目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1325

100%
请我们喝杯咖啡

CWE-190 整数溢出或超界折返 类漏洞列表 870

CWE-190 整数溢出或超界折返 类弱点 870 条 CVE 漏洞汇总,含 AI 中文分析。

CWE-190 是整数溢出或环绕漏洞,指程序在计算时未考虑数值范围,导致结果超出存储容量并发生回绕。攻击者常通过构造极大输入值,使整数运算结果异常变小,从而绕过安全逻辑或引发缓冲区溢出。开发者应避免假设结果必然大于原值,需在使用前验证输入范围,并采用支持溢出检测的安全库或静态分析工具,确保算术运算在预期范围内安全执行。

MITRE CWE 官方描述
CWE:CWE-190 整数溢出或回绕 (Integer Overflow or Wraparound) 英文:产品在执行计算时,如果其逻辑假设结果值始终大于原始值,则可能导致整数溢出或回绕 (Integer Overflow or Wraparound)。当整数值递增到一个超出其关联表示法所能存储的范围时,就会发生这种情况。一旦发生这种情况,该值可能会变成一个非常小或负数的值。
常见影响 (5)
AvailabilityDoS: Crash, Exit, or Restart, DoS: Resource Consumption (Memory), DoS: Instability
This weakness can generally lead to undefined behavior and therefore crashes. When the calculated result is used for resource allocation, this weakness can cause too many (or too few) resources to be allocated, possibly enabling crashes if the product requests more resources than can be provided.
IntegrityModify Memory
If the value in question is important to data (as opposed to flow), simple data corruption has occurred. Also, if the overflow/wraparound results in other conditions such as buffer overflows, further memory corruption may occur.
Confidentiality, Availability, Access ControlExecute Unauthorized Code or Commands, Bypass Protection Mechanism
This weakness can sometimes trigger buffer overflows, which can be used to execute arbitrary code. This is usually outside the scope of the product's implicit security policy.
Availability, OtherAlter Execution Logic, DoS: Crash, Exit, or Restart, DoS: Resource Consumption (CPU)
If the overflow/wraparound occurs in a loop index variable, this could cause the loop to terminate at the wrong time - too early, too late, or not at all (i.e., infinite loops). With too many iterations, some loops could consume too many resources such as memory, file handles, etc., possibly leading…
Access ControlBypass Protection Mechanism
If integer values are used in security-critical decisions, such as calculating quotas or allocation limits, integer overflows can be used to cause an incorrect security decision.
缓解措施 (5)
RequirementsEnsure that all protocols are strictly defined, such that all out-of-bounds behavior can be identified simply, and require strict conformance to the protocol.
RequirementsUse a language that does not allow this weakness to occur or provides constructs that make this weakness easier to avoid. If possible, choose a language or compiler that performs automatic bounds checking.
Architecture and DesignUse a vetted library or framework that does not allow this weakness to occur or provides constructs that make this weakness easier to avoid [REF-1482]. Use libraries or frameworks that make it easier to handle numbers without unexpected consequences. Examples include safe integer handling packages such as SafeInt (C++) or IntegerLib (C or C++). [REF-106]
ImplementationPerform input validation on any numeric input by ensuring that it is within the expected range. Enforce that the input meets both the minimum and maximum requirements for the expected range. Use unsigned integers where possible. This makes it easier to perform validation for integer overflows. When signed integers are required, ensure that the range check includes minimum values as well as maximum…
ImplementationUnderstand the programming language's underlying representation and how it interacts with numeric calculation (CWE-681). Pay close attention to byte size discrepancies, precision, signed/unsigned distinctions, truncation, conversion and casting between types, "not-a-number" calculations, and how the language handles numbers that are too large or too small for its underlying representation. [REF-7]…
代码示例 (2)
The following image processing code allocates a table for images.
img_t table_ptr; /*struct containing img data, 10kB each*/ int num_imgs; ... num_imgs = get_num_imgs(); table_ptr = (img_t*)malloc(sizeof(img_t)*num_imgs); ...
Bad · C
The following code excerpt from OpenSSH 3.3 demonstrates a classic case of integer overflow:
nresp = packet_get_int(); if (nresp > 0) { response = xmalloc(nresp*sizeof(char*)); for (i = 0; i < nresp; i++) response[i] = packet_get_string(NULL); }
Bad · C
CVE ID标题CVSS风险等级Published
CVE-2026-49346 libde265 SPS维度整数溢出导致堆缓冲区溢出漏洞 — libde265 7.1 High2026-06-19
CVE-2026-3196 Qemu-kvm virtio-snd 整数溢出导致无界内存分配漏洞 5.5 Medium2026-06-19
CVE-2026-8805 三菱MELSEC iQ-F系列模块拒绝服务漏洞 — Mitsubishi Electric MELSEC iQ-F Series FX5-EIP EtherNet/IP Module FX5-EIP--2026-06-19
CVE-2026-44663 OpenEXR HTJ2K解码器整数溢出致堆缓冲溢出漏洞 — openexr 6.1 Medium2026-06-18
CVE-2026-55203 HAProxy FCGI解复用记录长度字段整数溢出漏洞 — haproxy 7.5 High2026-06-18
CVE-2026-54417 rxi microtar 数字错误漏洞 — microtar 7.5 High2026-06-17
CVE-2026-10649 ClusterLabs Pacemaker 数字错误漏洞 — Red Hat Enterprise Linux 10 8.6 High2026-06-16
CVE-2026-52722 GStreamer VMnc decoder 数字错误漏洞 — Red Hat Enterprise Linux 10 7.1 High2026-06-15
CVE-2026-53705 GStreamer gst-plugins-good 数字错误漏洞 — Red Hat Enterprise Linux 10 7.6 High2026-06-15
CVE-2026-11774 389 Directory Server 输入验证错误漏洞 — Red Hat Directory Server 11 7.6 High2026-06-11
CVE-2025-66280 QNAP Systems QTS和QNAP Systems QuTS hero 安全漏洞 — QTS--2026-06-10
CVE-2026-34711 Adobe CAI Content Credentials 输入验证错误漏洞 — CAI Content Credentials 7.5 High2026-06-09
CVE-2026-47925 Adobe Acrobat Reader 输入验证错误漏洞 — Acrobat Reader 5.5 Medium2026-06-09
CVE-2026-44812 Microsoft Win32k 输入验证错误漏洞 — Microsoft Excel for Android 7.8 High2026-06-09
CVE-2026-44803 Microsoft Win32k 输入验证错误漏洞 — Microsoft Excel for Android 7.8 High2026-06-09
CVE-2026-42974 Microsoft Windows 输入验证错误漏洞 — Windows 11 version 23H2 8.1 High2026-06-09
CVE-2026-42916 Microsoft Windows NT OS Kernel 输入验证错误漏洞 — Windows 10 Version 1607 7.8 High2026-06-09
CVE-2026-45592 Microsoft Windows 输入验证错误漏洞 — Windows 10 Version 1607 7.8 High2026-06-09
CVE-2026-47291 Microsoft HTTP.sys 安全漏洞 — Windows 10 Version 1607 9.8 Critical2026-06-09
CVE-2026-47288 Microsoft Windows Kerberos 输入验证错误漏洞 — Windows Server 2012 7.1 High2026-06-09
CVE-2026-41977 Huawei EMUI和Huawei HarmonyOS 输入验证错误漏洞 — HarmonyOS 5.0 Medium2026-06-09
CVE-2026-41849 VMware Spring Framework 输入验证错误漏洞 — Spring Framework 7.5 High2026-06-09
CVE-2026-48112 7-Zip 输入验证错误漏洞 — 7-Zip 6.5 Medium2026-06-05
CVE-2026-49510 SAMSUNG rLottie 安全漏洞 — rlottie 6.1 Medium2026-06-04
CVE-2026-10722 Cilium 安全漏洞 — ebpf 3.3 Low2026-06-03
CVE-2026-45686 OpenTelemetry eBPF Instrumentation 输入验证错误漏洞 — opentelemetry-ebpf-instrumentation 7.5 High2026-06-02
CVE-2026-10118 Poppler 输入验证错误漏洞 — Red Hat Enterprise Linux 10 7.8 High2026-06-01
CVE-2026-10268 Janet 输入验证错误漏洞 — janet 3.3 Low2026-06-01
CVE-2026-46384 Avro 输入验证错误漏洞 — avro--2026-05-29
CVE-2026-24214 NVIDIA Triton Inference Server 输入验证错误漏洞 — Triton Inference Server 8.0 High2026-05-20

CWE-190(整数溢出或超界折返) 是常见的弱点类别,本平台收录该类弱点关联的 870 条 CVE 漏洞。