Cyber Resilience

CWE · MITRE source

CWE-681Incorrect Conversion between Numeric Types

Abstraction: Base · CVEs in our corpus: 120

When converting from one data type to another, such as long to integer, data can be omitted or translated in a way that produces unexpected values. If the resulting values are used in a sensitive context, then dangerous behaviors may occur.

Last updated: 04 July 2026 00:28 UTC

Cumulative inbound coverage

How completely the frameworks we cross-walk collectively cover this — the verdict is the strongest single mapping (overlapping partials are not summed); breadth shows the corroboration behind it.

Collective: partial · 5 mapping(s) from 1 framework(s): ATT&CK 5 (partial)

See the full cumulative-coverage rollup →

NIST 800-53 r5 controls that address this weakness (0)AI

Control Title Family Why it addresses this CWE
No NIST controls proposed yet.

MITRE ATT&CK techniques this weakness enables

Our own two-way CWE↔ATT&CK cross-walk — a direct mapping with no public source (the CWE→CAPEC→ATT&CK chain leaves most top weaknesses, incl. XSS and SQLi, mapped to nothing). Drafted by Grok and spot-checked by Claude Opus 4.8.

Direction: other covers this; this covers other (F/M/P = full / mostly / partial).

Top CVEs of this weakness type, ranked by Risk Priority

CVE Risk CVSS EPSS Published
CVE-2016-30747.09.80.36972016-04-26
CVE-2018-87867.09.80.08162018-11-29
CVE-2019-148427.09.80.01852019-11-26
CVE-2019-193177.09.80.04282019-12-05
CVE-2020-359267.09.80.01522020-12-31
CVE-2021-381877.09.80.01442021-08-08
CVE-2021-363577.09.80.01142021-10-22
CVE-2022-360257.09.10.00832022-09-24
CVE-2022-401387.09.80.00892022-10-11
CVE-2008-17216.00.00.22622008-04-10
CVE-2008-32826.07.80.10762008-08-29
CVE-2009-02316.08.80.37452009-07-15
CVE-2017-73086.07.80.17832017-03-29
CVE-2018-57116.05.50.13202018-01-16
CVE-2022-341696.07.50.17672022-07-19
CVE-2022-436636.08.10.14042023-03-20
CVE-2023-468486.08.60.10222023-11-03
CVE-2007-49885.57.80.03092007-09-24
CVE-2007-42685.57.80.00672007-11-15
CVE-2017-08575.57.50.00442017-11-16
CVE-2018-108875.58.10.02052018-07-10
CVE-2018-10002245.57.50.03792018-08-20
CVE-2018-39995.57.80.00892018-10-01
CVE-2019-73105.57.80.02202019-02-03
CVE-2019-97495.57.50.01662019-03-13