CWE-369: Divide By Zero

BaseDraftExploit Likelihood: Medium

The product divides a value by zero.

View on MITRE
Back to CWE Lookup

Extended Description

This weakness typically occurs when an unexpected value is provided to the product, or if an error occurs that is not properly detected. It frequently occurs in calculations involving physical dimensions such as size, length, width, and height.

Technical Details

Structure
Simple

Applicable To

Languages
Platforms

Frequently Asked Questions

What is CWE-369: Divide By Zero?+

CWE-369: Divide By Zero is a Common Weakness Enumeration (CWE) entry maintained by MITRE. The product divides a value by zero. This weakness typically occurs when an unexpected value is provided to the product, or if an error occurs that is not properly detected. It frequently occurs in calculations involving physical dimensions such as size, length, width, and height.

What are the security consequences of Divide By Zero?+

If exploited, CWE-369 (Divide By Zero) it can compromise Availability, leading to outcomes such as DoS: Crash, Exit, or Restart.

What are real-world examples of Divide By Zero?+

MITRE documents real CVEs mapped to CWE-369, including CVE-2007-3268, CVE-2007-2723 and CVE-2007-2237. You can look up the full details of each CVE, including CVSS scores and remediation guidance, on our CVE Lookup tool.

What is the difference between a CWE and a CVE?+

A CWE (Common Weakness Enumeration) like CWE-369 describes a category of software weakness — the underlying flaw type. A CVE (Common Vulnerabilities and Exposures) identifies a specific, real-world vulnerability in a particular product. In short, a CWE is the kind of mistake, and a CVE is an instance of that mistake being found in software.

Learn More