CVSS: 7.5EPSS: 1%CPEs: 8EXPL: 0CVE-2021-32761 – Integer overflow issues with *BIT commands on 32-bit systems
https://notcve.org/view.php?id=CVE-2021-32761
21 Jul 2021 — A vulnerability involving out-of-bounds read and integer overflow to buffer overflow exists starting with version 2.2 and prior to versions 5.0.13, 6.0.15, and 6.2.5. On 32-bit systems, Redis `*BIT*` command are vulnerable to integer overflow that can potentially be exploited to corrupt the heap, leak arbitrary heap contents or trigger remote code execution. • https://github.com/redis/redis/security/advisories/GHSA-8wxq-j7rp-g8wj • CWE-125: Out-of-bounds Read CWE-190: Integer Overflow or Wraparound CWE-680: Integer Overflow to Buffer Overflow •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2020-19497
https://notcve.org/view.php?id=CVE-2020-19497
21 Jul 2021 — Integer overflow vulnerability in Mat_VarReadNextInfo5 in mat5.c in tbeu matio (aka MAT File I/O Library) 1.5.17, allows attackers to cause a Denial of Service or possibly other unspecified impacts. • https://github.com/tbeu/matio/commit/5fa49ef9fc4368fe3d19b5fdaa36d8fa5e7f4606 • CWE-190: Integer Overflow or Wraparound •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2020-19490
https://notcve.org/view.php?id=CVE-2020-19490
21 Jul 2021 — tinyexr 0.9.5 has a integer overflow over-write in tinyexr::DecodePixelData in tinyexr.h, related to OpenEXR code. tinyexr versión 0.9.5, presenta una sobrescritura de desbordamiento de enteros en la función tinyexr::DecodePixelData en el archivo tinyexr.h, relacionado con el código OpenEXR • https://github.com/syoyo/tinyexr/commit/a685e3332f61cd4e59324bf3f669d36973d64270 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 10%CPEs: 3EXPL: 0CVE-2021-2390 – MySQL memcached Plugin Integer Underflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-2390
20 Jul 2021 — The issue results from the lack of proper validation of user-supplied data, which can result in an integer underflow before writing to memory. • https://security.netapp.com/advisory/ntap-20210723-0001 • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 9.8EPSS: 6%CPEs: 14EXPL: 0CVE-2021-2389 – MySQL memcached Plugin Integer Underflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2021-2389
20 Jul 2021 — The issue results from the lack of proper validation of user-supplied data, which can result in an integer underflow before writing to memory. • https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2UTW5KMPPDKIMGB4ULE2HS22HYLVKYIH •
CVSS: 7.8EPSS: 1%CPEs: 20EXPL: 7CVE-2021-33909 – kernel: size_t-to-int conversion vulnerability in the filesystem layer
https://notcve.org/view.php?id=CVE-2021-33909
20 Jul 2021 — fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05. • https://packetstorm.news/files/id/163621 • CWE-190: Integer Overflow or Wraparound CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2021-20110
https://notcve.org/view.php?id=CVE-2021-20110
19 Jul 2021 — In httphandler.cpp, the agent reaching out over HTTP is vulnerable to an Integer Overflow, which can be turned into a Heap Overflow allowing for remote code execution as NT AUTHORITY/SYSTEM on the agent machine. The Integer Overflow occurs when receiving POST response from the Manage Engine server, and the agent calling "HttpQueryInfoW" in order to get the "Content-Length" size from the incoming POST request. ... If an attacker specifies a Content-Length size of 1073741823 or lar... • https://www.tenable.com/security/research/tra-2021-31 • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0CVE-2021-34513 – Storage Spaces Controller Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-34513
14 Jul 2021 — The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow before allocating a buffer. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34513 • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.8EPSS: 0%CPEs: 11EXPL: 0CVE-2021-34512 – Storage Spaces Controller Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-34512
14 Jul 2021 — The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow before allocating a buffer. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34512 • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.8EPSS: 0%CPEs: 9EXPL: 0CVE-2021-34510 – Storage Spaces Controller Elevation of Privilege Vulnerability
https://notcve.org/view.php?id=CVE-2021-34510
14 Jul 2021 — The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow before allocating a buffer. • https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-34510 • CWE-190: Integer Overflow or Wraparound •