🚀 Join our AI Wargame at Black Hat Asia and our Workshop + Wargame at NDC Sydney .

Float Overflow

Float Overflow (Numeric Imprecision) happen when a program perform floating-point arithmetic and does not handle the rounding imprecision or approximate representation. This can result into unexpected arithmetic result, non-deterministic program behaviour, data leak, security check bypass or denial of service.

Remediation

  • Make sure arithmetic result does not go beyond float or double range (see the remediation for Integer Overflow).
  • Perform rounding before using the result.
  • Read more about Float Overflow on SecDim Learn

Metadata

  • Severity: low
  • Slug: float-overflow

CWEs

  • 190: Integer Overflow or Wraparound
  • 128: Wrap-around Error
  • 191: Integer Underflow (Wrap or Wraparound)

Available Labs

Open Csharp labs in SecDim Play for this vulnerability.

Try it yourself

Find, Hack and Fix Your First Vulnerability

Reading about security bugs is one thing — fixing one is how the skill sticks. Play a free challenge from the wargame, no setup required.