CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,989 vulnerabilities with CWE-119
CVE-2018-7116 HIGH
HPE Intelligent Management Center < 7.3 - Remote Denial of Service via dbman Opcode 10003 Filename
CVSS 7.5
CVE-2018-7115 MEDIUM
HPE Intelligent Management Center < 7.3 - Remote Buffer Overflow in dbman.exe Opcode 10001
CVSS 5.3
CVE-2018-7114 CRITICAL
HPE Intelligent Management Center < 7.3 - Remote Buffer Overflow in dbman
CVSS 9.8
CVE-2018-19792 MEDIUM
LiteSpeed OpenLiteSpeed <1.5.0 RC6 - Buffer Overflow
CVSS 6.7
CVE-2018-3951 HIGH
TP-Link TL-R600VPN Firmware - Authenticated Remote Code Execution via HTTP Header Buffer Overflow
CVSS 7.2
CVE-2018-18983 HIGH
VT-Designer 2.1.7.31 - Remote Code Execution via Heap-Based Buffer Overflow
CVSS 8.8
CVE-2018-14749 CRITICAL
QNAP <4.3.5-4.2.6 - Buffer Overflow
CVSS 9.8
CVE-2018-5918 HIGH
Snapdragon Automobile/Mobile/Wear - Buffer Overflow
CVSS 7.8
CVE-2018-5917 HIGH
Snapdragon Automobile/Snapdragon Mobile - Buffer Overflow
CVSS 7.8
CVE-2018-5912 HIGH
Snapdragon Automobile/Mobile - Buffer Overflow
CVSS 7.8
CVE-2018-5877 HIGH
Snapdragon Automobile/Mobile/Wear <various - Buffer Overflow
CVSS 7.8
CVE-2018-5870 HIGH
Snapdragon Mobile <SD 835-SDX24 - Memory Corruption
CVSS 7.8
CVE-2018-11264 HIGH
Qualcomm Mdm9206 Firmware - Memory Corruption
CVSS 7.8
CVE-2018-0721 HIGH
QNAP QTS <=4.2.6/4.3.3/4.3.4 Buffer Overflow
CVSS 7.7
CVE-2018-5910 HIGH
Android - Memory Corruption in Display Handler Callers Count Parameter
CVSS 7.8
CVE-2018-5909 HIGH
Android - Buffer Overflow in Display Handlers
CVSS 7.8
CVE-2018-5908 HIGH
Android - Buffer Overflow in Display Function
CVSS 7.8
CVE-2018-5906 HIGH
Android - Buffer Overflow in DebugFS Module
CVSS 7.8
CVE-2018-11995 HIGH
Android - Improper Restriction of Operations within the Bounds of a Memory Buffer in Partition Name-Check Variable
CVSS 7.8
CVE-2018-16094 HIGH
Lenovo System Management Module Firmware < 1.06 - Buffer Overflow in Configuration Settings Retrieval
CVSS 8.1
CVE-2018-16091 HIGH
Lenovo System Management Module Firmware < 1.06 - Buffer Overflow in Certificate Creation and Parsing Logic
CVSS 8.1
CVE-2018-19587 MEDIUM
Cesanta Mongoose 6.13 - Memory Corruption
CVSS 6.5
CVE-2018-19568 MEDIUM
dcraw < 9.28 - Denial of Service via Floating Point Exception in kodak_radc_load_raw
CVSS 5.5
CVE-2018-19567 MEDIUM
dcraw < 9.28 - Denial of Service via Floating Point Exception in parse_tiff_ifd
CVSS 5.5
CVE-2018-19528 CRITICAL
TP-Link TL-WR886N 7.0 1.1.0 - Denial of Service via Crafted DNS Packets
CVSS 9.8
Details
Vulnerabilities 13,989
Exploit Likelihood High