CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,982 vulnerabilities with CWE-119
CVE-2020-11196 CRITICAL
Qualcomm APQ8009 and related firmwares - Buffer Overflow via ASF Clip Codec Entry Playback
CVSS 9.8
CVE-2020-5388 MEDIUM
Dell Inspiron 15 7579 2-in-1 BIOS < 1.31.0 - Authenticated Arbitrary Code Execution in SMRAM via SMI
CVSS 6.9
CVE-2020-3604 HIGH
Cisco Webex Meetings < 40.6.11 - Remote Code Execution via Malicious ARF or WRF File
CVSS 7.8
CVE-2020-3603 HIGH
Cisco Webex Player for Windows - RCE
CVSS 7.8
CVE-2020-3573 HIGH
Cisco Webex Meetings - Remote Code Execution via Malicious ARF or WRF File
CVSS 7.8
CVE-2020-10292 HIGH
Visual Components Network License Server - Denial of Service via Arbitrary Pointer Dereference
CVSS 8.2
CVE-2020-3693 HIGH
Snapdragon Auto Snapdragon Compute Snapdragon Consumer IOT Snapdrag...
CVSS 7.8
CVE-2020-15266 LOW
Tensorflow <2.4.0 - Memory Corruption
CVSS 3.7
CVE-2020-3562 HIGH
Cisco Firepower Threat Defense - Denial of Service via Malformed SSL/TLS Message
CVSS 8.6
CVE-2020-17003 HIGH
Microsoft 3D Viewer Base3D - Memory Handling Code Execution
CVSS 7.8
CVE-2020-1671 HIGH
Juniper Junos OS 17.4-20.1 - Denial of Service via Malformed DHCPv6 Packet
CVSS 7.5
CVE-2020-15254 HIGH
crossbeam-channel < 0.4.4 - Use-After-Free via Bounded Channel Destructor
CVSS 8.1
CVE-2020-3544 HIGH
Cisco Video Surveillance 8000 Series IP Cameras RCE/DoS via Cisco Discovery Protocol
CVSS 8.8
CVE-2020-15213 MEDIUM
TensorFlow Lite 2.2.0 - Denial of Service via Segment Sum Memory Allocation
CVSS 4.0
CVE-2020-15207 HIGH
TensorFlow-Lite <2.3.1 - Memory Corruption
CVSS 8.7
CVE-2020-15205 CRITICAL
Tensorflow <2.3.1 - Memory Corruption
CVSS 9.0
CVE-2020-15198 MEDIUM
Tensorflow <2.3.1 - Buffer Overflow
CVSS 5.4
CVE-2020-15196 HIGH
Tensorflow <2.3.0 - Memory Corruption
CVSS 8.5
CVE-2020-15195 HIGH
Tensorflow <2.3.1 - Buffer Overflow
CVSS 8.5
CVE-2020-15373 CRITICAL
Brocade Fabric OS <8.2.2c - Buffer Overflow
CVSS 9.8
CVE-2020-3423 MEDIUM
Cisco IOS XE - Authenticated Remote Code Execution via Lua Script Buffer Overflow
CVSS 5.1
CVE-2020-25599 HIGH
Xen 4.5-4.14.x - Denial of Service and Privilege Escalation via evtchn_reset Race Condition
CVSS 7.0
CVE-2020-25614 CRITICAL
xmlquery < 1.3.1 - Denial of Service via Unchecked LoadURL Response Format
CVSS 9.8
CVE-2020-14392 MEDIUM
Perl-DBI < 1.643 - Memory Corruption
CVSS 5.5
CVE-2020-14345 HIGH
X.Org Server < 1.20.9 - Out-Of-Bounds Access in XkbSetNames
CVSS 7.8
Details
Vulnerabilities 13,982
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits