer overflow resulting in a code execution. An attacker can provide a malicious file to trigger this vulnerability. Se presenta una vulnerabilidad de ejecución de código explotable en la funcionalidad de análisis de formato de archivo de Graphisoft BIMx Desktop Viewer versión 2019.2.2328. Un archivo especialmente diseñado pued... • https://talosintelligence.com/vulnerability_reports/TALOS-2020-1032 • CWE-190: Integer Overflow or Wraparound CWE-680: Integer Overflow to Buffer Overflow •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-44509
https://notcve.org/view.php?id=CVE-2021-44509
15 Apr 2022 — Using crafted input, attackers can cause an integer underflow of the size of calls to memset in op_fnj3 in sr_port/op_fnj3.c in order to cause a segmentation fault and crash the application. • http://tinco.pair.com/bhaskar/gtm/doc/articles/GTM_V7.0-002_Release_Notes.html • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1CVE-2021-44489
https://notcve.org/view.php?id=CVE-2021-44489
15 Apr 2022 — Using crafted input, attackers can cause an integer underflow of the size of calls to memset in op_fnj3 in sr_port/op_fnj3.c in order to cause a segmentation fault and crash the application. • https://gitlab.com/YottaDB/DB/YDB/-/issues/828 • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 7.4EPSS: 0%CPEs: 90EXPL: 0CVE-2022-20684 – Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family SNMP Trap Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2022-20684
15 Apr 2022 — A vulnerability in Simple Network Management Protocol (SNMP) trap generation for wireless clients of Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family could allow an unauthenticated, adjacent attacker to cause an affected device to unexpectedly reload, resulting in a denial of service (DoS) condition on the device. This vulnerability is due to a lack of input validation of the information used to generate an SNMP trap related to a wireless client connection event. An attacker could expl... • https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-c9800-snmp-trap-dos-mjent3Ey • CWE-20: Improper Input Validation CWE-190: Integer Overflow or Wraparound •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 1CVE-2022-28041 – Gentoo Linux Security Advisory 202409-15
https://notcve.org/view.php?id=CVE-2022-28041
15 Apr 2022 — stb_image.h v2.27 was discovered to contain an integer overflow via the function stbi__jpeg_decode_block_prog_dc. • https://github.com/nothings/stb/issues/1292 • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-21154
https://notcve.org/view.php?id=CVE-2022-21154
14 Apr 2022 — An integer overflow vulnerability exists in the fltSaveCMP functionality of Leadtools 22. A specially-crafted BMP file can lead to an integer overflow, that in turn causes a buffer overflow. • https://files.leadtools.com/index.php/s/joFz7BcCZYMot5Q • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2021-21948
https://notcve.org/view.php?id=CVE-2021-21948
14 Apr 2022 — A heap-based buffer overflow vulnerability exists in the readDatHeadVec functionality of AnyCubic Chitubox AnyCubic Plugin 1.0.0. A specially-crafted GF file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability. Se presenta una vulnerabilidad de desbordamiento de búfer en la región heap de la memoria en la funcionalidad readDatHeadVec de AnyCubic Chitubox AnyCubic Plugin versión 1.0.0. Un archivo GF especialmente diseñado puede conllevar a un desbordamie... • https://talosintelligence.com/vulnerability_reports/TALOS-2021-1376 • CWE-122: Heap-based Buffer Overflow CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2021-21914
https://notcve.org/view.php?id=CVE-2021-21914
14 Apr 2022 — A heap-based buffer overflow vulnerability exists in the DecoderStream::Append functionality of Accusoft ImageGear 19.10. A specially-crafted file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability. Se presenta una vulnerabilidad de desbordamiento de búfer en la región heap de la memoria en la funcionalidad DecoderStream::Append de Accusoft ImageGear versión 19.10. Un archivo especialmente diseñado puede conllevar a una ejecución de código. • https://talosintelligence.com/vulnerability_reports/TALOS-2021-1362 • CWE-122: Heap-based Buffer Overflow CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-24845 – Integer bounds error in Vyper
https://notcve.org/view.php?id=CVE-2022-24845
13 Apr 2022 — This issue can result in a misinterpretation of the integer value and lead to incorrect behavior. • https://github.com/vyperlang/vyper/commit/049dbdc647b2ce838fae7c188e6bb09cf16e470b • CWE-190: Integer Overflow or Wraparound •