Vulnerabilities > Integer Underflow (Wrap or Wraparound)

DATE CVE VULNERABILITY TITLE RISK
2019-05-13 CVE-2019-10053 Integer Underflow (Wrap or Wraparound) vulnerability in Suricata-Ids Suricata 4.1.0
An issue was discovered in Suricata 4.1.x before 4.1.4.
network
low complexity
suricata-ids CWE-191
critical
9.8
2019-05-06 CVE-2017-18278 Integer Underflow (Wrap or Wraparound) vulnerability in Qualcomm products
An integer underflow may occur due to lack of check when received data length from font_mgr_qsee_request_service is bigger than the minimal value of the segment header, which may result in a buffer overflow, in Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 425, SD 430, SD 450, SD 625, SD 650/52, SD 820, SD 820A, SD 835, SD 845, SD 850.
local
low complexity
qualcomm CWE-191
7.8
2019-04-09 CVE-2019-9133 Integer Underflow (Wrap or Wraparound) vulnerability in multiple products
When processing subtitles format media file, KMPlayer version 2018.12.24.14 or lower doesn't check object size correctly, which leads to integer underflow then to memory out-of-bound read/write.
local
low complexity
kmplayer fedoraproject CWE-191
5.5
2019-03-21 CVE-2018-4011 Integer Underflow (Wrap or Wraparound) vulnerability in Getcujo Smart Firewall 7003
An exploitable integer underflow vulnerability exists in the mdnscap binary of the CUJO Smart Firewall, version 7003.
network
low complexity
getcujo CWE-191
7.5
2019-03-15 CVE-2018-20181 Integer Underflow (Wrap or Wraparound) vulnerability in multiple products
rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap-Based Buffer Overflow in the function seamless_process() and results in memory corruption and probably even a remote code execution.
network
low complexity
rdesktop debian CWE-191
critical
9.8
2019-03-15 CVE-2018-20180 Integer Underflow (Wrap or Wraparound) vulnerability in multiple products
rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap-Based Buffer Overflow in the function rdpsnddbg_process() and results in memory corruption and probably even a remote code execution.
network
low complexity
rdesktop debian CWE-191
critical
9.8
2019-03-15 CVE-2018-20179 Integer Underflow (Wrap or Wraparound) vulnerability in Rdesktop
rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap-Based Buffer Overflow in the function lspci_process() and results in memory corruption and probably even a remote code execution.
network
low complexity
rdesktop CWE-191
critical
9.8
2018-12-06 CVE-2018-16601 Integer Underflow (Wrap or Wraparound) vulnerability in Amazon web Services Freertos and Freertos
An issue was discovered in Amazon Web Services (AWS) FreeRTOS through 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component.
network
high complexity
amazon CWE-191
8.1
2018-10-23 CVE-2017-18170 Integer Underflow (Wrap or Wraparound) vulnerability in Qualcomm products
Improper input validation in Bluetooth Controller function can lead to possible memory corruption in Snapdragon Mobile in version QCA9379, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 450, SD 615/16/SD 415, SD 625, SD 650/52, SD 820, SD 835, SD 845, SD 850, SDM630, SDM636, SDM660, SDM710, Snapdragon_High_Med_2016.
low complexity
qualcomm CWE-191
8.8
2018-10-05 CVE-2018-15418 Integer Underflow (Wrap or Wraparound) vulnerability in Cisco products
A vulnerability in the Cisco Webex Network Recording Player for Microsoft Windows and the Cisco Webex Player for Microsoft Windows could allow an attacker to execute arbitrary code on an affected system.
local
low complexity
cisco CWE-191
7.8