CVEbaza.plCWE DictionaryCWE-369
Common Weakness Enumeration

CWE-369

Divide By Zero

Category: BaseCVE: 533
Description

The product divides a value by zero.

Extended Description

This weakness typically occurs when an unexpected value is provided to the product, or if an error occurs that is not properly detected. It frequently occurs in calculations involving physical dimensions such as size, length, width, and height.

CVE vulnerabilities with CWE-369 (533)
10.0
CVSS
CRITICAL
CVE-2026-24826

Out-of-bounds Write, Divide By Zero, NULL Pointer Dereference, Use of Uninitialized Resource, Out-of-bounds Read, Reachable Assertion vulnerability in cadaver turso3d.This issue affects .

pub. 2026-01-27
10.0
CVSS
CRITICAL
CVE-2021-32494

Radare2 has a division by zero vulnerability in Mach-O parser's rebase_buffer function. This allow attackers to create malicious inputs that can cause denial of service.

pub. 2023-07-07
9.8
CVSS
CRITICAL
CVE-2017-11720

There is a division-by-zero vulnerability in LAME 3.99.5, caused by a malformed input file.

pub. 2017-07-28
8.8
CVSS
HIGH
CVE-2020-20892

An issue was discovered in function filter_frame in libavfilter/vf_lenscorrection.c in Ffmpeg 4.2.1, allows attackers to cause a Denial of Service or other unspecified impacts due to a division by zero.

pub. 2021-09-20
8.7
CVSS
HIGH
CVE-2026-5747

An out-of-bounds write issue in the virtio PCI transport in Firecracker 1.13.0 through 1.14.3 and 1.15.0 on x86_64 and aarch64 might allow a local guest user with root privileges to crash the Firecracker VMM process or potentially execute arbitrary code on the host via modification of virtio queue configuration registers after device activation. Achieving code execution on the host requires additional preconditions, such as the use of a custom guest kernel or specific snapshot configurations. To remediate this, users should upgrade to Firecracker 1.14.4 or 1.15.1 and later.

pub. 2026-04-08
8.7
CVSS
HIGH
CVE-2025-4637

Divide By Zero vulnerability in davisking dlib allows remote attackers to cause a denial of service via a crafted file. .This issue affects dlib: before <19.24.7.

pub. 2025-05-14
8.6
CVSS
HIGH
CVE-2026-37232

An issue was discovered in OpenAirInterface5G 2.4.0 (nr-softmodem) in the E2SM-KPM RAN Function's PRB utilization metric calculation. The functions fill_RRU_PrbTotDl() and fill_RRU_PrbTotUl() in openair2/E2AP/RAN_FUNCTION/O-RAN/ran_func_kpm_subs.c (lines 182 and 197) compute PRB usage percentages by dividing by the difference of two consecutive total_prb_aggregate samples without checking for zero. When a malicious xApp sends a high volume of E42_RIC_SUBSCRIPTION_REQUESTs via the FlexRIC iApp (port 36422/SCTP), the E2 Agent generates KPM Indication reports at high frequency. If two consecutive sampling intervals yield identical PRB aggregate values, the divisor becomes zero, triggering SIGFPE and crashing the entire 5G base station process (nr-softmodem). This results in complete 5G cell service interruption for all connected UEs. No authentication is required.

pub. 2026-06-01
8.4
CVSS
HIGH
CVE-2024-26945

In the Linux kernel, the following vulnerability has been resolved: crypto: iaa - Fix nr_cpus < nr_iaa case If nr_cpus < nr_iaa, the calculated cpus_per_iaa will be 0, which causes a divide-by-0 in rebalance_wq_table(). Make sure cpus_per_iaa is 1 in that case, and also in the nr_iaa == 0 case, even though cpus_per_iaa is never used if nr_iaa == 0, for paranoia.

pub. 2024-05-01
7.8
CVSS
HIGH
CVE-2023-3896

Divide By Zero in vim/vim from 9.0.1367-1 to 9.0.1367-3

pub. 2023-08-07
7.8
CVSS
HIGH
CVE-2023-1127

Divide By Zero in GitHub repository vim/vim prior to 9.0.1367.

pub. 2023-03-01
7.8
CVSS
HIGH
CVE-2023-0512

Divide By Zero in GitHub repository vim/vim prior to 9.0.1247.

pub. 2023-01-30
7.8
CVSS
HIGH
CVE-2023-21789

3D Builder Remote Code Execution Vulnerability

pub. 2023-01-10
7.8
CVSS
HIGH
CVE-2019-14498

A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted CAF file.

pub. 2019-08-29
7.8
CVSS
HIGH
CVE-2019-14535

A divide-by-zero error exists in the SeekIndex function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted WMV file.

pub. 2019-08-29
7.8
CVSS
HIGH
CVE-2017-11464

A SIGFPE is raised in the function box_blur_line of rsvg-filter.c in GNOME librsvg 2.40.17 during an attempted parse of a crafted SVG file, because of incorrect protection against division by zero.

pub. 2017-07-19
7.8
CVSS
HIGH
CVE-2017-7598

tif_dirread.c in LibTIFF 4.0.7 might allow remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted image.

pub. 2017-04-09
7.8
CVSS
HIGH
CVE-2006-5939

Grisoft AVG Anti-Virus before 7.1.407 allows remote attackers to cause a denial of service (crash) via a crafted DOC file that triggers a divide-by-zero error. NOTE: some of these details are obtained from third party information.

pub. 2006-11-16
7.6
CVSS
HIGH
CVE-2024-6135

BT:Classic: Multiple missing buf length checks

pub. 2024-09-13
7.6
CVSS
HIGH
CVE-2024-4785

BT: Missing Check in LL_CONNECTION_UPDATE_IND Packet Leads to Division by Zero

pub. 2024-08-19
7.5
CVSS
HIGH
CVE-2026-33593

A client can trigger a divide by zero error leading to crash by sending a crafted DNSCrypt query.

pub. 2026-04-22
Showing 20 of 533 vulnerabilities
Information
ID: CWE-369
Type: Base
Vulnerabilities: 533
MITRE CWE ↗
← CWE Dictionary