CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,989 vulnerabilities with CWE-119
CVE-2018-18727 HIGH
Tenda AC7/AC9/AC10/AC15/AC18 Firmware - Stack-Based Buffer Overflow via deviceList Parameter
CVSS 7.5
CVE-2018-18709 HIGH
Tenda AC7/AC9/AC10/AC15/AC18 Firmware - Stack-Based Buffer Overflow via firewallEn Parameter
CVSS 7.5
CVE-2018-18708 HIGH
Tenda AC7/AC9/AC10/AC15/AC18 Firmware - Buffer Overflow via fromAddressNat Page Parameter
CVSS 7.5
CVE-2018-18707 HIGH
Tenda AC7/AC9/AC10/AC15/AC18 Firmware - Buffer Overflow via SSID Parameter
CVSS 7.5
CVE-2018-18706 HIGH
Tenda AC7/AC9/AC10/AC15/AC18 Firmware - Buffer Overflow via fromDhcpListClient Page Parameter
CVSS 7.5
CVE-2018-5866 HIGH
Qualcomm Snapdragon Mobile/Snapdragon Wear - Memory Corruption
CVSS 7.8
CVE-2018-11854 HIGH
Snapdragon Mobile <SD 850 - Buffer Overflow
CVSS 7.8
CVE-2018-11853 HIGH
Snapdragon Mobile/Snapdragon Wear - Buffer Overflow
CVSS 7.8
CVE-2018-11850 HIGH
Snapdragon Automobile/Mobile/Wear < various - Buffer Overflow
CVSS 7.8
CVE-2018-11849 HIGH
Snapdragon Automobile/Mobile/Wear <multiple - Buffer Overflow
CVSS 7.8
CVE-2018-15497 CRITICAL
Mitel MiVoice 5330e Firmware < 6.5.0.16 - Memory Corruption via SIP/SDP Packet Handling
CVSS 9.8
CVE-2018-18520 MEDIUM
elfutils < 0.174 - Denial of Service via Crafted ELF File in elf_end
CVSS 6.5
CVE-2018-5188 CRITICAL
Firefox <61 - Memory Corruption
CVSS 9.8
CVE-2018-5187 CRITICAL
Firefox <61 - Memory Corruption
CVSS 9.8
CVE-2018-5186 CRITICAL
Firefox < 61.0 - Memory Corruption
CVSS 9.8
CVE-2018-12376 CRITICAL
Firefox <62 - Memory Corruption
CVSS 9.8
CVE-2018-12375 HIGH
Firefox < 62.0 - Memory Corruption
CVSS 8.8
CVE-2018-12359 HIGH
Thunderbird <60 - Buffer Overflow
CVSS 8.8
CVE-2018-18384 MEDIUM
Info-ZIP UnZip 6.0 - Buffer Overflow in list.c
CVSS 5.5
CVE-2018-18310 MEDIUM
elfutils < 0.174 - Denial of Service via Crafted ELF File
CVSS 5.5
CVE-2018-18309 MEDIUM
GNU Binutils - Denial of Service via Missing Bounds Check in BFD Library
CVSS 5.5
CVE-2018-15951 HIGH
Adobe Acrobat DC < 15.006.30452, 15.008.20082-18.011.20063 - Remote Code Execution
CVSS 7.8
CVE-2018-12855 HIGH
Adobe Acrobat and Reader <2018.011.20063 - Buffer Overflow
CVSS 7.8
CVE-2018-12853 HIGH
Adobe Acrobat & Reader <2018.011.20063 - Buffer Overflow
CVSS 7.8
CVE-2018-12541 MEDIUM
Eclipse Vert.x <3.5.3 - Memory Corruption
CVSS 6.5
Details
Vulnerabilities 13,989
Exploit Likelihood High