Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-191 (整数下溢(超界折返)) — Vulnerability Class 212

212 vulnerabilities classified as CWE-191 (整数下溢(超界折返)). AI Chinese analysis included.

CWE-191, Integer Underflow, is a software weakness occurring when a subtraction operation yields a result smaller than the minimum representable integer value, causing an unintended wraparound. This flaw typically arises in both signed and unsigned integer contexts, leading to incorrect calculations that can compromise program logic. Attackers often exploit this vulnerability to manipulate memory allocation sizes or loop counters, potentially triggering buffer overflows or denial-of-service conditions by forcing the system to allocate insufficient resources or enter infinite loops. To mitigate this risk, developers must implement rigorous input validation to ensure operands remain within safe bounds before arithmetic operations. Additionally, using language features that provide automatic bounds checking or employing larger integer types for intermediate calculations can prevent underflow. Regular static analysis and thorough testing are essential to identify and rectify these subtle arithmetic errors before deployment.

MITRE CWE Description
The product subtracts one value from another, such that the result is less than the minimum allowable integer value, which produces a value that is not equal to the correct result. This can happen in signed and unsigned cases.
Common Consequences (3)
AvailabilityDoS: Crash, Exit, or Restart, DoS: Resource Consumption (CPU), DoS: Resource Consumption (Memory), DoS: Instability
This weakness will generally lead to undefined behavior and therefore crashes. In the case of overflows involving loop index variables, the likelihood of infinite loops is also high.
IntegrityModify Memory
If the value in question is important to data (as opposed to flow), simple data corruption has occurred. Also, if the wrap around results in other conditions such as buffer overflows, further memory corruption may occur.
Confidentiality, Availability, Access ControlExecute Unauthorized Code or Commands, Bypass Protection Mechanism
This weakness can sometimes trigger buffer overflows which can be used to execute arbitrary code. This is usually outside the scope of a program's implicit security policy.
Examples (2)
The following example subtracts from a 32 bit signed integer.
#include <stdio.h> #include <stdbool.h> main (void) { int i; i = -2147483648; i = i - 1; return 0; }
Bad · C
This code performs a stack allocation based on a length calculation.
int a = 5, b = 6; size_t len = a - b; char buf[len];    // Just blows up the stack }
Bad · C
CVE IDTitleCVSSSeverityPublished
CVE-2023-33158 Microsoft Excel Remote Code Execution Vulnerability — Microsoft Office 2019 for Mac 7.8 High2023-07-11
CVE-2023-29349 Microsoft ODBC and OLE DB Remote Code Execution Vulnerability — Microsoft OLE DB Driver 18 for SQL Server 7.8 High2023-06-16
CVE-2023-32014 Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability — Windows 10 Version 1809 9.8 Critical2023-06-13
CVE-2023-31137 MaraDNS Integer Underflow Vulnerability in DNS Packet Decompression — MaraDNS 7.5 High2023-05-09
CVE-2023-24821 RIOT-OS vulnerable to Integer Underflow during defragmentation — RIOT 7.5 High2023-04-24
CVE-2023-24820 RIOT-OS vulnerable to Integer Underflow during IPHC receive — RIOT 7.5 High2023-04-24
CVE-2023-26421 ZDI-CAN-19832: Adobe Acrobat Reader DC Doc Object Integer Underflow Remote Code Execution Vulnerability — Acrobat Reader 7.8 High2023-04-12
CVE-2023-28293 Windows Kernel Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2023-04-11
CVE-2023-28250 Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability — Windows 10 Version 1809 9.8 Critical2023-04-11
CVE-2023-28272 Windows Kernel Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2023-04-11
CVE-2023-28247 Windows Network File System Information Disclosure Vulnerability — Windows Server 2019 7.5 High2023-04-11
CVE-2023-24887 Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability — Windows 10 Version 1809 8.8 High2023-04-11
CVE-2023-21630 Integer Overflow in Multimedia Framework — Snapdragon 8.4 High2023-04-04
CVE-2023-24911 Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability — Windows 10 Version 1809 4.3 Medium2023-03-14
CVE-2023-24864 Microsoft PostScript and PCL6 Class Printer Driver Elevation of Privilege Vulnerability — Windows 10 Version 1809 8.8 High2023-03-14
CVE-2023-21708 Remote Procedure Call Runtime Remote Code Execution Vulnerability — Windows 10 Version 1809 9.8 Critical2023-03-14
CVE-2023-21815 Visual Studio Remote Code Execution Vulnerability — Microsoft Visual Studio 2017 version 15.9 (includes 15.0 - 15.8) 7.8 High2023-02-14
CVE-2023-21718 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability — Microsoft SQL Server 2012 Service Pack 4 (QFE) 7.8 High2023-02-14
CVE-2023-21684 Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability — Windows 10 Version 1809 8.8 High2023-02-14
CVE-2023-0469 Linux kernel 资源管理错误漏洞 — Kernel 5.5 -2023-01-25
CVE-2023-21681 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability — Windows 10 Version 1809 8.8 High2023-01-10
CVE-2023-21556 Windows Layer 2 Tunneling Protocol (L2TP) Remote Code Execution Vulnerability — Windows 10 Version 1809 8.1 High2023-01-10
CVE-2023-21527 Windows iSCSI Service Denial of Service Vulnerability — Windows 10 Version 1809 7.5 High2023-01-10
CVE-2022-44444 Google Android OS和unisoc部分产品数字错误漏洞 — SC9863A/SC9832E/SC7731E/T610/T310/T606/T760/T610/T618/T606/T612/T616/T760/T770/T820/S8000 5.5 -2023-01-04
CVE-2022-37301 Schneider Electric Modicon M340 数字错误漏洞 — Modicon M340 CPU (part numbers BMXP34*) 7.5 High2022-11-22
CVE-2022-3165 QEMU 数字错误漏洞 — QEMU 6.5 -2022-10-17
CVE-2022-39293 Azure RTOS USBX Host PIMA vulnerable to read integer underflow with buffer overflow — usbx 8.6 High2022-10-13
CVE-2022-27492 WhatsApp 数字错误漏洞 — WhatsApp Business for iOS 7.8 -2022-09-23
CVE-2022-2335 Softing Secure Integration Server Integer Underflow — Secure Integration Server 7.5 High2022-08-17
CVE-2022-2867 LibTIFF 数字错误漏洞 — libtiff 5.5 -2022-08-17

Vulnerabilities classified as CWE-191 (整数下溢(超界折返)) represent 212 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.