CVEbaza.plCWE DictionaryCWE-191
Common Weakness Enumeration

CWE-191

Integer Underflow (Wrap or Wraparound)

Category: BaseCVE: 541
Description

The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result.

Extended Description

This can happen in signed and unsigned cases.

CVE vulnerabilities with CWE-191 (541)
10.0
CVSS
HIGH
CVE-2007-0063

Integer underflow in the DHCP server in EMC VMware Workstation before 5.5.5 Build 56455 and 6.x before 6.0.1 Build 55017, Player before 1.0.5 Build 56455 and Player 2 before 2.0.1 Build 55017, ACE before 1.0.3 Build 54075 and ACE 2 before 2.0.1 Build 55017, and Server before 1.0.4 Build 56528 allows remote attackers to execute arbitrary code via a malformed DHCP packet that triggers a stack-based buffer overflow.

pub. 2007-09-21
9.8
CVSS
CRITICAL
CVE-2026-37534

Integer underflow vulnerability in Open-SAE-J1939 thru commit b6caf884df46435e539b1ecbf92b6c29b345bdfe (2025-11-30) in SAE_J1939_Read_Transport_Protocol_Data_Transfer,allows attackers to write to arbitrary memory via crafted sequence number from the CAN frame.

pub. 2026-05-01
9.8
CVSS
CRITICAL
CVE-2018-9388

In store_upgrade and store_cmd of drivers/input/touchscreen/stm/ftm4_pdc.c, there are out of bound writes due to missing bounds checks or integer underflows. These could lead to escalation of privilege.

pub. 2024-12-05
9.8
CVSS
CRITICAL
CVE-2024-38063

Windows TCP/IP Remote Code Execution Vulnerability

pub. 2024-08-13
9.8
CVSS
CRITICAL
CVE-2024-38074

Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability

pub. 2024-07-09
9.8
CVSS
CRITICAL
CVE-2024-23313

An integer underflow vulnerability exists in the sopen_FAMOS_read functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111). A specially crafted .famos file can lead to an out-of-bounds write which in turn can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.

pub. 2024-02-20
9.8
CVSS
CRITICAL
CVE-2024-0808

Integer underflow in WebUI in Google Chrome prior to 121.0.6167.85 allowed a remote attacker to potentially exploit heap corruption via a malicious file. (Chromium security severity: High)

pub. 2024-01-24
9.8
CVSS
CRITICAL
CVE-2023-32653

An out-of-bounds write vulnerability exists in the dcm_pixel_data_decode functionality of Accusoft ImageGear 20.1. A specially crafted malformed file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability.

pub. 2023-09-25
9.8
CVSS
CRITICAL
CVE-2023-38427

An issue was discovered in the Linux kernel before 6.3.8. fs/smb/server/smb2pdu.c in ksmbd has an integer underflow and out-of-bounds read in deassemble_neg_contexts.

pub. 2023-07-18
9.8
CVSS
CRITICAL
CVE-2023-32014

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

pub. 2023-06-14
9.8
CVSS
CRITICAL
CVE-2023-28250

Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

pub. 2023-04-11
9.8
CVSS
CRITICAL
CVE-2023-21708

Remote Procedure Call Runtime Remote Code Execution Vulnerability

pub. 2023-03-14
9.8
CVSS
CRITICAL
CVE-2022-4338

An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch.

pub. 2023-01-10
9.8
CVSS
CRITICAL
CVE-2021-40589

ZAngband zangband-data 2.7.5 is affected by an integer underflow vulnerability in src/tk/plat.c through the variable fileheader.bfOffBits.

pub. 2022-06-08
9.8
CVSS
CRITICAL
CVE-2021-1919

Integer underflow can occur when the RTCP length is lesser than than the actual blocks present in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables

pub. 2021-09-08
9.8
CVSS
CRITICAL
CVE-2021-1920

Integer underflow can occur due to improper handling of incoming RTCP packets in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Voice & Music, Snapdragon Wearables

pub. 2021-09-08
9.8
CVSS
CRITICAL
CVE-2021-21811

A memory corruption vulnerability exists in the XML-parsing CreateLabelOrAttrib functionality of AT&T Labs’ Xmill 0.7. A specially crafted XML file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.

pub. 2021-08-31
9.8
CVSS
CRITICAL
CVE-2021-28027

An issue was discovered in the bam crate before 0.1.3 for Rust. There is an integer underflow and out-of-bounds write during the loading of a bgzip block.

pub. 2021-03-05
9.8
CVSS
CRITICAL
CVE-2020-28194

Variable underflow exists in accel-ppp radius/packet.c when receiving a RADIUS vendor-specific attribute with length field is less than 2. It has an impact only when the attacker controls the RADIUS server, which can lead to arbitrary code execution.

pub. 2021-02-01
9.8
CVSS
CRITICAL
CVE-2020-3691

Possible out of bound memory access in audio due to integer underflow while processing modified contents in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking

pub. 2021-01-21
Showing 20 of 541 vulnerabilities
Information
ID: CWE-191
Type: Base
Vulnerabilities: 541
MITRE CWE ↗
← CWE Dictionary
CWE-191 — Integer Underflow (Wrap or Wraparound) | CWE Dictionary | CVEbaza.pl