Vulnerabilities > Integer Overflow or Wraparound

DATE CVE VULNERABILITY TITLE RISK
2021-05-07 CVE-2021-22677 An integer overflow exists in the APIs of the host MCU while trying to connect to a WIFI network may lead to issues such as a denial-of-service condition or code execution on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prior to v4.40.00, CC3200 SDK v1.5.0 and prior, CC3100 SDK v1.3.0 and prior). 0.0
2021-05-07 CVE-2021-22671 Multiple integer overflow issues exist while processing long domain names, which may allow an attacker to remotely execute code on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prior to v4.40.00, CC3200 SDK v1.5.0 and prior, CC3100 SDK v1.3.0 and prior). 0.0
2021-05-07 CVE-2021-22675 The affected product is vulnerable to integer overflow while parsing malformed over-the-air firmware update files, which may allow an attacker to remotely execute code on SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prior to v4.40.00, CC3200 SDK v1.5.0 and prior, CC3100 SDK v1.3.0 and prior). 0.0
2021-05-07 CVE-2021-22679 The affected product is vulnerable to an integer overflow while processing HTTP headers, which may allow an attacker to remotely execute code on the SimpleLink Wi-Fi (MSP432E4 SDK: v4.20.00.12 and prior, CC32XX SDK v4.30.00.06 and prior, CC13X0 SDK versions prior to v4.10.03, CC13X2 and CC26XX SDK versions prior to v4.40.00, CC3200 SDK v1.5.0 and prior, CC3100 SDK v1.3.0 and prior). 0.0
2021-05-04 CVE-2021-29478 Redis is an open source (BSD licensed), in-memory data structure store, used as a database, cache, and message broker. 0.0
2021-05-04 CVE-2021-29477 Redis is an open source (BSD licensed), in-memory data structure store, used as a database, cache, and message broker. 0.0
2021-04-29 CVE-2021-31426 Integer Overflow OR Wraparound vulnerability in Parallels Desktop 16.1.249151
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.2-49151.
local
low complexity
parallels CWE-190
7.2
2021-04-29 CVE-2021-31425 This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.1.2-49151. 0.0
2021-04-27 CVE-2019-25039 Integer Overflow OR Wraparound vulnerability in Nlnetlabs Unbound
Unbound before 1.9.5 allows an integer overflow in a size calculation in respip/respip.c.
network
low complexity
nlnetlabs CWE-190
7.5
2021-04-27 CVE-2019-25034 Integer Overflow OR Wraparound vulnerability in Nlnetlabs Unbound
Unbound before 1.9.5 allows an integer overflow in sldns_str2wire_dname_buf_origin, leading to an out-of-bounds write.
network
low complexity
nlnetlabs CWE-190
7.5