CWE-131 - Incorrect Calculation of Buffer Size

Description

The vulnerabillity exists due to improper accounting of buffer size during allocation that may result in creating of bigger or smaller buffer than it's needed. Making of smaller buffer may lead to arbitrary code execution or sensitive data exposing.
The weakness is introduced during Implementation stage.

Latest vulnerabilities for CWE-131

Multiple vulnerabilities in IBM Watson Discovery Cartridge for IBM Cloud Pak for Data 2024-04-23
High Yes

Incorrect calculation of buffer size in Juniper Junos OS 2024-04-11
Medium Yes

Multiple vulnerabilities in IBM Maximo Application Suite 2024-03-08
High Yes

Multiple vulnerabilities in IBM Watson Machine Learning Accelerator on Cloud Pak for Data 2024-02-27
High Yes

Multiple vulnerabilities in IBM Robotic Process Automation for Cloud Pak 2024-02-21
High Yes

Multiple vulnerabilities in Samsung Mobile Firmware 2024-01-08
Critical Yes

Multiple vulnerabilities in Google Android 2023-12-04
High Yes

Multiple vulnerabilities in MediaTek chipsets 2023-12-04
Low Yes

Multiple vulnerabilities in Qualcomm chipsets 2023-04-03
High Yes

Multiple vulnerabilities in MediaTek chipsets 2023-03-06
Low Yes

References

Description of CWE-131 on Mitre website