Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

CWE-191 (整数下溢(超界折返)) — Vulnerability Class 219

219 vulnerabilities classified as CWE-191 (整数下溢(超界折返)). AI Chinese analysis included.

CWE-191, Integer Underflow, is a software weakness occurring when a subtraction operation yields a result smaller than the minimum representable integer value, causing an unintended wraparound. This flaw typically arises in both signed and unsigned integer contexts, leading to incorrect calculations that can compromise program logic. Attackers often exploit this vulnerability to manipulate memory allocation sizes or loop counters, potentially triggering buffer overflows or denial-of-service conditions by forcing the system to allocate insufficient resources or enter infinite loops. To mitigate this risk, developers must implement rigorous input validation to ensure operands remain within safe bounds before arithmetic operations. Additionally, using language features that provide automatic bounds checking or employing larger integer types for intermediate calculations can prevent underflow. Regular static analysis and thorough testing are essential to identify and rectify these subtle arithmetic errors before deployment.

MITRE CWE Description
The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result. This can happen in signed and unsigned cases.
Common Consequences (3)
AvailabilityDoS: Crash, Exit, or Restart, DoS: Resource Consumption (CPU), DoS: Resource Consumption (Memory), DoS: Instability
This weakness will generally lead to undefined behavior and therefore crashes. In the case of overflows involving loop index variables, the likelihood of infinite loops is also high.
IntegrityModify Memory
If the value in question is important to data (as opposed to flow), simple data corruption has occurred. Also, if the wrap around results in other conditions such as buffer overflows, further memory corruption may occur.
Confidentiality, Availability, Access ControlExecute Unauthorized Code or Commands, Bypass Protection Mechanism
This weakness can sometimes trigger buffer overflows which can be used to execute arbitrary code. This is usually outside the scope of a program's implicit security policy.
Examples (2)
The following example subtracts from a 32 bit signed integer.
#include <stdio.h> #include <stdbool.h> main (void) { int i; i = -2147483648; i = i - 1; return 0; }
Bad · C
This code performs a stack allocation based on a length calculation.
int a = 5, b = 6; size_t len = a - b; char buf[len];    // Just blows up the stack }
Bad · C
CVE IDTitleCVSSSeverityPublished
CVE-2023-36794 Visual Studio Remote Code Execution Vulnerability — Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) 7.8 High2023-09-12
CVE-2023-36796 Visual Studio Remote Code Execution Vulnerability — Microsoft Visual Studio 2022 version 17.6 7.8 High2023-09-12
CVE-2023-38162 DHCP Server Service Denial of Service Vulnerability — Windows Server 2019 7.5 High2023-09-12
CVE-2023-39350 Incorrect offset calculation leading to denial of service in FreeRDP — FreeRDP 5.9 Medium2023-08-31
CVE-2023-35387 Windows Bluetooth A2DP driver Elevation of Privilege Vulnerability — Windows 10 Version 1809 8.8 High2023-08-08
CVE-2023-36909 Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability — Windows 10 Version 1809 6.5 Medium2023-08-08
CVE-2022-28733 Integer underflow in grub_net_recv_ip4_packets — GNU GRUB 8.1 High2023-07-20
CVE-2023-33158 Microsoft Excel Remote Code Execution Vulnerability — Microsoft Office 2019 for Mac 7.8 High2023-07-11
CVE-2023-29349 Microsoft ODBC and OLE DB Remote Code Execution Vulnerability — Microsoft OLE DB Driver 18 for SQL Server 7.8 High2023-06-16
CVE-2023-32014 Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability — Windows 10 Version 1809 9.8 Critical2023-06-13
CVE-2023-31137 MaraDNS Integer Underflow Vulnerability in DNS Packet Decompression — MaraDNS 7.5 High2023-05-09
CVE-2023-24821 RIOT-OS vulnerable to Integer Underflow during defragmentation — RIOT 7.5 High2023-04-24
CVE-2023-24820 RIOT-OS vulnerable to Integer Underflow during IPHC receive — RIOT 7.5 High2023-04-24
CVE-2023-26421 ZDI-CAN-19832: Adobe Acrobat Reader DC Doc Object Integer Underflow Remote Code Execution Vulnerability — Acrobat Reader 7.8 High2023-04-12
CVE-2023-28293 Windows Kernel Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2023-04-11
CVE-2023-28250 Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability — Windows 10 Version 1809 9.8 Critical2023-04-11
CVE-2023-28272 Windows Kernel Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2023-04-11
CVE-2023-28247 Windows Network File System Information Disclosure Vulnerability — Windows Server 2019 7.5 High2023-04-11
CVE-2023-24887 Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability — Windows 10 Version 1809 8.8 High2023-04-11
CVE-2023-21630 Integer Overflow in Multimedia Framework — Snapdragon 8.4 High2023-04-04
CVE-2023-24911 Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability — Windows 10 Version 1809 4.3 Medium2023-03-14
CVE-2023-24864 Microsoft PostScript and PCL6 Class Printer Driver Elevation of Privilege Vulnerability — Windows 10 Version 1809 8.8 High2023-03-14
CVE-2023-21708 Remote Procedure Call Runtime Remote Code Execution Vulnerability — Windows 10 Version 1809 9.8 Critical2023-03-14
CVE-2023-21815 Visual Studio Remote Code Execution Vulnerability — Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) 7.8 High2023-02-14
CVE-2023-21718 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability — Microsoft SQL Server 2012 Service Pack 4 (QFE) 7.8 High2023-02-14
CVE-2023-21684 Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability — Windows 10 Version 1809 8.8 High2023-02-14
CVE-2023-0469 Linux kernel 资源管理错误漏洞 — Kernel 5.5 -2023-01-25
CVE-2023-21681 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability — Windows 10 Version 1809 8.8 High2023-01-10
CVE-2023-21556 Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability — Windows 10 Version 1809 8.1 High2023-01-10
CVE-2023-21527 Windows iSCSI Service Denial of Service Vulnerability — Windows 10 Version 1809 7.5 High2023-01-10

Vulnerabilities classified as CWE-191 (整数下溢(超界折返)) represent 219 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.