CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,990 vulnerabilities with CWE-119
CVE-2018-3581 HIGH
Android WLAN Driver - Buffer Overflow via Firmware vdev_id
CVSS 7.8
CVE-2018-3572 HIGH
Android - Buffer Overflow in Audio Driver DSP Event Handler
CVSS 7.8
CVE-2018-1151 CRITICAL
Western Digital TV Media Player <1.03.07-3.12.13 - RCE
CVSS 9.8
CVE-2018-5718 HIGH
SafenSoft SysWatch <4.4.1 - Memory Corruption
CVSS 7.1
CVE-2018-12233 HIGH
Linux kernel <4.17.1 - Memory Corruption
CVSS 7.8
CVE-2018-5183 CRITICAL
Mozilla - Memory Corruption
CVSS 9.8
CVE-2018-5178 HIGH
Thunderbird ESR < 52.8 - Buffer Overflow
CVSS 8.1
CVE-2018-5177 HIGH
Firefox < 60 - Buffer Overflow
CVSS 7.5
CVE-2018-5151 CRITICAL
Firefox < 60.0 - Memory Corruption and Remote Code Execution
CVSS 9.8
CVE-2018-5150 CRITICAL
Firefox <60 - Memory Corruption
CVSS 9.8
CVE-2018-5145 CRITICAL
Firefox ESR < 52.7 - Memory Corruption
CVSS 9.8
CVE-2018-5127 HIGH
Thunderbird < 52.7, Firefox ESR < 52.7, Firefox < 59 - Buffer Overflow
CVSS 8.8
CVE-2018-5126 CRITICAL
Firefox < 59.0 - Memory Corruption
CVSS 9.8
CVE-2018-5125 HIGH
Firefox <59 - Memory Corruption
CVSS 8.8
CVE-2018-5094 HIGH
Firefox < 58 - Heap Buffer Overflow via WebAssembly shrinkElements
CVSS 7.5
CVE-2018-5093 HIGH
Firefox < 58 - Heap Buffer Overflow in WebAssembly Memory/Table Resizing
CVSS 7.5
CVE-2018-5090 CRITICAL
Firefox < 58 - Memory Corruption
CVSS 9.8
CVE-2018-5089 CRITICAL
Firefox <58 - Memory Corruption
CVSS 9.8
CVE-2018-12112 HIGH
md4c <0.2.6 - Denial of Service
CVSS 7.8
CVE-2018-4243 HIGH
iPhone OS < 11.4 - Remote Code Execution via getvolattrlist Buffer Overflow
CVSS 7.8
CVE-2018-4242 HIGH
macOS < 10.13.5 - Memory Corruption in Hypervisor
CVSS 7.8
CVE-2018-4241 HIGH
Apple tvOS < 11.4 - Kernel Buffer Overflow in mptcp_usr_connectx
CVSS 7.8
CVE-2018-4236 HIGH
macOS < 10.13.5 - Remote Code Execution in IOGraphics
CVSS 7.8
CVE-2018-4234 HIGH
macOS < 10.13.5 - Remote Code Execution or Denial of Service in IOHIDFamily
CVSS 7.8
CVE-2018-4233 HIGH
Safari < 11.1.1 - Remote Code Execution via WebKit Memory Corruption
CVSS 8.8
Details
Vulnerabilities 13,990
Exploit Likelihood High