Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-191 (整数下溢(超界折返)) — Vulnerability Class 212

212 vulnerabilities classified as CWE-191 (整数下溢(超界折返)). AI Chinese analysis included.

CWE-191, Integer Underflow, is a software weakness occurring when a subtraction operation yields a result smaller than the minimum representable integer value, causing an unintended wraparound. This flaw typically arises in both signed and unsigned integer contexts, leading to incorrect calculations that can compromise program logic. Attackers often exploit this vulnerability to manipulate memory allocation sizes or loop counters, potentially triggering buffer overflows or denial-of-service conditions by forcing the system to allocate insufficient resources or enter infinite loops. To mitigate this risk, developers must implement rigorous input validation to ensure operands remain within safe bounds before arithmetic operations. Additionally, using language features that provide automatic bounds checking or employing larger integer types for intermediate calculations can prevent underflow. Regular static analysis and thorough testing are essential to identify and rectify these subtle arithmetic errors before deployment.

MITRE CWE Description
The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result. This can happen in signed and unsigned cases.
Common Consequences (3)
AvailabilityDoS: Crash, Exit, or Restart, DoS: Resource Consumption (CPU), DoS: Resource Consumption (Memory), DoS: Instability
This weakness will generally lead to undefined behavior and therefore crashes. In the case of overflows involving loop index variables, the likelihood of infinite loops is also high.
IntegrityModify Memory
If the value in question is important to data (as opposed to flow), simple data corruption has occurred. Also, if the wrap around results in other conditions such as buffer overflows, further memory corruption may occur.
Confidentiality, Availability, Access ControlExecute Unauthorized Code or Commands, Bypass Protection Mechanism
This weakness can sometimes trigger buffer overflows which can be used to execute arbitrary code. This is usually outside the scope of a program's implicit security policy.
Examples (2)
The following example subtracts from a 32 bit signed integer.
#include <stdio.h> #include <stdbool.h> main (void) { int i; i = -2147483648; i = i - 1; return 0; }
Bad · C
This code performs a stack allocation based on a length calculation.
int a = 5, b = 6; size_t len = a - b; char buf[len];    // Just blows up the stack }
Bad · C
CVE IDTitleCVSSSeverityPublished
CVE-2024-11950 XnSoft XnView Classic RWZ File Parsing Integer Underflow Remote Code Execution Vulnerability — XnView Classic 7.8 -2024-12-11
CVE-2024-47546 GHSL-2024-243: GStreamer has an integer underflow in extract_cc_from_data leading to OOB-read — gstreamer 6.1 -2024-12-11
CVE-2024-47545 GHSL-2024-242: GStreamer has an integer underflow in FOURCC_strf parsing leading to OOB-read — gstreamer 7.1 -2024-12-11
CVE-2024-53955 Bridge | Integer Underflow (Wrap or Wraparound) (CWE-191) — Bridge 7.8 High2024-12-10
CVE-2024-52985 Animate | Integer Underflow (Wrap or Wraparound) (CWE-191) — Animate 7.8 High2024-12-10
CVE-2024-52987 Animate | Integer Underflow (Wrap or Wraparound) (CWE-191) — Animate 7.8 High2024-12-10
CVE-2024-52989 Animate | Integer Underflow (Wrap or Wraparound) (CWE-191) — Animate 7.8 High2024-12-10
CVE-2024-53954 Animate | Integer Underflow (Wrap or Wraparound) (CWE-191) — Animate 7.8 High2024-12-10
CVE-2024-52984 Animate | Integer Underflow (Wrap or Wraparound) (CWE-191) — Animate 7.8 High2024-12-10
CVE-2024-52986 Animate | Integer Underflow (Wrap or Wraparound) (CWE-191) — Animate 7.8 High2024-12-10
CVE-2024-49077 Windows Mobile Broadband Driver Elevation of Privilege Vulnerability — Windows 10 Version 1809 6.8 Medium2024-12-10
CVE-2024-49103 Windows Wireless Wide Area Network Service (WwanSvc) Information Disclosure Vulnerability — Windows 10 Version 1809 4.3 Medium2024-12-10
CVE-2024-54095 Siemens Solid Edge 数字错误漏洞 — Solid Edge SE2024 7.8 High2024-12-10
CVE-2024-52558 Planet Technology Planet WGS-804HPT Integer Underflow — Planet WGS-804HPT 5.3 Medium2024-12-06
CVE-2024-11477 7-Zip Zstandard Decompression Integer Underflow Remote Code Execution Vulnerability — 7-Zip 9.8 -2024-11-22
CVE-2024-49514 Photoshop Desktop | Integer Underflow (Wrap or Wraparound) (CWE-191) — Photoshop Desktop 7.8 High2024-11-12
CVE-2024-20474 Cisco Secure Client 安全漏洞 — Cisco Secure Client 4.3 Medium2024-10-23
CVE-2024-47425 Adobe Framemaker | Integer Underflow (Wrap or Wraparound) (CWE-191) — Adobe Framemaker 7.8 High2024-10-09
CVE-2024-41857 Illustrator | Integer Underflow (Wrap or Wraparound) (CWE-191) — Illustrator 7.8 High2024-09-13
CVE-2024-38063 Windows TCP/IP Remote Code Execution Vulnerability — Windows 10 Version 1809 9.8 Critical2024-08-13
CVE-2024-38517 Tencent RapidJSON include/rapidjson/reader.h GenericReader::ParseNumber() Function Template Exponent Parsing Integer Underflow — RapidJSON 6.8 High2024-07-09
CVE-2024-38074 Windows Remote Desktop Licensing Service Remote Code Execution Vulnerability — Windows Server 2019 9.8 Critical2024-07-09
CVE-2024-38050 Windows Workstation Service Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2024-07-09
CVE-2024-37975 Secure Boot Security Feature Bypass Vulnerability — Windows 10 Version 1809 8.0 High2024-07-09
CVE-2024-37986 Secure Boot Security Feature Bypass Vulnerability — Windows 10 Version 1809 8.0 High2024-07-09
CVE-2024-37981 Secure Boot Security Feature Bypass Vulnerability — Windows 10 Version 1809 8.0 High2024-07-09
CVE-2024-37974 Secure Boot Security Feature Bypass Vulnerability — Windows 10 Version 1809 8.0 High2024-07-09
CVE-2024-21466 Integer Underflow (Wrap or Wraparound) in WLAN Host Communication — Snapdragon 6.5 Medium2024-07-01
CVE-2024-6285 Integer Underflow in Memory Range Check in Renesas RCAR — rcar_gen3_v2.5 7.5 High2024-06-24
CVE-2024-30070 DHCP Server Service Denial of Service Vulnerability — Windows Server 2019 7.5 High2024-06-11

Vulnerabilities classified as CWE-191 (整数下溢(超界折返)) represent 212 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.