CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,989 vulnerabilities with CWE-119
CVE-2018-14741 HIGH
cloudwu PBC <2017-03-02 - Memory Corruption
CVSS 7.5
CVE-2018-14740 HIGH
PBC < 2017-03-02 - Denial of Service via set_field_one in bootstrap.c
CVSS 7.5
CVE-2018-14739 HIGH
PBC < 2017-03-02 - Denial of Service via pbc_pattern_set_default in pattern.c
CVSS 7.5
CVE-2018-14738 HIGH
PBC < 2017-03-02 - Denial of Service via pbc_rmessage_message in rmessage.c
CVSS 7.5
CVE-2018-14615 MEDIUM
Linux kernel <4.17.10 - Buffer Overflow
CVSS 5.5
CVE-2018-10881 MEDIUM
Linux Kernel ext4 - Denial of Service via Crafted Filesystem Image
CVSS 4.2
CVE-2018-10628 CRITICAL
AVEVA InTouch <2014 R2 SP1 - Buffer Overflow
CVSS 9.8
CVE-2018-14590 HIGH
Bento4 <1.5.1-624 - Memory Corruption
CVSS 7.5
CVE-2018-14586 HIGH
Bento4 <1.5.1-624 - Memory Corruption
CVSS 8.8
CVE-2018-1999011 HIGH
FFmpeg <2b46ebdbff1d8dec7a3d8ea280a612b91a582869 - Buffer Overflow
CVSS 8.8
CVE-2018-14564 CRITICAL
THULAC <2018-02-25 - Memory Corruption
CVSS 9.8
CVE-2018-14563 CRITICAL
thunlp/thulac < 2018-02-25 - Memory Corruption via Mismatched Delete in TaggingLearner
CVSS 9.8
CVE-2018-14531 CRITICAL
Bento4 <1.5.1-624 - Memory Corruption
CVSS 9.8
CVE-2018-14522 HIGH
aubio < 0.4.7 - Denial of Service via Pitch Unit Setting
CVSS 8.8
CVE-2018-14521 HIGH
aubio < 0.4.7 - Denial of Service via aubiomfcc
CVSS 8.8
CVE-2018-5043 HIGH
Adobe Acrobat and Reader DC < 15.006.30418, 15.008.20082-18.011.20040 - Remote Code Execution
CVSS 8.8
CVE-2018-5037 HIGH
Adobe Acrobat DC < 15.006.30418, 15.008.20082-18.011.20040 - Remote Code Execution
CVSS 8.8
CVE-2018-5034 HIGH
Adobe Acrobat DC < 15.006.30418, 15.008.20082-18.011.20040 - Buffer Overflow
CVSS 8.8
CVE-2018-12784 CRITICAL
Adobe Acrobat and Reader <2018.011.20040 - Buffer Overflow
CVSS 9.8
CVE-2018-14443 MEDIUM
GNU LibreDWG < 0.6 - Denial of Service in get_first_owned_object
CVSS 6.5
CVE-2018-0379 HIGH
Cisco Webex Network Recording Player - Remote Code Execution via Malicious ARF or WRF File
CVSS 7.8
CVE-2018-0346 HIGH
Cisco SD-WAN Solution < 18.3.0 - Unauthenticated Denial of Service via Zero Touch Provisioning Packet Processing
CVSS 7.5
CVE-2018-0342 MEDIUM
Cisco SD-WAN Solution < 18.3.0 - Authenticated Buffer Overflow via vDaemon Listening Service
CVSS 6.7
CVE-2018-7546 MEDIUM
Kingsoft WPS Office and Jinshan PDF - Denial of Service via Crafted PDF File
CVSS 5.5
CVE-2018-14362 CRITICAL
Mutt < 1.10.1 and NeoMutt < 20180716 - Path Traversal via Message-Cache Pathname
CVSS 9.8
Details
Vulnerabilities 13,989
Exploit Likelihood High