Description
Truncation errors occur when a primitive is cast to a primitive of a smaller size and data is lost in the conversion.
Extended Description
When a primitive is cast to a smaller primitive, the high order bits of the large value are lost in the conversion, potentially resulting in an unexpected value that is not equal to the original value. This value may be required as an index into a buffer, a loop iterator, or simply necessary state data. In any case, the value cannot be trusted and the system will be in an undefined state. While this method may be employed viably to isolate the low bits of a value, this usage is rare, and truncation usually implies that an implementation error has occurred.
CVE vulnerabilities with CWE-197 (49)
9.8
CVSS
CRITICAL
CVE-2024-43639
pub. 2024-11-12
9.8
CVSS
CRITICAL
CVE-2022-42475
pub. 2023-01-02🚩 CISA KEV⚡ EXPLOIT
9.0
CVSS
CRITICAL
CVE-2020-15202
pub. 2020-09-25
8.8
CVSS
HIGH
CVE-2026-6679
pub. 2026-06-25
8.8
CVSS
HIGH
CVE-2024-49018
pub. 2024-11-12
8.8
CVSS
HIGH
CVE-2024-43519
pub. 2024-10-08
8.8
CVSS
HIGH
CVE-2024-30009
pub. 2024-05-14
8.8
CVSS
HIGH
CVE-2023-32143
pub. 2024-05-03
8.8
CVSS
HIGH
CVE-2024-28944
pub. 2024-04-09
8.8
CVSS
HIGH
CVE-2024-21440
pub. 2024-03-12
8.8
CVSS
HIGH
CVE-2024-21451
pub. 2024-03-12
8.8
CVSS
HIGH
CVE-2024-21352
pub. 2024-02-13
8.8
CVSS
HIGH
CVE-2024-21391
pub. 2024-02-13
8.7
CVSS
HIGH
CVE-2026-42944
pub. 2026-05-20
8.4
CVSS
HIGH
CVE-2024-29050
pub. 2024-04-09
7.8
CVSS
HIGH
CVE-2026-40404
pub. 2026-06-09
7.8
CVSS
HIGH
CVE-2026-40409
pub. 2026-06-09
7.8
CVSS
HIGH
CVE-2026-44823
pub. 2026-06-09
7.8
CVSS
HIGH
CVE-2025-53723
pub. 2025-08-12
7.8
CVSS
HIGH
CVE-2025-49679
pub. 2025-07-08
Showing 20 of 49 vulnerabilities