BaseStableTop 25 #23
CWE-190Integer Overflow or Wraparound
Category: memory
Description
The product performs a calculation that can
produce an integer overflow or wraparound when the logic
assumes that the resulting value will always be larger than
the original value. This occurs when an integer value is
incremented to a value that is too large to store in the
associated representation. When this occurs, the value may
become a very small or negative number.
Common consequences· 5
- Availability — DoS: Crash, Exit, or Restart, DoS: Resource Consumption (Memory), DoS: InstabilityThis weakness can generally lead to undefined behavior and therefore crashes. When the calculated result is used for resource allocation, this weakness can cause too many (or too few) resources to be allocated, possibly enabling crashes if the product requests more resources than can be provided.
- Integrity — Modify MemoryIf the value in question is important to data (as opposed to flow), simple data corruption has occurred. Also, if the overflow/wraparound results in other conditions such as buffer overflows, further memory corruption may occur.
- Confidentiality / Availability / Access Control — Execute Unauthorized Code or Commands, Bypass Protection MechanismThis weakness can sometimes trigger buffer overflows, which can be used to execute arbitrary code. This is usually outside the scope of the product's implicit security policy.
- Availability / Other — Alter Execution Logic, DoS: Crash, Exit, or Restart, DoS: Resource Consumption (CPU)If the overflow/wraparound occurs in a loop index variable, this could cause the loop to terminate at the wrong time - too early, too late, or not at all (i.e., infinite loops). With too many iterations, some loops could consume too many resources such as memory, file handles, etc., possibly leading to a crash or other DoS.
- Access Control — Bypass Protection MechanismIf integer values are used in security-critical decisions, such as calculating quotas or allocation limits, integer overflows can be used to cause an incorrect security decision.
Potential mitigations· 5
- [Requirements]Ensure that all protocols are strictly defined, such that all out-of-bounds behavior can be identified simply, and require strict conformance to the protocol.
- [Requirements]
- [Architecture and Design]
- [Implementation]
- [Implementation]
Related CAPEC attack patterns· 1
References
Exploits (incoming)1
| Type | Target | Confidence | Tier |
|---|---|---|---|
| AttackPattern | Forced Integer Overflowcapec-92 | 100% | live |
(incoming)121
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Vulnerability | CVE-2025-0838cve-2025-0838 | 0% | live |
| Vulnerability | CVE-2025-10533cve-2025-10533 | 0% | live |
| Vulnerability | CVE-2025-10892cve-2025-10892 | 0% | live |
| Vulnerability | CVE-2025-11152cve-2025-11152 | 0% | live |
| Vulnerability | CVE-2025-14087cve-2025-14087 | 0% | live |
| Vulnerability | CVE-2025-14178cve-2025-14178 | 0% | live |
| Vulnerability | CVE-2025-14308cve-2025-14308 | 0% | live |
| Vulnerability | CVE-2025-20710cve-2025-20710 | 0% | live |
| Vulnerability | CVE-2025-21243cve-2025-21243 | 0% | live |
| Vulnerability | CVE-2025-21244cve-2025-21244 | 0% | live |
| Vulnerability | CVE-2025-21369cve-2025-21369 | 0% | live |
| Vulnerability | CVE-2025-22851cve-2025-22851 | 0% | live |
| Vulnerability | CVE-2025-23016cve-2025-23016 | 0% | live |
| Vulnerability | CVE-2025-23327cve-2025-23327 | 0% | live |
| Vulnerability | Microsoft Windows Fast FAT File System Driver Integer Overflow Vulnerabilitycve-2025-24985 | 0% | live |
| Vulnerability | CVE-2025-27918cve-2025-27918 | 0% | live |
| Vulnerability | CVE-2025-30404cve-2025-30404 | 0% | live |
| Vulnerability | CVE-2025-30405cve-2025-30405 | 0% | live |
| Vulnerability | CVE-2025-30712cve-2025-30712 | 0% | live |
| Vulnerability | CVE-2025-3277cve-2025-3277 | 0% | live |
| Vulnerability | CVE-2025-3408cve-2025-3408 | 0% | live |
| Vulnerability | CVE-2025-3500cve-2025-3500 | 0% | live |
| Vulnerability | CVE-2025-40906cve-2025-40906 | 0% | live |
| Vulnerability | CVE-2025-41726cve-2025-41726 | 0% | live |
| Vulnerability | CVE-2025-46817cve-2025-46817 | 0% | live |
| Vulnerability | CVE-2025-47392cve-2025-47392 | 0% | live |
| Vulnerability | CVE-2025-47998cve-2025-47998 | 0% | live |
| Vulnerability | CVE-2025-48174cve-2025-48174 | 0% | live |
| Vulnerability | CVE-2025-49710cve-2025-49710 | 0% | live |
| Vulnerability | CVE-2025-52538cve-2025-52538 | 0% | live |
Showing top 30 of 121 by confidence. Click any target to see the full neighbourhood.
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.