CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,992 vulnerabilities with CWE-119
CVE-2017-15354 MEDIUM
Huawei DP300, RP200, TE30, TE40, TE50, TE60, TX50 Firmware - Buffer Overflow via HTTP Message Parameters
CVSS 5.3
CVE-2017-15350 MEDIUM
Huawei Dp300 Firmware - Memory Corruption
CVSS 5.3
CVE-2017-15342 HIGH
Huawei DP300/TE60/TP3106/eSpace U1981 DoS via SSL Buffer Overflow
CVSS 7.5
CVE-2017-15339 LOW
Huawei DP300 V500R002C00 and others - Buffer Overflow in SIP Module
CVSS 3.7
CVE-2017-15338 LOW
Huawei DP300 V500R002C00 and others - Buffer Overflow in SIP Module
CVSS 3.7
CVE-2017-15337 LOW
Huawei DP300 V500R002C00 and others - Buffer Overflow in SIP Module
CVSS 3.7
CVE-2017-15336 MEDIUM
Huawei DP300 V500R002C00 and others - Buffer Overflow in SIP Backup Feature
CVSS 5.3
CVE-2017-15335 MEDIUM
Huawei DP300 V500R002C00 and others - Buffer Overflow in SIP Backup Feature
CVSS 5.3
CVE-2017-15334 MEDIUM
Huawei DP300 V500R002C00 and others - Buffer Overflow in SIP Backup Feature
CVSS 5.3
CVE-2017-12718 HIGH
Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump 1.1, 1.5, 1.6 - Remote Code Execution via Buffer Overflow
CVSS 8.1
CVE-2017-5132 HIGH
Google Chrome <62.0.3202.62 - Heap Corruption
CVSS 8.8
CVE-2017-5128 HIGH
Google Chrome <62.0.3202.62 - Buffer Overflow
CVSS 8.8
CVE-2017-5125 HIGH
Google Chrome <62.0.3202.62 - Buffer Overflow
CVSS 8.8
CVE-2017-12471 CRITICAL
ccn-lite < 2.0.0 - Out-of-Bounds Read in cnb_parse_lev
CVSS 9.8
CVE-2017-12469 CRITICAL
ccn-lite < 2.0.0 - Buffer Overflow in util/ccnl-common.c
CVSS 9.8
CVE-2017-12468 CRITICAL
ccn-lite < 2.0.0 - Buffer Overflow in ccn-lite-ccnb2xml.c
CVSS 9.8
CVE-2017-12466 CRITICAL
ccn-lite < 2.0.0 - Out-of-Bounds Access via ssl_halen in ccn-lite-sim
CVSS 9.8
CVE-2017-17482 HIGH
OpenVMS < 8.4-2L1 - Local Privilege Escalation via Malformed DCL Command Table
CVSS 7.8
CVE-2017-17663 CRITICAL
mini_httpd < 1.28 and thttpd < 2.28 - Remote Code Execution via htpasswd Buffer Overflow
CVSS 9.8
CVE-2017-17996 HIGH
SyncBreeze Enterprise <= 10.3.14 - Authenticated Buffer Overflow via Add Command Functionality
CVSS 8.8
CVE-2017-1000409 HIGH
glibc 2.5 - Buffer Overflow via LD_LIBRARY_PATH Environment Variable
CVSS 7.0
CVE-2017-16913 MEDIUM
Linux Kernel <4.14.8, 4.9.71, 4.4.114 - DoS
CVSS 5.9
CVE-2017-15655 CRITICAL
Asus asuswrt <= 3.0.0.4.376.X - Remote Code Execution via HTTPd Buffer Overflow
CVSS 9.6
CVE-2017-12379 CRITICAL
ClamAV AntiVirus <0.99.2 - DoS
CVSS 9.8
CVE-2017-12376 HIGH
ClamAV AntiVirus <0.99.2 - DoS
CVSS 7.8
Details
Vulnerabilities 13,992
Exploit Likelihood High