CVEs classified under CWE-681, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (50)
CVE-2022-40138 — CVSS 9.8 (critical): An integer conversion error in Hermes bytecode generation, prior to commit 6aa825e480d48127b480b08d13adf70033237097, could have been used…
CVE-2021-36357 — CVSS 9.8 (critical): An issue was discovered in OpenPOWER 2.6 firmware. unpack_timestamp() calls le32_to_cpu() for endian conversion of a uint16_t "year" value…
CVE-2021-38187 — CVSS 9.8 (critical): An issue was discovered in the anymap crate through 0.12.1 for Rust. It violates soundness via conversion of a *u8 to a *u64.
CVE-2019-19317 — CVSS 9.8 (critical): lookupName in resolve.c in SQLite 3.30.1 omits bits from the colUsed bitmask in the case of a generated column, which allows attackers to…
CVE-2019-14842 — CVSS 9.8 (critical): Structured reply is a feature of the newstyle NBD protocol allowing the server to send a reply in chunks. A bounds check which was supposed…
CVE-2018-8786 — CVSS 9.8 (critical): FreeRDP prior to version 2.0.0-rc4 contains an Integer Truncation that leads to a Heap-Based Buffer Overflow in function…
CVE-2016-3074 — CVSS 9.8 (critical): Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or libgd2) allows remote attackers to cause a denial of service (crash) or…
CVE-2022-36025 — CVSS 9.1 (critical): Besu is a Java-based Ethereum client. In versions newer than 22.1.3 and prior to 22.7.1, Besu is subject to an Incorrect Conversion between…
CVE-2021-21861 — CVSS 8.8 (high): An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content…
CVE-2021-21860 — CVSS 8.8 (high): An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content…
CVE-2021-23997 — CVSS 8.8 (high): Due to unexpected data type conversions, a use-after-free could have occurred when interacting with the font cache. We presume that with…
CVE-2009-0231 — CVSS 8.8 (high): The Embedded OpenType (EOT) Font Engine (T2EMBED.DLL) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and…
CVE-2026-4931 — CVSS 8.6 (high): Smart contract Marginal v1 performs unsafe downcast, allowing attackers to settle a large debt position for a negligible asset cost.
CVE-2023-46848 — CVSS 8.6 (high): Squid is vulnerable to Denial of Service, where a remote attacker can perform DoS by sending ftp:// URLs in HTTP Request messages or…
CVE-2023-20006 — CVSS 8.6 (high): A vulnerability in the hardware-based SSL/TLS cryptography functionality of Cisco Adaptive Security Appliance (ASA) Software and Cisco…
CVE-2025-53733 — CVSS 8.4 (high): Incorrect conversion between numeric types in Microsoft Office Word allows an unauthorized attacker to execute code locally.
CVE-2021-27478 — CVSS 8.2 (high): A specifically crafted packet sent by an attacker to EIPStackGroup OpENer EtherNet/IP commits and versions prior to Feb 10, 2021 may cause…
CVE-2022-43663 — CVSS 8.1 (high): An integer conversion vulnerability exists in the SORBAx64.dll RecvPacket functionality of WellinTech KingHistorian 35.01.00.05. A…
CVE-2020-1913 — CVSS 8.1 (high): An Integer signedness error in the JavaScript Interpreter in Facebook Hermes prior to commit 2c7af7ec481ceffd0d14ce2d7c045e475fd71dc6…
CVE-2026-53133 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/umem: Fix truncation for block sizes >= 4G When the iommu is used…
CVE-2026-24192 — CVSS 7.8 (high): NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause an incorrect conversion between numeric types…
CVE-2022-34670 — CVSS 7.8 (high): NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where an unprivileged regular user can cause…
CVE-2022-2639 — CVSS 7.8 (high): An integer coercion error was found in the openvswitch kernel module. Given a sufficiently large number of actions, while copying and…
CVE-2021-32461 — CVSS 7.8 (high): Trend Micro Password Manager (Consumer) version 5.0.0.1217 and below is vulnerable to an Integer Truncation Privilege Escalation…
CVE-2020-13545 — CVSS 7.8 (high): An exploitable signed conversion vulnerability exists in the TextMaker document parsing functionality of SoftMaker Office 2021’s…
CVE-2020-13544 — CVSS 7.8 (high): An exploitable sign extension vulnerability exists in the TextMaker document parsing functionality of SoftMaker Office 2021’s TextMaker…
CVE-2019-14563 — CVSS 7.8 (high): Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2017-7308 — CVSS 7.8 (high): The packet_set_ring function in net/packet/af_packet.c in the Linux kernel through 4.10.6 does not properly validate certain block-size…
CVE-2008-3282 — CVSS 7.8 (high): Integer overflow in the rtl_allocateMemory function in sal/rtl/source/alloc_global.c in the memory allocator in OpenOffice.org (OOo) 2.4.1…
CVE-2007-4268 — CVSS 7.8 (high): Integer signedness error in the Networking component in Apple Mac OS X 10.4 through 10.4.10 allows local users to execute arbitrary code…
CVE-2007-4988 — CVSS 7.8 (high): Sign extension error in the ReadDIBImage function in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary…
CVE-2026-24174 — CVSS 7.5 (high): NVIDIA Triton Inference Server contains a vulnerability where an attacker could cause a server crash by sending a malformed request to the…
CVE-2026-4602 — CVSS 7.5 (high): Versions of the package jsrsasign before 11.1.1 are vulnerable to Incorrect Conversion between Numeric Types due to handling negative…
CVE-2024-1552 — CVSS 7.5 (high): Incorrect code generation could have led to unexpected numeric conversions and potential undefined behavior.*Note:* This issue only affects…
CVE-2022-34169 — CVSS 7.5 (high): The Apache Xalan Java XSLT library is vulnerable to an integer truncation issue when processing malicious XSLT stylesheets. This can be…
CVE-2022-27189 — CVSS 7.5 (high): On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x versions prior to 14.1.4.6, 13.1.x versions prior…
CVE-2022-27882 — CVSS 7.5 (high): slaacd in OpenBSD 6.9 and 7.0 before 2022-03-22 has an integer signedness error and resultant heap-based buffer overflow triggerable by a…
CVE-2021-41272 — CVSS 7.5 (high): Besu is an Ethereum client written in Java. Starting in version 21.10.0, changes in the implementation of the SHL, SHR, and SAR operations…
CVE-2020-15225 — CVSS 7.5 (high): django-filter is a generic system for filtering Django QuerySets based on user selections. In django-filter before version 2.4.0…
CVE-2021-27219 — CVSS 7.5 (high): An issue was discovered in GNOME GLib before 2.66.6 and 2.67.x before 2.67.3. The function g_bytes_new has an integer overflow on 64-bit…
CVE-2021-27218 — CVSS 7.5 (high): An issue was discovered in GNOME GLib before 2.66.7 and 2.67.x before 2.67.4. If g_byte_array_new_take() was called with a buffer of 4GB or…
CVE-2020-6582 — CVSS 7.5 (high): Nagios NRPE 3.2.1 has a Heap-Based Buffer Overflow, as demonstrated by interpretation of a small negative number as a large positive number…
CVE-2015-3406 — CVSS 7.5 (high): The PGP signature parsing in Module::Signature before 0.74 allows remote attackers to cause the unsigned portion of a SIGNATURE file to be…