CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,989 vulnerabilities with CWE-119
CVE-2018-1710 HIGH
IBM DB2 10.1, 10.5, 11.1 - Buffer Overflow in db2licm
CVSS 8.4
CVE-2018-14829 CRITICAL
Rockwell Automation RSLinx Classic <4.00.01 - Buffer Overflow
CVSS 9.8
CVE-2018-14821 HIGH
Rockwell Automation RSLinx Classic <4.00.01 - DoS
CVSS 7.5
CVE-2018-14792 MEDIUM
WECON PLC Editor <1.3.3U - Code Injection
CVSS 6.3
CVE-2018-1149 CRITICAL
NUUO NVRMini2 Firmware < 3.8.0 - Remote Code Execution via cgi_system
CVSS 9.8
CVE-2018-5905 HIGH
Android - Out-of-Bounds Memory Access via DIAG Services Race Condition
CVSS 7.0
CVE-2018-3573 HIGH
Android - Out-of-Bounds Memory Access via Boot Image Relocation
CVSS 7.8
CVE-2018-11895 HIGH
Android - Memory Corruption in WLAN Driver via Improper Length Check
CVSS 7.8
CVE-2018-11893 HIGH
Google Android - Buffer Overflow in Vendor Scan Request Processing
CVSS 7.8
CVE-2018-11889 HIGH
Android - Use-After-Free in WLAN RSSI Timeout Handling
CVSS 7.8
CVE-2018-11878 HIGH
Android - Memory Corruption in WLAN Driver Command Processing
CVSS 7.8
CVE-2018-11869 HIGH
Android - Buffer Overflow in WMA Handler via Firmware Value
CVSS 7.8
CVE-2018-11868 HIGH
Android - Buffer Overflow in NAN Response Event Handler
CVSS 7.8
CVE-2018-11863 HIGH
Android - Buffer Overflow in WMA Roam Synch Buffer Length Calculation
CVSS 7.8
CVE-2018-11860 HIGH
Android - Buffer Overflow in NDP Event Processing
CVSS 7.8
CVE-2018-11842 HIGH
Android - Use-After-Free in WLAN Association Memory Handling
CVSS 7.8
CVE-2018-11836 HIGH
Android - Out-of-Bounds Access in WLAN Function
CVSS 7.8
CVE-2018-11832 HIGH
Android - Heap Overflow in PMIC Function via Unvalidated Input Size
CVSS 7.8
CVE-2018-11298 HIGH
Android - Buffer Overflow in HDD Passpoint Realm String Handling
CVSS 7.8
CVE-2018-11274 HIGH
Android - Buffer Overflow via Extremely Large Payload
CVSS 7.8
CVE-2018-11265 HIGH
Android - Buffer Overflow in Log Buffer Handling
CVSS 7.8
CVE-2018-14320 MEDIUM
PoDoFo - Memory Corruption in PdfEncoding::ParseToUnicode
CVSS 6.5
CVE-2018-17143 HIGH
golang/net < 2018-09-17 - Denial of Service via Malformed HTML Template Parsing
CVSS 7.5
CVE-2018-17106 HIGH
Tinyftp Tinyftpd <1.1 - Buffer Overflow
CVSS 7.5
CVE-2018-17076 HIGH
logological general-purpose_preprocessor < 2.25 - Stack-Based Buffer Overflow via Crafted File
CVSS 8.8
Details
Vulnerabilities 13,989
Exploit Likelihood High