CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,990 vulnerabilities with CWE-119
CVE-2018-5678 HIGH
Foxit Reader <9.1, PhantomPDF <9.1 - RCE
CVSS 8.8
CVE-2018-5676 HIGH
Foxit Reader <9.1, PhantomPDF <9.1 - RCE
CVSS 8.8
CVE-2018-5674 HIGH
Foxit Reader <9.1, PhantomPDF <9.1 - RCE
CVSS 8.8
CVE-2018-1000199 MEDIUM
Linux Kernel <3.18 - Memory Corruption
CVSS 5.5
CVE-2018-1123 LOW
procps-ng < 3.3.15 - Denial of Service via mmap Buffer Overflow
CVSS 3.9
CVE-2018-11361 HIGH
Wireshark 2.6.0 - Denial of Service via IEEE 802.11 Dissector Buffer Overflow
CVSS 7.5
CVE-2018-11360 HIGH
Wireshark 2.2.0-2.2.14, 2.4.0-2.4.6, 2.6.0 - Buffer Overflow in GSM A DTAP Dissector
CVSS 7.5
CVE-2018-11355 HIGH
Wireshark 2.6.0 - Denial of Service via RTCP Dissector Buffer Overflow
CVSS 7.5
CVE-2018-11378 HIGH
radare2 - Heap-Based Buffer Overflow in wasm_dis() Function
CVSS 7.8
CVE-2018-7687 HIGH
Micro Focus Client for OES < 2 SP4 IR8a - Local Privilege Escalation via Buffer Overflow in ncfsd.sys
CVSS 7.8
CVE-2018-4936 MEDIUM
Adobe Flash Player < 29.0.0.113 - Heap Overflow
CVSS 6.5
CVE-2018-4928 HIGH
Adobe InDesign < 13.0 - Memory Corruption leading to Arbitrary Code Execution
CVSS 7.8
CVE-2018-5827 HIGH
Qualcomm Android <2018-04-05 - Buffer Overflow
CVSS 7.8
CVE-2018-3568 HIGH
Qualcomm Android <2018-04-05 - Buffer Overflow
CVSS 7.8
CVE-2018-3567 HIGH
Qualcomm Android <2018-04-05 - Buffer Overflow
CVSS 7.8
CVE-2018-10731 CRITICAL
Phoenix Contact FL SWITCH 3xxx/4xxx/48xx Firmware < 1.33 - Buffer Overflow via Large Cookie
CVSS 9.0
CVE-2018-10728 HIGH
Phoenix Contact FL SWITCH 3xxx/4xxx/48xx Firmware < 1.33 - Buffer Overflow
CVSS 8.1
CVE-2018-9974 HIGH
Foxit Reader and PhantomPDF < 9.0.1.1049 - Remote Code Execution via Heap-Based Buffer Overflow in ConvertToPDF_x86.dll
CVSS 8.8
CVE-2018-9949 HIGH
Foxit Reader and PhantomPDF < 9.0.1.1049 - Remote Code Execution via TIFF File Parsing
CVSS 8.8
CVE-2018-9947 HIGH
Foxit Reader and PhantomPDF < 9.0.1.1049 - Remote Code Execution via BMP Image Parsing
CVSS 8.8
CVE-2018-10494 HIGH
Foxit Reader and PhantomPDF < 9.0.1.1049 - Remote Code Execution via U3D 3DView Object Parsing
CVSS 8.8
CVE-2018-10490 HIGH
Foxit Reader and PhantomPDF < 9.0.1.1049 - Remote Code Execution via U3D JPEG Image Parsing
CVSS 8.8
CVE-2018-10488 HIGH
Foxit Reader and PhantomPDF < 9.0.1.1049 - Remote Code Execution via U3D Texture Width Parsing
CVSS 8.8
CVE-2018-11226 HIGH
libming < 0.4.8 - Denial of Service via getString Function
CVSS 8.8
CVE-2018-11225 HIGH
libming < 0.4.8 - Denial of Service via dcputs Function
CVSS 8.8
Details
Vulnerabilities 13,990
Exploit Likelihood High