CVE-2019-9084

MEDIUM Year: 2019
CVSS v3 Score
4.9
Medium
CVSS v2 Score
4.0
Medium
Weakness Type
CWE-369
View all →

Vulnerability Description

In Hoteldruid before 2.3.1, a division by zero was discovered in $num_tabelle in tab_tariffe.php (aka the numtariffa1 parameter) due to the mishandling of non-numeric values, as demonstrated by the /tab_tariffe.php?anno=[YEAR]&numtariffa1=1a URI. It could allow an administrator to conduct remote denial of service (disrupting certain business functions of the product).

Related Vulnerabilities

CVE-2023-4678

MEDIUM
CVSS:5.1(Medium)

Divide By Zero in GitHub repository gpac/gpac prior to 2.3-DEV.

CWE-3692023

CVE-2024-42102

MEDIUM
CVSS:4.7(Medium)

In the Linux kernel, the following vulnerability has been resolved: Revert "mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again" Patch series "mm: Avoid possible overflows in dirty t...

CWE-3692024

CVE-2018-18058

MEDIUM
CVSS:5.3(Medium)

An issue was discovered in Bitdefender Engines before 7.76662. A vulnerability has been discovered in the iso.xmd parser that results from a lack of proper validation of user-supplied data, which can ...

CWE-3692018

CVE-2024-33766

MEDIUM
CVSS:5.3(Medium)

lunasvg v2.3.9 was discovered to contain an FPE (Floating Point Exception) at blend_transformed_tiled_argb.isra.0.

CWE-3692024

CVE-2007-2237

MEDIUM
CVSS:5.5(Medium)

Microsoft Windows Graphics Device Interface (GDI+, GdiPlus.dll) allows context-dependent attackers to cause a denial of service (crash) via an ICO file with an InfoHeader containing a Height of zero, ...

CWE-3692007

CVE-2007-2723

MEDIUM
CVSS:5.5(Medium)

Media Player Classic 6.4.9.0 allows user-assisted remote attackers to cause a denial of service (web browser crash) via an "empty" .MPA file, which triggers a divide-by-zero error.

CWE-3692007