Vulnerabilities (CVE)

CWE filter

CWE-190

Filter

1150 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-16905 1 Openbsd 1 Openssh 2019-10-16 7.5
OpenSSH 7.7 through 7.9 and 8.x before 8.1, when compiled with an experimental key type, has a pre-authentication integer overflow if a client or server is configured to use a crafted XMSS key. This leads to memory corruption and remote code...
CVE-2019-17451 1 Gnu 1 Binutils 2019-10-15 4.3
An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an integer overflow leading to a SEGV in _bfd_dwarf2_find_nearest_line in dwarf2.c, as demonstrated by nm.
CVE-2018-14003 2 Wemediachain Project, Wmctoken Project 2 Wemediachain, Wmctoken 2019-10-11 5.0
An integer overflow vulnerability exists in the function batchTransfer of WeMediaChain (WMC), an Ethereum token smart contract. An attacker could use it to set any user's balance.
CVE-2018-13743 2 Superenergy Project, Sectoken Project 2 Superenergy, Sectoken 2019-10-10 5.0
The mintToken function of a smart contract implementation for SuperEnergy (SEC), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
CVE-2013-2806 1 Rockwellautomation 1 Rslinx Enterprise 2019-10-10 7.8
Rockwell Automation RSLinx Enterprise Software (LogReceiver.exe) CPR9, CPR9-SR1, CPR9-SR2, CPR9-SR3, CPR9-SR4, CPR9-SR5, CPR9-SR5.1, and CPR9-SR6 does not handle input correctly and results in a logic error if it calculates an incorrect value for...
CVE-2019-9139 1 Datools 1 Daviewindy 2019-10-09 6.8
DaviewIndy 8.98.7 and earlier versions have a Integer overflow vulnerability, triggered when the user opens a malformed PDF file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.
CVE-2019-9138 1 Datools 1 Daviewindy 2019-10-09 6.8
DaviewIndy 8.98.7 and earlier versions have a Integer overflow vulnerability, triggered when the user opens a malformed PhotoShop file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.
CVE-2019-9137 1 Hmtalk 1 Daviewindy 2019-10-09 6.8
DaviewIndy 8.98.7 and earlier versions have a Integer overflow vulnerability, triggered when the user opens a malformed Image file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.
CVE-2019-6753 1 Foxitsoftware 2 Foxit Reader, Phantompdf 2019-10-09 4.3
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.3.0.10826. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or...
CVE-2019-5040 2 Openweave, Google 2 Openweave-core, Nest Cam Iq Indoor Firmware 2019-10-09 5.0
An exploitable information disclosure vulnerability exists in the Weave MessageLayer parsing of Openweave-core version 4.0.2 and Nest Cam IQ Indoor version 4620002. A specially crafted weave packet can cause an integer overflow to occur,...
CVE-2019-11476 1 Canonical 1 Ubuntu Linux 2019-10-09 4.6
An integer overflow in whoopsie before versions 0.2.52.5ubuntu0.1, 0.2.62ubuntu0.1, 0.2.64ubuntu0.1, 0.2.66, results in an out-of-bounds write to a heap allocated buffer when processing large crash dumps. This results in a crash or possible...
CVE-2019-10142 1 Linux 1 Linux Kernel 2019-10-09 4.6
A flaw was found in the Linux kernel's freescale hypervisor manager implementation, kernel versions 5.0.x up to, excluding 5.0.17. A parameter passed to an ioctl was incorrectly validated and used in size calculations for the page size...
CVE-2018-5733 4 Isc, Canonical, Debian and 1 more 8 Dhcp, Ubuntu Linux, Debian Linux and 5 more 2019-10-09 5.0
A malicious client which is allowed to send very large amounts of traffic (billions of packets) to a DHCP server can eventually overflow a 32-bit reference counter, potentially causing dhcpd to crash. Affects ISC DHCP 4.1.0 -> 4.1-ESV-R15, 4.2.0...
CVE-2018-1084 4 Corosync, Debian, Redhat and 1 more 4 Corosync, Debian Linux, Enterprise Linux Server and 1 more 2019-10-09 7.5
corosync before version 2.4.4 is vulnerable to an integer overflow in exec/totemcrypto.c.
CVE-2018-10921 1 Ttembed Project 1 Ttembed 2019-10-09 5.0
Certain input files may trigger an integer overflow in ttembed input file processing. This overflow could potentially lead to corruption of the input file due to a lack of checking return codes of fgetc/fputc function calls.
CVE-2018-10887 2 Debian, Libgit2 2 Debian Linux, Libgit2 2019-10-09 5.8
A flaw was found in libgit2 before version 0.27.3. It has been discovered that an unexpected sign extension in git_delta_apply function in delta.c file may lead to an integer overflow which in turn leads to an out of bound read, allowing to read...
CVE-2017-9282 1 Microfocus 1 Visibroker 2019-10-09 7.5
An integer overflow (CWE-190) led to an out-of-bounds write (CWE-787) on a heap-allocated area, leading to heap corruption in Micro Focus VisiBroker 8.5. The feasibility of leveraging this vulnerability for further attacks was not assessed.
CVE-2017-7482 3 Redhat, Debian, Linux 3 Enterprise Mrg, Debian Linux, Linux Kernel 2019-10-09 7.2
In the Linux kernel before version 4.12, Kerberos 5 tickets decoded when using the RXRPC keys incorrectly assumes the size of a field. This could lead to the size-remaining variable wrapping and the data pointer going over the end of the buffer....
CVE-2017-17409 2019-10-09 9.3
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender Internet Security 2018. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or...
CVE-2017-17408 1 Bitdefender 1 Internet Security 2018 2019-10-09 9.3
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender Internet Security 2018. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or...