CVE-2022-43663

CRITICAL Year: 2022
CVSS v3 Score
9.8
Critical
Weakness Type
CWE-195
View all →

Vulnerability Description

An integer conversion vulnerability exists in the SORBAx64.dll RecvPacket functionality of WellinTech KingHistorian 35.01.00.05. A specially crafted network packet can lead to a buffer overflow. An attacker can send a malicious packet to trigger this vulnerability.

Related Vulnerabilities

CVE-2016-6560

HIGH
CVSS:8.6(High)

illumos osnet-incorporation bcopy() and bzero() implementations make signed instead of unsigned comparisons allowing a system crash.

CWE-1952016

CVE-2024-25388

HIGH
CVSS:8.4(High)

drivers/wlan/wlan_mgmt,c in RT-Thread through 5.0.2 has an integer signedness error and resultant buffer overflow.

CWE-1952024

CVE-2020-1913

HIGH
CVSS:8.1(High)

An Integer signedness error in the JavaScript Interpreter in Facebook Hermes prior to commit 2c7af7ec481ceffd0d14ce2d7c045e475fd71dc6 allows attackers to cause a denial of service attack or a potentia...

CWE-1952020

CVE-2020-6096

HIGH
CVSS:8.1(High)

An exploitable signed comparison vulnerability exists in the ARMv7 memcpy() implementation of GNU glibc 2.30.9000. Calling memcpy() (on ARMv7 targets that utilize the GNU glibc implementation) with a ...

CWE-1952020

CVE-2016-6560

HIGH
CVSS:8.6(High)

illumos osnet-incorporation bcopy() and bzero() implementations make signed instead of unsigned comparisons allowing a system crash.

CWE-1952016

CVE-2024-25388

HIGH
CVSS:8.4(High)

drivers/wlan/wlan_mgmt,c in RT-Thread through 5.0.2 has an integer signedness error and resultant buffer overflow.

CWE-1952024