CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,990 vulnerabilities with CWE-119
CVE-2018-0298 HIGH
Cisco FXOS and UCS Fabric Interconnect Software - Unauthenticated Denial of Service via Web UI Buffer Overflow
CVSS 7.5
CVE-2018-0314 CRITICAL
Cisco FXOS and NX-OS - Unauthenticated Remote Code Execution via Malformed Cisco Fabric Services Packet
CVSS 9.8
CVE-2018-0312 CRITICAL
Cisco FXOS and NX-OS - Unauthenticated Remote Code Execution or Denial of Service via Malformed Fabric Services Packet
CVSS 9.8
CVE-2018-0308 CRITICAL
Cisco FXOS and NX-OS - Remote Code Execution or Denial of Service via Cisco Fabric Services Packet Header
CVSS 9.8
CVE-2018-0301 CRITICAL
Cisco NX-OS 6.0-7.3(3)n1(1) - Unauthenticated Remote Code Execution via NX-API Packet Buffer Overflow
CVSS 9.8
CVE-2018-0292 HIGH
Cisco NX-OS 6.0-7.3(3)n1(1) - RCE and DoS via IGMP Snooping Buffer Overflow
CVSS 8.8
CVE-2018-1120 LOW
Linux Kernel < 4.17 - Denial of Service via FUSE mmap and /proc Read Blocking
CVSS 2.8
CVE-2018-11707 HIGH
FastStone Image Viewer 6.2 - Denial of Service via Malformed JPEG File
CVSS 7.8
CVE-2018-11706 HIGH
FastStone Image Viewer 6.2 - Denial of Service via Malformed JPEG File
CVSS 7.8
CVE-2018-11705 HIGH
FastStone Image Viewer 6.2 - Denial of Service via Malformed JPEG File
CVSS 7.8
CVE-2018-11704 HIGH
FastStone Image Viewer 6.2 - Denial of Service via Malformed JPEG File
CVSS 7.8
CVE-2018-11703 HIGH
FastStone Image Viewer 6.2 - Denial of Service via Malformed JPEG File
CVSS 7.8
CVE-2018-11702 HIGH
FastStone Image Viewer 6.2 - Denial of Service via Malformed JPEG File
CVSS 7.8
CVE-2018-11701 HIGH
FastStone Image Viewer 6.2 - Denial of Service via Malformed JPEG File
CVSS 7.8
CVE-2018-10621 CRITICAL
Delta Industrial Automation DOPSoft < 4.00.04 - Remote Code Execution via .dpa File Buffer Overflow
CVSS 9.8
CVE-2018-10617 CRITICAL
Delta Industrial Automation DOPSoft < 4.00.04 - Remote Code Execution via .dpa File Heap Buffer Overflow
CVSS 9.8
CVE-2018-12326 HIGH
Redis <4.0.10 & 5.x <5.0 RC3 - Buffer Overflow
CVSS 8.4
CVE-2018-5863 HIGH
Android - Buffer Overflow in wlan_hdd_cfg80211_set_ie()
CVSS 7.8
CVE-2018-12422 CRITICAL
Evolution-Data-Server <3.29.2 - Buffer Overflow
CVSS 9.8
CVE-2018-7167 HIGH
Node.js 6.9.0-6.14.2 and 9.0.0-9.11.1 - Denial of Service via Buffer.fill() or Buffer.alloc()
CVSS 7.5
CVE-2018-5851 HIGH
Android - Buffer Overflow via HTT_T2H_MSG_TYPE_TX_COMPL_IND Message Processing
CVSS 7.8
CVE-2018-5848 HIGH
Android - Buffer Overflow in wmi_set_ie() Function
CVSS 7.8
CVE-2018-5843 HIGH
Android - Buffer Overflow in wma_pdev_div_info_evt_handler
CVSS 7.8
CVE-2018-5842 HIGH
Android - Arbitrary Memory Write via WLAN Firmware Data
CVSS 7.8
CVE-2018-3582 HIGH
Android - Buffer Overflow in WMA Event Handler Functions
CVSS 7.8
Details
Vulnerabilities 13,990
Exploit Likelihood High