CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,992 vulnerabilities with CWE-119
CVE-2017-12375 HIGH
ClamAV AntiVirus <0.99.2 - DoS
CVSS 7.5
CVE-2017-13696 CRITICAL
Flexense Dupscout - Memory Corruption
CVSS 9.8
CVE-2017-17858 HIGH
Artifex MuPDF 1.12.0 - Heap-Based Buffer Overflow in Xref Subsection Handling
CVSS 7.8
CVE-2017-18047 CRITICAL
LabF nfsAxe 3.7 - Buffer Overflow via Long FTP Reply
CVSS 9.8
CVE-2017-18046 CRITICAL
Dasan GPON ONT H640X 12.02-01121 Buffer Overflow via Long POST Request
CVSS 9.8
CVE-2017-11072 HIGH
Android - Buffer Overflow in GPT Header CRC Calculation
CVSS 7.8
CVE-2017-15128 MEDIUM
Linux Kernel < 4.13.12 - Denial of Service via hugetlb_mcopy_atomic_pte Size Check
CVSS 5.5
CVE-2017-15126 HIGH
Linux Kernel < 4.13.6 - Use-After-Free in userfaultfd Event Handling
CVSS 8.1
CVE-2017-13225 HIGH
Android - Heap Buffer Overflow in libMtkOmxVdec.so
CVSS 7.8
CVE-2017-13208 CRITICAL
Android 5.1.1-8.1 - Remote Code Execution via DHCP Response Bounds Check Bypass
CVSS 9.8
CVE-2017-13197 HIGH
Android 6.0-8.1 - Denial of Service in ihevcd_parse_slice.c
CVSS 7.5
CVE-2017-13177 CRITICAL
Android 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1 - Remote Code Execution via NEON Register Corruption in libhevc
CVSS 9.8
CVE-2017-16739 HIGH
WECON Technology LEVI Studio HMI Editor <1.8.29 - Buffer Overflow
CVSS 7.8
CVE-2017-16737 HIGH
WECON Technology LEVI Studio HMI Editor <1.8.29 - Buffer Overflow
CVSS 7.8
CVE-2017-9689 HIGH
Android - Stack Memory Corruption via HDMI CEC Message
CVSS 7.8
CVE-2017-15848 HIGH
Android - Buffer Overflow in fastrpc Kernel Driver
CVSS 7.8
CVE-2017-14879 HIGH
Android - Slab Out-of-Bounds Access in IPA Driver via ipa_idr_find()
CVSS 8.8
CVE-2017-14873 HIGH
Android - Memory Corruption in pp_pgc_get_config Graphics Driver Function
CVSS 7.8
CVE-2017-11081 HIGH
Android - Buffer Overflow in hdd_parse_setrmcenable_command and hdd_parse_setrmcactionperiod_command APIs
CVSS 7.8
CVE-2017-11080 HIGH
Android - Buffer Overflow via Sparse Image Processing
CVSS 7.8
CVE-2017-17946 CRITICAL
Handy Password 4.9.3 - Remote Code Execution via Long Mail Box Title Field
CVSS 9.8
CVE-2017-11069 HIGH
Android - Heap Overflow via SafeSwitch Image Data Manipulation
CVSS 7.8
CVE-2017-16740 CRITICAL
Rockwell Automation Allen-Bradley MicroLogix 1400 - Buffer Overflow
CVSS 10.0
CVE-2017-16724 CRITICAL
Advantech WebAccess <8.3 - Buffer Overflow
CVSS 9.8
CVE-2017-1000494 HIGH
miniupnpd < 2.0 - Denial of Service via Uninitialized Stack Variable in NameValueParserEndElt
CVSS 7.8
Details
Vulnerabilities 13,992
Exploit Likelihood High