Threats Tagged 'cwe-681'
View all threats tagged with 'cwe-681'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cwe-681'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-55123: CWE-122: Heap-based Buffer Overflow in Microsoft Microsoft 365 Apps for EnterpriseCVE-2026-55123 0 Heap-based buffer overflow in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally. Join the discussion | CVE Database V5 | 07/14/2026, 17:09:05 UTC Added: 07/14/2026, 17:49:41 UTC |
CVE-2026-50402: CWE-681: Incorrect Conversion between Numeric Types in Microsoft Windows 10 Version 1607CVE-2026-50402 0 Incorrect conversion between numeric types in Windows NTFS allows an authorized attacker to elevate privileges locally. Join the discussion | CVE Database V5 | 07/14/2026, 17:07:22 UTC Added: 07/14/2026, 17:49:12 UTC |
CVE-2026-53923: CWE-681: Incorrect Conversion between Numeric Types in vllm-project vllmCVE-2026-53923 0 vLLM is an inference and serving engine for large language models (LLMs). From 0.5.5 until 0.23.1rc0, integer truncation of tensor dimensions in vLLM's GGUF dequantize kernels (csrc/quantization/gguf/gguf_kernel.cu) causes partial tensor processing. The output tensor is allocated at full size via torch::empty (uninitialized memory), but the dequantize CUDA kernel processes only a truncated number of elements. The unfilled portion of the output tensor retains whatever was previously in GPU memory. In multi-tenant inference deployments, this residual GPU memory may contain tensor data from other users' inference requests, constituting information disclosure. This vulnerability is fixed in 0.23.1rc0. Join the discussion | CVE Database V5 | 06/22/2026, 21:55:42 UTC Added: 06/22/2026, 22:39:45 UTC |
CVE-2026-9143: CWE-681 Incorrect conversion between numeric types in NI grpc-deviceCVE-2026-9143 0 There is an incorrect conversion between numeric types vulnerability in NI grpc-device due to missing range checks in CodeGen. This may silently discard high bits if a size value exceeded the target type's range. This affects NI grpc-device 2.17.0 and prior versions. Join the discussion | CVE Database V5 | 06/19/2026, 13:48:44 UTC Added: 06/19/2026, 14:06:02 UTC |
Showing 1 to 4 of 4 results