CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,992 vulnerabilities with CWE-119
CVE-2017-12107 HIGH
Computerinsel Photoline 20.02 - Memory Corruption
CVSS 8.8
CVE-2017-12087 CRITICAL
tinysvcmdns <2016-07-18 - Buffer Overflow
CVSS 10.0
CVE-2017-17833 CRITICAL
OpenSLP 1.0.2 and 1.1.0 - Remote Code Execution or Denial of Service via Heap Memory Corruption
CVSS 9.8
CVE-2017-3774 CRITICAL
Lenovo Integrated Management Module 2 < 4.70 - Stack Overflow via Authentication Routine
CVSS 9.8
CVE-2017-17313 MEDIUM
HUAWEI P9 Lite <VNS-L21C02B341-VNS-L31C636B396 - Buffer Overflow
CVSS 5.5
CVE-2017-17310 HIGH
Huawei DP300-RP200-TE30 V500R002C00-V600R006C00 - Buffer Overflow
CVSS 7.5
CVE-2017-9638 CRITICAL
Mitsubishi E-Designer <7.52 Build 344 - Buffer Overflow
CVSS 9.8
CVE-2017-9636 CRITICAL
Mitsubishi E-Designer <7.52 Build 344 - Memory Corruption
CVSS 9.8
CVE-2017-0357 CRITICAL
iucode-tool 1.4-2.1.1 - Heap Overflow in -tr Loader
CVSS 9.8
CVE-2017-18142 CRITICAL
Qualcomm MDM9650/MDM9655/SD 835/SD 845/SD 850 Firmware - Buffer Overflow in IMS SIP Username Processing
CVSS 9.8
CVE-2017-18139 CRITICAL
Qualcomm MDM9206 and Snapdragon Firmware - Buffer Overflow via IMS Call Handling
CVSS 9.8
CVE-2017-18138 CRITICAL
Qualcomm MDM9206 and Snapdragon Firmware - Buffer Overflow in GERAN
CVSS 9.8
CVE-2017-18137 CRITICAL
Qualcomm Mdm9640 Firmware - Memory Corruption
CVSS 9.8
CVE-2017-18135 CRITICAL
Qualcomm MDM9650/55, SD 450/625/650/52/835/845/850 Firmware - Buffer Overflow in Wireless Data Service
CVSS 9.8
CVE-2017-18134 CRITICAL
Qualcomm Snapdragon Mobile SD 845 and SD 850 Firmware - Buffer Overflow via SIM Card Response Processing
CVSS 9.8
CVE-2017-18133 CRITICAL
Qualcomm MDM9206, MDM9607, MDM9650, SD 210/212/205, SD 835 - Out-of-Bounds Memory Access
CVSS 9.8
CVE-2017-18132 CRITICAL
Qualcomm MDM9206, MDM9607, and MSM8996 Firmware - Out-of-Bounds Access in tz_assign()
CVSS 9.8
CVE-2017-18127 CRITICAL
Qualcomm Snapdragon Mobile and Wear Firmware - Buffer Overflow via VR Service SetParam Command
CVSS 9.8
CVE-2017-13266 CRITICAL
Android 5.1.1-8.1 - Remote Code Execution via Missing Bounds Check in avrc_pars_vendor_cmd
CVSS 9.8
CVE-2017-13282 CRITICAL
Android 7.0-8.1 - Remote Code Execution via Stack Buffer Overflow in avrc_ctrl_pars_vendor_rsp
CVSS 9.8
CVE-2017-13281 CRITICAL
Android 8.0 8.1 - Remote Code Execution via Stack Buffer Overflow in avrc_pars_browsing_cmd
CVSS 9.8
CVE-2017-13276 HIGH
Android 6.0-8.1 - Remote Code Execution via Stack Buffer Overflow in CProgramConfig_ReadHeightExt
CVSS 7.8
CVE-2017-13267 CRITICAL
Android 6.0-8.1 - Remote Escalation of Privilege via Missing Bounds Check in avrc_pars_vendor_cmd
CVSS 9.8
CVE-2017-15822 HIGH
Qualcomm Android for MSM, Firefox OS for MSM, and QRD Android - Buffer Overflow in 802.11 Management Frame Processing
CVSS 8.8
CVE-2017-14894 HIGH
Qualcomm Android <2018-04-05 - Buffer Overflow
CVSS 7.3
Details
Vulnerabilities 13,992
Exploit Likelihood High