CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2021-33631 – Kernel crash in EXT4 filesystem
https://notcve.org/view.php?id=CVE-2021-33631
Integer Overflow or Wraparound vulnerability in openEuler kernel on Linux (filesystem modules) allows Forced Integer Overflow.This issue affects openEuler kernel: from 4.19.90 before 4.19.90-2401.3, from 5.10.0-60.18.0 before 5.10.0-183.0.0. ... A flaw was found in the openEuler kernel in Linux filesystem modules that allows an integer overflow via mounting a corrupted filesystem. • http://www.openwall.com/lists/oss-security/2024/01/30/10 http://www.openwall.com/lists/oss-security/2024/01/30/3 http://www.openwall.com/lists/oss-security/2024/01/30/4 http://www.openwall.com/lists/oss-security/2024/01/30/5 http://www.openwall.com/lists/oss-security/2024/01/30/9 http://www.openwall.com/lists/oss-security/2024/01/31/2 http://www.openwall.com/lists/oss-security/2024/01/31/3 http://www.openwall.com/lists/oss-security/202 • CWE-190: Integer Overflow or Wraparound •
CVSS: 8.3EPSS: 0%CPEs: 7EXPL: 0CVE-2024-0565 – Kernel: cifs filesystem decryption improper input validation remote code execution vulnerability in function receive_encrypted_standard of client
https://notcve.org/view.php?id=CVE-2024-0565
This issue occurs due to integer underflow on the memcpy length, leading to a denial of service. • https://access.redhat.com/errata/RHSA-2024:1188 https://access.redhat.com/errata/RHSA-2024:1404 https://access.redhat.com/errata/RHSA-2024:1532 https://access.redhat.com/errata/RHSA-2024:1533 https://access.redhat.com/errata/RHSA-2024:1607 https://access.redhat.com/errata/RHSA-2024:1614 https://access.redhat.com/errata/RHSA-2024:2093 https://access.redhat.com/errata/RHSA-2024:2394 https://access.redhat.com/security/cve/CVE-2024-0565 https://bugzilla.redhat.com/show • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-42463 – wazuh-logcollector integer underflow local privilege escalation
https://notcve.org/view.php?id=CVE-2023-42463
The issue results from the lack of proper validation of user-supplied data, which can result in an integer underflow before writing to memory. • https://github.com/wazuh/wazuh/security/advisories/GHSA-27p5-32pp-r58r • CWE-121: Stack-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-31034
https://notcve.org/view.php?id=CVE-2023-31034
NVIDIA DGX A100 SBIOS contains a vulnerability where a local attacker can cause input validation checks to be bypassed by causing an integer overflow. • https://nvidia.custhelp.com/app/answers/detail/a_id/5510 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-49262 – Buffer overflow vulnerability in Cookie authentication field
https://notcve.org/view.php?id=CVE-2023-49262
The authentication mechanism can be bypassed by overflowing the value of the Cookie "authentication" field, provided there is an active user session. El mecanismo de autenticación se puede omitir desbordando el valor del campo "authentication" de cookies, siempre que haya una sesión de usuario activa. • https://cert.pl/en/posts/2024/01/CVE-2023-49253 https://cert.pl/posts/2024/01/CVE-2023-49253 • CWE-190: Integer Overflow or Wraparound CWE-287: Improper Authentication •