Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-119

CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,972 vulnerabilities with CWE-119

CVE-2020-36619 MEDIUM

multimon-ng < 1.2.0 - Format String Vulnerability in demod_flex.c add_ch Function

CVE-2020-35527 CRITICAL

SQLite 3.31.1 - Out-of-Bounds Memory Access via ALTER TABLE with Nested FROM Clause

CVE-2020-27802 MEDIUM

UPX 4.0.0 - Denial of Service via Crafted Mach-O File

CVE-2020-27801 HIGH

UPX 4.0.0 - Heap-Based Buffer Over-Read in get_le64 Function

CVE-2020-27800 HIGH

UPX 4.0.0 - Heap-Based Buffer Over-Read in get_le32 Function

CVE-2020-27799 HIGH

UPX 4.0.0 - Heap-Based Buffer Over-Read via Crafted Mach-O File

CVE-2020-27798 MEDIUM

UPX 4.0.0 - Invalid Memory Address Reference in adjABS Function

CVE-2020-27797 MEDIUM

UPX 4.0.0 - Invalid Memory Address Reference in elf_lookup Function

CVE-2020-27796 HIGH

UPX 4.0.0 - Heap-Based Buffer Over-Read in invert_pt_dynamic

CVE-2020-35511 HIGH

pngcheck 2.4.0 - Global Buffer Overflow via Crafted PNG File

CVE-2020-27792 HIGH

Ghostscript < 9.50 - Heap-Based Buffer Overflow in lp8000_print_page

CVE-2020-27787 MEDIUM

UPX < 3.96 - Denial of Service via Crafted Input File in invert_pt_dynamic()

CVE-2020-23563 MEDIUM

IrfanView 4.54 - User-Mode Write Access Violation in FORMATS!ShowPlugInSaveOptions_W

CVE-2020-13495 MEDIUM

Pixar OpenUSD 20.05 - Info Disclosure

CVE-2020-8703 MEDIUM

Intel(R) CSME <15.0.22 - Privilege Escalation

CVE-2020-11259 HIGH

Qualcomm AR7420 and related firmware - Memory Corruption in Trustzone BSP Pointer Validation

CVE-2020-11258 HIGH

Qualcomm AR7420 Firmware - Memory Corruption via Trustzone BSP Pointer Validation

CVE-2020-11257 HIGH

Qualcomm AR7420 and related firmware - Memory Corruption in TrustZone BSP Pointer Validation

CVE-2020-11256 HIGH

Qualcomm AR7420 Firmware - Memory Corruption via TrustZone Buffer Pointer Validation

CVE-2020-15782 CRITICAL

SIMATIC Drive Controller < V2.9.2 - Memory Protection Bypass via Port 102/tcp

CVE-2020-27815 HIGH

Linux Kernel >=4.4.249 - Memory Corruption via JFS Extended Attributes

CVE-2020-20220 MEDIUM

Mikrotik RouterOS < 6.47 - Authenticated Denial of Service via /nova/bin/bfd Process

CVE-2020-28600 HIGH

OpenSCAD 2020.12-RC2 - Out-of-Bounds Write via Crafted STL File

CVE-2020-11289 HIGH

Qualcomm APQ8009 Firmware - Memory Corruption via TZ Command Handler

CVE-2020-11288 HIGH

Qualcomm Firmware - Out-of-Bounds Write in PlayReady Command Processing

Previous Page 120 of 559 Next

Details

Vulnerabilities 13,972

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy