CWE-118
Incorrect Access of Indexable Resource ('Range Error')
The product does not restrict or incorrectly restricts operations within the boundaries of a resource that is accessed using an index or pointer, such as memory or files.
24 vulnerabilities with CWE-118
CVE-2025-54628
MEDIUM
Communication Module - Info Disclosure
CVSS 5.3
CVE-2025-48902
MEDIUM
Huawei EMUI and HarmonyOS - Denial of Service via Uncontrolled System Resource Access
CVSS 6.6
CVE-2024-43524
MEDIUM
Windows Mobile Broadband Driver - Remote Code Execution
CVSS 6.8
CVE-2023-37923
HIGH
GTKWave 3.3.115 - Arbitrary Write via VCD Sorted Bsearch Functionality
CVSS 7.8
CVE-2023-37922
HIGH
GTKWave 3.3.115 - Arbitrary Write via VCD Sorted Bsearch Functionality
CVSS 7.8
CVE-2023-37921
HIGH
GTKWave 3.3.115 - Arbitrary Write via VCD Sorted Bsearch Functionality
CVSS 7.8
CVE-2023-0201
MEDIUM
NVIDIA DGX-2 SBIOS - Memory Corruption
CVSS 6.7
CVE-2022-38072
MEDIUM
ADMesh Master Commit <767a105-0.98.4 - Buffer Overflow
CVSS 6.5
CVE-2022-36402
MEDIUM
Linux Kernel - Privilege Escalation
CVSS 6.3
CVE-2020-3369
HIGH
Cisco SD-WAN vEdge Routers - Denial of Service via FTP Traffic Processing
CVSS 7.5
CVE-2020-3235
HIGH
Cisco IOS - Authenticated Denial of Service via SNMP Input Validation
CVSS 7.7
CVE-2019-6130
MEDIUM
Artifex MuPDF 1.14.0 - Memory Corruption
CVSS 5.5
CVE-2018-7530
HIGH
Omron CX-One <4.42 - Memory Corruption
CVSS 7.8
CVE-2017-10872
MEDIUM
Dena H2o < 2.2.3 - Denial of Service
CVSS 6.5
CVE-2017-0302
MEDIUM
F5 BIG-IP APM 12.0.0-12.1.2 and 13.0.0 - Authenticated Denial of Service via Short URL Request
CVSS 5.3
CVE-2017-5884
HIGH
gtk-vnc <0.7.0 - Remote Code Execution
CVSS 7.8
CVE-2016-10495
CRITICAL
Android <2018-04-05 - Info Disclosure
CVSS 9.8
CVE-2015-9142
CRITICAL
Qualcomm Snapdragon Mobile Firmware - Out-of-Bounds Access in DAL-TO-QDI Conversion Framework
CVSS 9.8
CVE-2015-2004
CRITICAL
GraceNote GNSDK < 1.1.7 - Remote Code Execution via Serializable Finalize Method
CVSS 9.8
CVE-2015-2003
CRITICAL
PJSIP PJSUA2 SDK <51322 - Code Injection
CVSS 9.8
CVE-2015-2002
CRITICAL
ESRI ArcGis Runtime SDK <10.2.6-2 - RCE
CVSS 9.8
CVE-2015-2001
CRITICAL
MetaIO SDK <6.0.2.1 - Code Injection
CVSS 9.8
CVE-2015-2000
CRITICAL
jumio_sdk < 1.5.0 - Remote Code Execution via Serializable Finalize Method
CVSS 9.8
CVE-2014-9411
CRITICAL
Qualcomm <Android> - Memory Corruption
CVSS 9.8
Details
Vulnerabilities
24