When converting from one data type to another, such as long to
integer, data can be omitted or translated in a way that produces unexpected
values. If the resulting values are used in a sensitive context, then dangerous
behaviors may occur.
The product uses untrusted input when calculating or using an
array index, but the product does not validate or incorrectly validates the
index to ensure the index references a valid position within the array.
The program contains a code sequence that can run concurrently
with other code, and the code sequence requires temporary, exclusive access to a
shared resource, but a timing window exists in which the shared resource can be
modified by another code sequence that is operating