Vulnerabilities > Integer Overflow or Wraparound
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-03-04 | CVE-2025-0587 | Integer Overflow or Wraparound vulnerability in Openatom Openharmony 4.1/5.0.2 in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through integer overflow. | 7.8 |
| 2025-03-04 | CVE-2025-20024 | Integer Overflow or Wraparound vulnerability in Openatom Openharmony in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through integer overflow. | 5.3 |
| 2025-03-03 | CVE-2024-45778 | A stack overflow flaw was found when reading a BFS file system. | 4.1 |
| 2025-03-03 | CVE-2024-53025 | Transient DOS can occur while processing UCI command. | 5.5 |
| 2025-02-07 | CVE-2025-0302 | Integer Overflow or Wraparound vulnerability in Openatom Openharmony 4.1.0/4.1.1 in OpenHarmony v4.1.2 and prior versions allow a local attacker cause DOS through integer overflow. | 5.5 |
| 2025-01-27 | CVE-2025-24156 | Integer Overflow or Wraparound vulnerability in Apple Macos An integer overflow was addressed through improved input validation. | 7.8 |
| 2025-01-21 | CVE-2024-57938 | Integer Overflow or Wraparound vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: net/sctp: Prevent autoclose integer overflow in sctp_association_init() While by default max_autoclose equals to INT_MAX / HZ, one may set net.sctp.max_autoclose to UINT_MAX. | 5.5 |
| 2025-01-15 | CVE-2024-57890 | Integer Overflow or Wraparound vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: RDMA/uverbs: Prevent integer overflow issue In the expression "cmd.wqe_size * cmd.wr_count", both variables are u32 values that come from the user so the multiplication can lead to integer wrapping. | 5.5 |
| 2025-01-14 | CVE-2024-46669 | Integer Overflow or Wraparound vulnerability in Fortinet Fortios An Integer Overflow or Wraparound vulnerability [CWE-190] in version 7.4.4 and below, version 7.2.10 and below; FortiSASE version 23.4.b FortiOS tenant IPsec IKE service may allow an authenticated attacker to crash the IPsec tunnel via crafted requests, resulting in potential denial of service. | 6.5 |
| 2025-01-10 | CVE-2025-23022 | Integer Overflow or Wraparound vulnerability in Freetype 2.8.1 FreeType 2.8.1 has a signed integer overflow in cf2_doFlex in cff/cf2intrp.c. | 6.2 |