CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,989 vulnerabilities with CWE-119
CVE-2018-15814 MEDIUM
FastStone Image Viewer 6.5 - Denial of Service via Crafted Image File
CVSS 5.5
CVE-2018-15813 MEDIUM
FastStone Image Viewer 6.5 - Denial of Service via Crafted Image File
CVSS 5.5
CVE-2018-20642 MEDIUM
Entrepreneur Job Portal Script 3.0.1 - Denial of Service via KeySkills Field
CVSS 6.5
CVE-2018-20637 MEDIUM
Chartered Accountant : Auditor Website 2.0.1 - Denial of Service via Crafted JavaScript in Name Fields
CVSS 6.5
CVE-2018-20634 MEDIUM
Advance B2B Script 2.1.4 - Denial of Service via First Name Field JavaScript Injection
CVSS 6.5
CVE-2018-20340 MEDIUM
Yubico libu2f-host 1.1.6 - Buffer Overflow in devs.c via Malicious USB Token
CVSS 6.8
CVE-2018-1992 MEDIUM
IBM Power 9 OP910-OP920-FW910 - Buffer Overflow
CVSS 6.4
CVE-2018-14745 HIGH
Samsung Galaxy S6 Firmware - Buffer Overflow in bcmdhd4358 Wi-Fi Driver
CVSS 8.8
CVE-2018-20182 CRITICAL
rdesktop <= 1.8.3 - Buffer Overflow in seamless_process_line()
CVSS 9.8
CVE-2018-12214 HIGH
Intel Graphics Driver < 24.20.100.6373 - Kernel Mode Memory Corruption
CVSS 8.2
CVE-2018-12213 MEDIUM
Intel Graphics Driver < 24.20.100.6373 - DoS via Memory Corruption
CVSS 6.0
CVE-2018-12212 MEDIUM
Intel Graphics Driver <10.18.x.5059-24.20.100.6373 - Buffer Overflow
CVSS 6.5
CVE-2018-12210 MEDIUM
Intel(R) Graphics Driver <10.18.x.5059-24.20.100.6373 - DoS
CVSS 6.5
CVE-2018-12208 HIGH
Intel CSME <11.8.60-12.0.20 & TXE <3.1.60-4.0.10 - RCE
CVSS 7.6
CVE-2018-12201 MEDIUM
Intel Core/Pentium/Celeron - Buffer Overflow
CVSS 6.7
CVE-2018-12199 MEDIUM
Intel CSME <11.8.60-12.0.20, TXE <3.1.60-4.0.10 - RCE
CVSS 6.2
CVE-2018-12191 HIGH
Intel CSME Firmware < 11.8.60 - Unauthenticated RCE via Physical Access
CVSS 7.6
CVE-2018-1980 HIGH
IBM DB2 9.7, 10.1, 10.5, 11.1 - Authenticated Buffer Overflow
CVSS 8.4
CVE-2018-1978 HIGH
IBM DB2 9.7, 10.1, 10.5, 11.1 - Authenticated Buffer Overflow
CVSS 8.4
CVE-2018-1923 HIGH
IBM DB2 9.7, 10.1, 10.5, 11.1 - Buffer Overflow
CVSS 8.4
CVE-2018-1922 HIGH
IBM DB2 9.7-11.1 - Buffer Overflow
CVSS 8.4
CVE-2018-11793 HIGH
Apache Mesos < 1.4.3 - Denial of Service via JSON Parser Stack Overflow
CVSS 7.5
CVE-2018-18493 CRITICAL
Firefox < 64 and Thunderbird < 60.4 - Memory Corruption via Skia Buffer Offset Calculation
CVSS 9.8
CVE-2018-12407 CRITICAL
Firefox < 64.0 - Buffer Overflow in ANGLE VertexBuffer11 Module
CVSS 9.8
CVE-2018-12406 HIGH
Mozilla Firefox <64 - Memory Corruption
CVSS 8.8
Details
Vulnerabilities 13,989
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits