CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,992 vulnerabilities with CWE-119
CVE-2017-10852 HIGH
Corega CG-WGR1200 Firmware < 2.20 - Buffer Overflow
CVSS 8.8
CVE-2017-18222 HIGH
Linux Kernel < 4.12 - Buffer Overflow in Hisilicon Network Subsystem sset_count Handling
CVSS 7.8
CVE-2017-17144 MEDIUM
Huawei DP300 <V500R002C00 - Buffer Overflow
CVSS 5.3
CVE-2017-17143 MEDIUM
Huawei DP300 <V500R002C00 - Buffer Overflow
CVSS 5.3
CVE-2017-17142 MEDIUM
Huawei DP300 <V500R002C00SPC600 - Buffer Overflow
CVSS 5.3
CVE-2017-17136 MEDIUM
Huawei Various - SQL Injection
CVSS 5.5
CVE-2017-15134 HIGH
389 Directory Server 1.3.6.1-1.3.6.12, 1.3.7.1-1.3.7.8, 1.4.0-1.4.0.4 - DoS via LDAP Search Filter
CVSS 7.5
CVE-2017-18206 CRITICAL
zsh < 5.4 - Buffer Overflow in Symlink Expansion
CVSS 9.8
CVE-2017-17767 HIGH
Android - Use-After-Free in OMX Video Encoder Component
CVSS 7.8
CVE-2017-14884 HIGH
Android - Buffer Overflow in WLANFTM_McProcessMsg
CVSS 7.8
CVE-2017-18193 MEDIUM
Linux Kernel < 4.13 - Denial of Service via Extent Tree Mishandling
CVSS 5.5
CVE-2017-6193 MEDIUM
apng_disassembler < 2.8 - Buffer Overflow via Malformed IHDR Chunk
CVSS 5.5
CVE-2017-6192 MEDIUM
apng_disassembler < 2.8 - Buffer Overflow via Chunk Size Descriptor
CVSS 5.5
CVE-2017-7376 CRITICAL
libxml2 < 2.9.5 - Remote Code Execution via Redirect Port Handling
CVSS 9.8
CVE-2017-5807 CRITICAL
HPE Data Protector < 8.17 and 9.09 - Remote Code Execution
CVSS 9.8
CVE-2017-12546 MEDIUM
HP System Management Homepage < 7.6.1 - Local Buffer Overflow
CVSS 5.6
CVE-2017-17298 MEDIUM
Huawei Networking and Telepresence Products - Buffer Overflow via Crafted Certificates
CVSS 5.3
CVE-2017-17297 MEDIUM
Huawei Networking, Security, and Telepresence Products - Buffer Overflow via Crafted SIP Packets
CVSS 5.3
CVE-2017-17295 MEDIUM
Huawei Networking, Security, and Telepresence Products - Buffer Overflow via Crafted SIP Packets
CVSS 5.3
CVE-2017-17293 LOW
Huawei Networking and Telepresence Products - Buffer Overflow via Crafted XML File
CVSS 3.3
CVE-2017-17287 MEDIUM
Huawei AR Series Firmware - Out-of-Bounds Read via Crafted Signature
CVSS 5.3
CVE-2017-17285 HIGH
Huawei mobile phones <LON-AL00BC00B229 - Buffer Overflow
CVSS 8.8
CVE-2017-17163 MEDIUM
Huawei Secospace USG6600 V500R001C30SPC100 - Memory Corruption
CVSS 5.5
CVE-2017-15356 MEDIUM
Huawei DP300, RP200, TE30, TE40, TE50, TE60, TX50 Firmware - Buffer Overflow via HTTP Message Parameters
CVSS 5.3
CVE-2017-15355 MEDIUM
Huawei DP300, RP200, TE30, TE40, TE50, TE60, TX50 Firmware - Buffer Overflow via HTTP Message Parameters
CVSS 5.3
Details
Vulnerabilities 13,992
Exploit Likelihood High