CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,989 vulnerabilities with CWE-119
CVE-2018-14338 HIGH
exiv2 0.26 - Buffer Overflow via realpath Misuse in geotag.cpp
CVSS 8.1
CVE-2018-10098 MEDIUM
MicroWorld eScan ISS <14.0.1400.2029 - DoS
CVSS 5.5
CVE-2018-10018 HIGH
G DATA Total Security <25.4.0.3 - Buffer Overflow
CVSS 8.8
CVE-2018-14047 MEDIUM
PNGwriter 0.7.0 - Memory Corruption
CVSS 5.5
CVE-2018-14015 MEDIUM
radare2 2.0.0-2.7.0 - Denial of Service via Crafted ELF File
CVSS 5.5
CVE-2018-13997 HIGH
genann < 2018-07-08 - Denial of Service via genann_run Buffer Overflow
CVSS 7.5
CVE-2018-3629 MEDIUM
Intel Active Management Technology Firmware 3.0-11.22.70 - Denial of Service via Event Handler Buffer Overflow
CVSS 6.5
CVE-2018-3628 HIGH
Intel Active Management Technology Firmware 3.0-11.22.70 - Buffer Overflow in HTTP Handler
CVSS 8.8
CVE-2018-13869 CRITICAL
HDF5 1.8.20 - Memory Corruption via H5O_link_decode memcpy Parameter Overlap
CVSS 9.8
CVE-2018-10872 MEDIUM
Red Hat Enterprise Linux 6.10 - Denial of Service via Stack Switch Exception Handling
CVSS 6.5
CVE-2018-13848 HIGH
Bento4 1.5.1-624 - Use-After-Free in AP4_StszAtom::GetSampleSize
CVSS 7.5
CVE-2018-13847 HIGH
Bento4 1.5.1-624 - Use-After-Free in AP4_StcoAtom::AdjustChunkOffsets
CVSS 7.5
CVE-2018-4998 HIGH
Adobe Acrobat and Reader - Memory Corruption leading to Arbitrary Code Execution
CVSS 8.8
CVE-2018-6857 HIGH
Sophos SafeGuard Enterprise <8.00.5 / Easy <7.00.3 / LAN Crypt <3.95.2 - Local Privilege Escalation
CVSS 7.8
CVE-2018-6856 HIGH
Sophos SafeGuard Enterprise <8.00.5, SafeGuard Easy <7.00.3, SafeGuard LAN Crypt <3.95.2 - Local Privilege Escalation
CVSS 7.8
CVE-2018-6855 HIGH
Sophos SafeGuard Enterprise <8.00.5 / Easy <7.00.3 / LAN Crypt <3.95.2 - Local Privilege Escalation
CVSS 7.8
CVE-2018-6854 HIGH
Sophos Safeguard Easy Device Encryption Client - Memory Corruption
CVSS 7.8
CVE-2018-6853 HIGH
Sophos SafeGuard Enterprise <8.00.5 / Easy <7.00.3 / LAN Crypt <3.95.2 - Local Privilege Escalation
CVSS 7.8
CVE-2018-6852 HIGH
Sophos SafeGuard Enterprise <8.00.5 / Easy <7.00.3 / LAN Crypt <3.95.2 - Local Privilege Escalation
CVSS 7.8
CVE-2018-6851 HIGH
Sophos SafeGuard Enterprise, Easy, and LAN Crypt - Local Privilege Escalation via IOCTL 0x80206040
CVSS 7.8
CVE-2018-5872 HIGH
Android <2018-07-05 - Memory Corruption
CVSS 8.0
CVE-2018-5862 HIGH
Android <2018-07-05 - Buffer Overflow
CVSS 7.8
CVE-2018-5858 HIGH
Android <2018-07-05 - Info Disclosure
CVSS 7.8
CVE-2018-5893 HIGH
Android <2018-06-05 - Buffer Overflow
CVSS 7.8
CVE-2018-5889 HIGH
Android <2018-06-05 - Buffer Overflow
CVSS 7.8
Details
Vulnerabilities 13,989
Exploit Likelihood High