CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,998 vulnerabilities with CWE-119
CVE-2017-3076 CRITICAL
Adobe Flash Player <= 25.0.0.171 - Memory Corruption in MPEG-4 AVC Module
CVSS 9.8
CVE-2017-7679 CRITICAL
Apache httpd <2.2.33, <2.4.26 - Buffer Overflow
CVSS 9.8
CVE-2017-9763 HIGH
radare2 1.5.0 - Denial of Service via Crafted Binary File
CVSS 7.5
CVE-2017-9761 MEDIUM
radare2 1.5.0 - Denial of Service via Heap-Based Out-of-Bounds Read in find_eoq Function
CVSS 5.5
CVE-2017-1000377 MEDIUM
PAX Linux <June 19, 2017 - Memory Corruption
CVSS 5.9
CVE-2017-1000376 HIGH
libffi <3.1 - Remote Code Execution
CVSS 7.0
CVE-2017-1000375 CRITICAL
NetBSD < 7.1 - Arbitrary Code Execution via Stack Clash
CVSS 9.8
CVE-2017-1000366 HIGH
glibc <2.25 - Remote Code Execution
CVSS 7.8
CVE-2017-1000364 HIGH
Linux Kernel <4.11.5 - Memory Corruption
CVSS 7.4
CVE-2017-9756 HIGH
GNU Binutils 2.28 - Buffer Overflow
CVSS 7.8
CVE-2017-9755 HIGH
GNU Binutils 2.28 - Buffer Overflow in objdump i386 Disassembler
CVSS 7.8
CVE-2017-9754 HIGH
GNU Binutils 2.28 - Buffer Overflow in BFD Library via Crafted Binary File
CVSS 7.8
CVE-2017-9753 HIGH
GNU Binutils 2.28 - Buffer Overflow in versados_mkobject Function
CVSS 7.8
CVE-2017-9752 HIGH
GNU Binutils 2.28 - Buffer Overflow in BFD Library via Crafted Binary File
CVSS 7.8
CVE-2017-9751 HIGH
GNU Binutils 2.28 - Denial of Service via Crafted Binary File in rl78-decode.opc
CVSS 7.8
CVE-2017-9750 HIGH
GNU Binutils 2.28 - Buffer Overflow
CVSS 7.8
CVE-2017-9749 HIGH
GNU Binutils - Buffer Overflow in bfin-dis.c *regs* Macros
CVSS 7.8
CVE-2017-9748 HIGH
GNU Binutils 2.28 - Buffer Overflow in BFD Library via Crafted Binary File
CVSS 7.8
CVE-2017-9747 HIGH
GNU Binutils 2.28 - Buffer Overflow in ieee_archive_p Function
CVSS 7.8
CVE-2017-9746 HIGH
GNU Binutils - Buffer Overflow in objdump Disassemble Function
CVSS 7.8
CVE-2017-9745 HIGH
GNU Binutils 2.28 - Buffer Overflow in _bfd_vms_slurp_etir
CVSS 7.8
CVE-2017-9744 HIGH
GNU Binutils 2.28 - Buffer Overflow in sh_elf_set_mach_from_flags
CVSS 7.8
CVE-2017-9743 HIGH
GNU Binutils - Buffer Overflow in print_insn_score32
CVSS 7.8
CVE-2017-9742 HIGH
GNU Binutils - Buffer Overflow in score_opcodes Function via Crafted Binary File
CVSS 7.8
CVE-2017-8549 HIGH
Microsoft Edge - Memory Corruption in Scripting Engine
CVSS 7.5
Details
Vulnerabilities 13,998
Exploit Likelihood High