CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2021-20300
https://notcve.org/view.php?id=CVE-2021-20300
04 Mar 2022 — This flaw allows an attacker who can submit a crafted file that is processed by OpenEXR, to trigger an integer overflow. • https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=25562 • CWE-190: Integer Overflow or Wraparound •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0CVE-2021-20303
https://notcve.org/view.php?id=CVE-2021-20303
04 Mar 2022 — An attacker who is able to submit a crafted file to be processed by OpenEXR could trigger an integer overflow, leading to an out-of-bounds write on the heap. • https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=25505 • CWE-190: Integer Overflow or Wraparound •
CVSS: 10.0EPSS: 0%CPEs: 7EXPL: 0CVE-2021-38578 – edk2: integer underflow in SmmEntryPoint function leads to potential SMM privilege escalation
https://notcve.org/view.php?id=CVE-2021-38578
03 Mar 2022 — Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize. ... A integer underflow in the SmmEntryPoint function leads to a write into the SMM region allowing a local attacker with administration privileges on the system to execute code within the SMM privileged context. • https://bugzilla.tianocore.org/show_bug.cgi?id=3387 • CWE-124: Buffer Underwrite ('Buffer Underflow') CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 17%CPEs: 5EXPL: 2CVE-2022-24724 – Integer overflow in table parsing extension leads to heap memory corruption
https://notcve.org/view.php?id=CVE-2022-24724
03 Mar 2022 — Prior to versions 0.29.0.gfm.3 and 0.28.3.gfm.21, an integer overflow in cmark-gfm's table row parsing `table.c:row_from_string` may lead to heap memory corruption when parsing tables who's marker rows contain more than UINT16_MAX columns. • http://packetstormsecurity.com/files/166599/cmark-gfm-Integer-overflow.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 1CVE-2021-3999 – glibc: Off-by-one buffer overflow/underflow in getcwd()
https://notcve.org/view.php?id=CVE-2021-3999
02 Mar 2022 — An off-by-one buffer overflow and underflow in getcwd() may lead to memory corruption when the size of the buffer is exactly 1. ... It was discovered that GNU C Library when processing very long pathname arguments to the realpath function, could encounter an integer overflow on 32-bit architectures, leading to a stack-based buffer overflow and, potentially, arbitrary code execution. • https://access.redhat.com/security/cve/CVE-2021-3999 • CWE-193: Off-by-one Error •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2021-45860
https://notcve.org/view.php?id=CVE-2021-45860
01 Mar 2022 — An integer overflow in DTSStreamReader::findFrame() of tsMuxer git-2678966 allows attackers to cause a Denial of Service (DoS) via a crafted file. • https://github.com/justdan96/tsMuxer/issues/510 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 5%CPEs: 2EXPL: 1CVE-2022-25062
https://notcve.org/view.php?id=CVE-2022-25062
25 Feb 2022 — TP-LINK TL-WR840N(ES)_V6.20_180709 was discovered to contain an integer overflow via the function dm_checkString. • https://east-trowel-102.notion.site/CVE-2021-XXXX-RCE-Integer-Overflow-via-crafted-payload-in-an-DNS-input-field-userDomain-EN-2bc0fafd23224a5a8f86f5f0f9377d3d • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2021-22319
https://notcve.org/view.php?id=CVE-2021-22319
25 Feb 2022 — Successful exploitation of this vulnerability may cause integer overflows. • https://consumer.huawei.com/en/support/bulletin/2021/10 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.0EPSS: 0%CPEs: 4EXPL: 0CVE-2021-22437
https://notcve.org/view.php?id=CVE-2021-22437
25 Feb 2022 — There is a software integer overflow leading to a TOCTOU condition in smartphones. • https://consumer.huawei.com/en/support/bulletin/2021/9 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-22480
https://notcve.org/view.php?id=CVE-2021-22480
25 Feb 2022 — The interface of a certain HarmonyOS module has an integer overflow vulnerability. • https://device.harmonyos.com/en/docs/security/update/security-bulletins-202109-0000001196270727 • CWE-190: Integer Overflow or Wraparound •