Vulnerabilities > Integer Overflow or Wraparound
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-02-15 | CVE-2017-15344 | Integer Overflow or Wraparound vulnerability in Huawei Ar120-S Firmware, Ar1200 Firmware and Ar3200 Firmware Huawei AR3200 with software V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30 has an integer overflow vulnerability. | 7.5 |
| 2018-02-15 | CVE-2017-15343 | Integer Overflow or Wraparound vulnerability in Huawei Ar120-S Firmware, Ar1200 Firmware and Ar3200 Firmware Huawei AR3200 with software V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30 has an integer overflow vulnerability. | 7.5 |
| 2018-02-14 | CVE-2017-18187 | Integer Overflow or Wraparound vulnerability in multiple products In ARM mbed TLS before 2.7.0, there is a bounds-check bypass through an integer overflow in PSK identity parsing in the ssl_parse_client_psk_identity() function in library/ssl_srv.c. | 9.8 |
| 2018-02-12 | CVE-2017-17725 | Integer Overflow or Wraparound vulnerability in Exiv2 0.26 In Exiv2 0.26, there is an integer overflow leading to a heap-based buffer over-read in the Exiv2::getULong function in types.cpp. | 6.5 |
| 2018-02-12 | CVE-2018-6927 | Integer Overflow or Wraparound vulnerability in multiple products The futex_requeue function in kernel/futex.c in the Linux kernel before 4.14.15 might allow attackers to cause a denial of service (integer overflow) or possibly have unspecified other impact by triggering a negative wake or requeue value. | 7.8 |
| 2018-02-07 | CVE-2017-5131 | Integer Overflow or Wraparound vulnerability in multiple products An integer overflow in Skia in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page, aka an out-of-bounds write. | 8.8 |
| 2018-02-07 | CVE-2017-12470 | Integer Overflow or Wraparound vulnerability in Ccn-Lite Integer overflow in the ndn_parse_sequence function in CCN-lite before 2.00 allows context-dependent attackers to have unspecified impact via vectors involving the typ and vallen variables. | 9.8 |
| 2018-02-07 | CVE-2017-12465 | Integer Overflow or Wraparound vulnerability in Ccn-Lite Multiple integer overflows in CCN-lite before 2.00 allow context-dependent attackers to have unspecified impact via vectors involving the (1) vallen variable in the iottlv_parse_sequence function or (2) typ, vallen and i variables in the localrpc_parse function. | 9.8 |
| 2018-02-02 | CVE-2018-6551 | Integer Overflow or Wraparound vulnerability in GNU Glibc 2.24/2.25/2.26 The malloc implementation in the GNU C Library (aka glibc or libc6), from version 2.24 to 2.26 on powerpc, and only in version 2.26 on i386, did not properly handle malloc calls with arguments close to SIZE_MAX and could return a pointer to a heap region that is smaller than requested, eventually leading to heap corruption. | 9.8 |
| 2018-02-02 | CVE-2018-6543 | Integer Overflow or Wraparound vulnerability in GNU Binutils 2.30 In GNU Binutils 2.30, there's an integer overflow in the function load_specific_debug_section() in objdump.c, which results in `malloc()` with 0 size. | 7.8 |