CWE-193

Off-by-one Error

No catalog description on file. The MITRE CWE site has the canonical reference.

CVEs (total)

4

Critical

0

High

1

Medium

2

Low

1

Severity distribution

Recent CVEs

showing 4 of 4

CVE-2021-3156High· 7.8KEVEXPLOITEPSS 93%21 h ago
Sudo Heap-Based Buffer Overflow Vulnerability
CVE-2026-46559Medium· 4.0EPSS 0%1 d ago
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, an incorrect check in the JP2 will result in an heap buffer over-write of a single byte when specifying
CVE-2026-45358Medium· 5.3EPSS 0%1 d ago
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-47 and 7.1.2-22, an off by one in the meta encoder could result in an out of bounds read of a single byte in the meta en
CVE-2026-45380Low· 3.6EPSS 0%1 d ago
bit7z is a cross-platform C++ static library that allows the compression/extraction of archive files. Prior to version 4.0.12, a one-byte off-by-one error in SafeOutPathBuilder::restoreSymlink() allows an attacker to craft a .7z archive tha

CWE catalog data sourced from MITRE. CVE associations come from NVD weakness mappings; some CVEs carry multiple CWEs.