Vulnerabilities > Integer Overflow or Wraparound

DATE CVE VULNERABILITY TITLE RISK
2020-11-12 CVE-2020-11127 Integer Overflow or Wraparound vulnerability in Qualcomm products
u'Integer overflow can cause a buffer overflow due to lack of table length check in the extensible boot Loader during the validation of security metadata while processing objects to be loaded' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9205, QCM4290, QCS405, QCS410, QCS4290, QCS610, QSM8250, SA415M, SA515M, SA6145P, SA6150P, SA6155, SA6155P, SA8150P, SA8155, SA8155P, SA8195P, SC7180, SC8180X, SC8180X+SDX55, SC8180XP, SDA640, SDA845, SDA855, SDM1000, SDM640, SDM830, SDM845, SDM850, SDX24, SDX50M, SDX55, SDX55M, SM4125, SM4250, SM4250P, SM6115, SM6115P, SM6150, SM6150P, SM6250, SM6250P, SM6350, SM7125, SM7150, SM7150P, SM7225, SM7250, SM7250P, SM8150, SM8150P, SM8250, SXR2130, SXR2130P
local
low complexity
qualcomm CWE-190
7.8
7.8
2020-11-10 CVE-2020-0452 Integer Overflow or Wraparound vulnerability in multiple products
In exif_entry_get_value of exif-entry.c, there is a possible out of bounds write due to an integer overflow.
network
low complexity
google fedoraproject CWE-190
critical
 9.8
9.8
2020-11-10 CVE-2020-0409 Integer Overflow or Wraparound vulnerability in Google Android
In create of FileMap.cpp, there is a possible out of bounds write due to an integer overflow.
local
low complexity
google CWE-190
7.8
7.8
2020-11-09 CVE-2020-28371 Integer Overflow or Wraparound vulnerability in Readytalk Avian 1.2.0
An issue was discovered in ReadyTalk Avian 1.2.0 before 2020-10-27.
network
low complexity
readytalk CWE-190
critical
 9.8
9.8
2020-11-03 CVE-2020-15975 Integer Overflow or Wraparound vulnerability in multiple products
Integer overflow in SwiftShader in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google fedoraproject opensuse debian CWE-190
8.8
8.8
2020-11-03 CVE-2020-15974 Integer Overflow or Wraparound vulnerability in multiple products
Integer overflow in Blink in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to bypass site isolation via a crafted HTML page.
network
low complexity
google debian fedoraproject opensuse CWE-190
8.8
8.8
2020-11-02 CVE-2020-11169 Integer Overflow or Wraparound vulnerability in Qualcomm products
u'Buffer over-read while processing received L2CAP packet due to lack of integer overflow check' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in APQ8009, APQ8053, QCA6390, QCN7605, QCN7606, SA415M, SA515M, SA6155P, SA8155P, SC8180X, SDX55
network
low complexity
qualcomm CWE-190
critical
 9.1
9.1
2020-10-22 CVE-2019-16127 Integer Overflow or Wraparound vulnerability in Microchip Advanced Software Framework 4
Atmel Advanced Software Framework (ASF) 4 has an Integer Overflow.
network
low complexity
microchip CWE-190
critical
 9.1
9.1
2020-10-22 CVE-2020-9875 Integer Overflow or Wraparound vulnerability in Apple products
An integer overflow was addressed through improved input validation.
local
low complexity
apple CWE-190
7.8
7.8
2020-10-16 CVE-2020-26682 Integer Overflow or Wraparound vulnerability in Libass Project Libass 0.14.0
In libass 0.14.0, the `ass_outline_construct`'s call to `outline_stroke` causes a signed integer overflow.
network
low complexity
libass-project CWE-190
8.8
8.8