CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,993 vulnerabilities with CWE-119
CVE-2017-14632 CRITICAL
libvorbis 1.3.5 - Remote Code Execution via Uninitialized Memory Free in vorbis_analysis_headerout
CVSS 9.8
CVE-2017-14631 CRITICAL
sam2p 0.49.3 - Heap-Based Buffer Overflow in pcxLoadRaster Function
CVSS 9.8
CVE-2017-14628 CRITICAL
sam2p 0.49.3 - Heap-Based Buffer Overflow in pcxLoadImage24
CVSS 9.8
CVE-2017-6720 MEDIUM
Cisco Small Business Managed Switches - DoS
CVSS 6.5
CVE-2017-12883 CRITICAL
Perl < 5.24.2 - Buffer Overflow in S_grok_bslash_N Function
CVSS 9.1
CVE-2017-12837 HIGH
Perl < 5.24.3-RC1 and 5.26.x < 5.26.1-RC1 - Heap-Based Buffer Overflow via Regular Expression with \N{} Escape
CVSS 7.5
CVE-2017-14033 HIGH
Ruby < 2.2.8, 2.3.x < 2.3.5, 2.4.x <= 2.4.1 - Denial of Service via OpenSSL::ASN1 Decode Method
CVSS 7.5
CVE-2017-14580 HIGH
XnView Classic for Windows <2.41 - RCE
CVSS 7.8
CVE-2017-14579 HIGH
STDU Viewer 1.6.375 - Remote Code Execution via Crafted .jb2 File
CVSS 7.8
CVE-2017-14578 HIGH
IrfanView 4.44 - Denial of Service via Crafted .ani File
CVSS 7.8
CVE-2017-14577 HIGH
STDU Viewer 1.6.375 - Remote Code Execution via Crafted XPS File
CVSS 7.8
CVE-2017-14576 HIGH
STDU Viewer 1.6.375 - Denial of Service via Crafted XPS File
CVSS 7.8
CVE-2017-14575 HIGH
STDU Viewer 1.6.375 - Remote Code Execution via Crafted XPS File
CVSS 7.8
CVE-2017-14574 HIGH
STDU Viewer 1.6.375 - Remote Code Execution via Crafted XPS File
CVSS 7.8
CVE-2017-14573 HIGH
STDU Viewer 1.6.375 - Remote Code Execution via Crafted XPS File
CVSS 7.8
CVE-2017-14572 HIGH
STDU Viewer 1.6.375 - Remote Code Execution via Crafted XPS File
CVSS 7.8
CVE-2017-14571 HIGH
STDU Viewer 1.6.375 - Remote Code Execution via Crafted XPS File
CVSS 7.8
CVE-2017-14570 HIGH
STDU Viewer 1.6.375 - Remote Code Execution via Crafted XPS File
CVSS 7.8
CVE-2017-14569 HIGH
STDU Viewer 1.6.375 - Denial of Service via Crafted XPS File
CVSS 7.8
CVE-2017-14568 HIGH
STDU Viewer 1.6.375 - Remote Code Execution via Crafted XPS File
CVSS 7.8
CVE-2017-14567 HIGH
STDU Viewer 1.6.375 - Remote Code Execution via Crafted XPS File
CVSS 7.8
CVE-2017-14566 HIGH
STDU Viewer 1.6.375 - Remote Code Execution via Crafted XPS File
CVSS 7.8
CVE-2017-14565 HIGH
STDU Viewer 1.6.375 - Denial of Service via Crafted XPS File
CVSS 7.8
CVE-2017-14564 HIGH
STDU Viewer 1.6.375 - Denial of Service via Crafted XPS File
CVSS 7.8
CVE-2017-14563 HIGH
STDU Viewer 1.6.375 - Remote Code Execution via Crafted XPS File
CVSS 7.8
Details
Vulnerabilities 13,993
Exploit Likelihood High