CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,999 vulnerabilities with CWE-119
CVE-2017-8536 MEDIUM
Microsoft Malware Protection Engine - Denial of Service via Crafted File Scan
CVSS 5.5
CVE-2017-8535 MEDIUM
Microsoft Malware Protection Engine - Denial of Service via Crafted File Scan
CVSS 5.5
CVE-2017-2819 HIGH
Hancom Hangul Word Processor 9.6.1.4350 - Heap-Based Buffer Overflow via Crafted Document Stream
CVSS 8.8
CVE-2017-2817 HIGH
PowerISO 6.8 - Stack Buffer Overflow in ISO Parsing
CVSS 8.8
CVE-2017-2799 HIGH
MarkLogic 8.0-6 - Heap Corruption via Crafted XLS File in DMC HTMLFilter
CVSS 8.3
CVE-2017-2798 HIGH
MarkLogic 8.0-6 - Heap Corruption via Crafted XLS File in DMC HTMLFilter
CVSS 8.3
CVE-2017-8311 HIGH
VideoLAN VLC < 2.2.5 - Heap-Based Buffer Overflow via Crafted Subtitles File
CVSS 7.8
CVE-2017-2797 HIGH
MarkLogic 8.0-6 - Heap Overflow in HTMLFilter ParseEnvironment
CVSS 8.3
CVE-2017-2794 HIGH
MarkLogic 8.0-6 - Stack-Based Buffer Overflow via DMC HTMLFilter DHFSummary
CVSS 8.3
CVE-2017-2793 HIGH
Antenna House DMC HTMLFilter as shipped with MarkLogic 8.0-6 - Heap Corruption via Crafted XLS File
CVSS 8.3
CVE-2017-2783 HIGH
MarkLogic 8.0-6 - Heap Corruption via Crafted XLS File in HTMLFilter
CVSS 8.3
CVE-2017-9192 CRITICAL
AutoTrace 0.31.1 - Heap-Based Buffer Overflow in ReadImage Function
CVSS 9.8
CVE-2017-9191 CRITICAL
AutoTrace <0.31.1 - Buffer Overflow
CVSS 9.8
CVE-2017-9173 CRITICAL
AutoTrace <0.31.1 - Buffer Overflow
CVSS 9.8
CVE-2017-9172 CRITICAL
AutoTrace 0.31.1 - Heap-Based Buffer Overflow in ReadImage Function
CVSS 9.8
CVE-2017-9170 CRITICAL
AutoTrace 0.31.1 - Heap-Based Buffer Overflow in ReadImage Function
CVSS 9.8
CVE-2017-9169 CRITICAL
AutoTrace <0.31.1 - Buffer Overflow
CVSS 9.8
CVE-2017-9168 CRITICAL
AutoTrace 0.31.1 - Heap-Based Buffer Overflow in ReadImage Function
CVSS 9.8
CVE-2017-9167 CRITICAL
AutoTrace 0.31.1 - Heap-Based Buffer Overflow in ReadImage Function
CVSS 9.8
CVE-2017-9163 CRITICAL
AutoTrace <0.31.1 - Buffer Overflow
CVSS 9.8
CVE-2017-9160 CRITICAL
AutoTrace 0.31.1 - Stack-based Buffer Overflow in pnmscanner_gettoken
CVSS 9.8
CVE-2017-9153 CRITICAL
AutoTrace <0.31.1 - Buffer Overflow
CVSS 9.8
CVE-2017-9151 CRITICAL
AutoTrace 0.31.1 - Heap-Based Buffer Overflow in pnm_load_ascii Function
CVSS 9.8
CVE-2017-9146 HIGH
ytnef < 1.9.2 - Heap-Based Buffer Overflow via Crafted TNEF File
CVSS 8.8
CVE-2017-6999 HIGH
Apple <10.3.2, <10.2.1, <3.2.2 - RCE/DoS
CVSS 7.8
Details
Vulnerabilities 13,999
Exploit Likelihood High