CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,002 vulnerabilities with CWE-119
CVE-2016-8729 HIGH
Artifex MuPDF <1.9 - Memory Corruption
CVSS 7.8
CVE-2016-8384 HIGH
AntennaHouse DMC HTMLFilter - Memory Corruption
CVSS 8.8
CVE-2016-8383 HIGH
AntennaHouse DMC HTMLFilter - Memory Corruption
CVSS 8.8
CVE-2016-8382 HIGH
AntennaHouse DMC HTMLFilter - Memory Corruption
CVSS 8.3
CVE-2016-9601 MEDIUM
gpl_ghostscript < 9.21 - Heap-Based Buffer Overflow in JBIG2 Gray Scale Image Decoding
CVSS 5.3
CVE-2016-9586 MEDIUM
curl < 7.52.0 - Buffer Overflow via Large Floating Point Output in printf Implementation
CVSS 5.9
CVE-2016-10497 HIGH
Qualcomm MDM9206 and Snapdragon Firmware - Heap Memory Leak via Improper CFG Allocation
CVSS 7.5
CVE-2016-10493 CRITICAL
Qualcomm MDM9206 and related firmware - Memory Corruption via NPA RootPD Pointer Validation
CVSS 9.8
CVE-2016-10486 CRITICAL
Qualcomm Mdm9640 Firmware - Memory Corruption
CVSS 9.8
CVE-2016-10485 CRITICAL
Qualcomm MDM9206 and Snapdragon Firmware - Buffer Overflow
CVSS 9.8
CVE-2016-10484 CRITICAL
Qualcomm Snapdragon Firmware - Buffer Overflow via RPMB Listener Buffer Size Underflow
CVSS 9.8
CVE-2016-10477 CRITICAL
Qualcomm Snapdragon Mobile - Buffer Overflow in Smart Card Request Processing
CVSS 9.8
CVE-2016-10476 CRITICAL
Qualcomm MDM9206 and Snapdragon Firmware - Buffer Overflow via qcril_uim_clear_encrypted_pin Array Index
CVSS 9.8
CVE-2016-10474 CRITICAL
Qualcomm Snapdragon Firmware - Buffer Overflow via RIL Interface
CVSS 9.8
CVE-2016-10473 CRITICAL
Qualcomm Snapdragon Mobile and Wear Firmware - Buffer Overflow in Supplementary Services Function
CVSS 9.8
CVE-2016-10461 CRITICAL
Qualcomm MDM9650 SD 650/52 SD 808 SD 810 SD 820 SDX20 Firmware - Buffer Overread
CVSS 9.8
CVE-2016-10460 CRITICAL
Qualcomm Snapdragon Mobile SD 835, SD 845, and SD 850 Firmware - Buffer Over-read via Vendor-Specific Opcode
CVSS 9.8
CVE-2016-10458 CRITICAL
Qualcomm Snapdragon Mobile Firmware - Memory Corruption via qsee_log Buffer Handling
CVSS 9.8
CVE-2016-10450 CRITICAL
Qualcomm Small Cell SoC, Snapdragon Mobile, and Snapdragon Wear - Stack-based Buffer Overflow in Thermal Service
CVSS 9.8
CVE-2016-10448 CRITICAL
Qualcomm Snapdragon Mobile and Wear Firmware - Memory Corruption via Simultaneous addSA/updateSA Commands
CVSS 9.8
CVE-2016-10441 CRITICAL
Qualcomm Snapdragon Mobile and Wear Firmware - Buffer Overflow in Video Parser
CVSS 9.8
CVE-2016-10436 CRITICAL
Qualcomm Small Cell SoC, Snapdragon Mobile, Wear - Memory Corruption via Fuse Read Request
CVSS 9.8
CVE-2016-10433 HIGH
Qualcomm Snapdragon Firmware - Memory Corruption via SSD Image Decryption TOCTOU
CVSS 8.1
CVE-2016-10427 HIGH
Qualcomm MDM9206 and Snapdragon Firmware - Denial of Service via RLC AM Module Boundary Check
CVSS 7.5
CVE-2016-10426 CRITICAL
Qualcomm Snapdragon Firmware Buffer Overflow in SafeSwitch
CVSS 9.8
Details
Vulnerabilities 14,002
Exploit Likelihood High