Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-119

CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,982 vulnerabilities with CWE-119

CVE-2020-3293 HIGH

Cisco RV016, RV042, RV042G, RV082, RV320, and RV325 Firmware - Authenticated Stack Overflow via Web Management Interface

CVE-2020-3292 HIGH

Cisco Small Business RV320-0 - Authenticated RCE

CVE-2020-3291 HIGH

Cisco RV016, RV042, RV042G, RV082, RV320, and RV325 Firmware - Authenticated Stack Overflow via Web Management Interface

CVE-2020-3290 HIGH

Cisco Small Business RV320-0 - Authenticated RCE

CVE-2020-3289 HIGH

Cisco RV016, RV042, RV042G, RV082, RV320, and RV325 Firmware - Authenticated Stack Overflow via Web Management Interface

CVE-2020-3288 HIGH

Cisco Small Business RV320-0 - Authenticated RCE

CVE-2020-3287 HIGH

Cisco RV016, RV042, RV042G, RV082, RV320, and RV325 Firmware - Authenticated Stack Overflow via Web Management Interface

CVE-2020-3286 HIGH

Cisco RV016, RV042, RV042G, RV082, RV320, and RV325 Firmware - Authenticated Stack Overflow via Web Management Interface

CVE-2020-3269 HIGH

Cisco RV110W-215W - Command Injection

CVE-2020-3268 HIGH

Cisco RV110W-215W - Command Injection

CVE-2020-11898 CRITICAL

Treck TCP/IP < 6.0.1.66 - Information Disclosure via IPv4/ICMPv4 Length Parameter Inconsistency

CVE-2020-11896 CRITICAL

Treck TCP/IP < 6.0.1.66 - Remote Code Execution via IPv4 Tunneling

CVE-2020-7456 MEDIUM

FreeBSD Use-After-Free via USB HID Device

CVE-2020-10757 HIGH

Linux Kernel >4.5-rc1 - Privilege Escalation

CVE-2020-10061 HIGH

Zephyr < 1.14.0 - Memory Corruption in Bluetooth Full-Buffer Handling

CVE-2020-13832 CRITICAL

Android - Arbitrary Code Execution via Widevine Trustlet Memory Disclosure

CVE-2020-13831 CRITICAL

Samsung Android O(8.x) and P(9.0) - Arbitrary Memory Mapping in Trustonic Kinibi

CVE-2020-3258 CRITICAL

Cisco IOS - Remote Code Execution or Denial of Service

CVE-2020-3257 HIGH

Cisco IOS - Denial of Service and Remote Code Execution

CVE-2020-3198 CRITICAL

Cisco IOS - Remote Code Execution or Denial of Service

CVE-2020-13754 MEDIUM

QEMU 4.2.0 - Out-of-Bounds Memory Access via MSI-X MMIO Operation

CVE-2020-3344 MEDIUM

Cisco AMP for Endpoints Linux/Mac Connector <1.12.3.698/738 Authenticated Buffer Overflow

CVE-2020-3343 MEDIUM

Cisco AMP for Endpoints Linux and Mac Connector < 1.12.3.698/1.12.3.738 - Authenticated Buffer Overflow

CVE-2020-12038 MEDIUM

Rockwell Automation EDS Subsystem <= 28.0.1 - Denial of Service via EDS File Parsing

CVE-2020-11058 LOW

FreeRDP 1.1.0-2.0.0 - Out-of-Bounds Read via Font Capability Set

Previous Page 126 of 560 Next

Details

Vulnerabilities 13,982

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy