CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,006 vulnerabilities with CWE-119
CVE-2016-7447 CRITICAL
GraphicsMagick < 1.3.25 - Heap-Based Buffer Overflow in EscapeParenthesis
CVSS 9.8
CVE-2016-7446 CRITICAL
GraphicsMagick 1.3.24 - Buffer Overflow in MVG and SVG Rendering
CVSS 9.8
CVE-2016-10154 MEDIUM
Linux Kernel 4.9.x < 4.9.1 - Denial of Service via SMB Hash Scatterlist Handling
CVSS 5.5
CVE-2016-4796 MEDIUM
OpenJPEG < 2.1.1 - Heap-Based Buffer Overflow in color_cmyk_to_rgb
CVSS 5.5
CVE-2016-2317 MEDIUM
GraphicsMagick 1.3.23 - Denial of Service via Crafted SVG File
CVSS 5.5
CVE-2016-6115 HIGH
IBM General Parallel File System - Buffer Overflow
CVSS 7.2
CVE-2016-6042 HIGH
IBM AppScan Enterprise Edition - RCE
CVSS 7.3
CVE-2016-5985 HIGH
IBM Tivoli Storage Manager < - Buffer Overflow
CVSS 7.8
CVE-2016-10164 CRITICAL
libXpm < 3.5.12 - Heap-Based Buffer Overflow via Crafted XPM File
CVSS 9.8
CVE-2016-8703 HIGH
potrace < 1.12 - Heap-based Buffer Overflow in bm_readbody_bmp
CVSS 7.8
CVE-2016-8702 HIGH
potrace < 1.12 - Heap-based Buffer Overflow in bm_readbody_bmp
CVSS 7.8
CVE-2016-8701 HIGH
potrace < 1.12 - Heap-based Buffer Overflow in bm_readbody_bmp
CVSS 7.8
CVE-2016-8700 HIGH
potrace < 1.12 - Heap-Based Buffer Overflow in bm_readbody_bmp
CVSS 7.8
CVE-2016-8699 HIGH
potrace < 1.12 - Heap-based Buffer Overflow in bm_readbody_bmp
CVSS 7.8
CVE-2016-8698 HIGH
potrace < 1.12 - Heap-Based Buffer Overflow in bm_readbody_bmp
CVSS 7.8
CVE-2016-8686 HIGH
potrace < 1.12 - Memory Allocation Failure in bm_new Function
CVSS 7.8
CVE-2016-8685 MEDIUM
potrace < 1.12 - Denial of Service via Crafted BMP Image
CVSS 5.5
CVE-2016-2519 MEDIUM
NTP < 4.2.8p7 and 4.3.x < 4.3.92 - Denial of Service via Large Request Data Value
CVSS 5.9
CVE-2016-8575 CRITICAL
tcpdump < 4.8.1 - Buffer Overflow in Q.933 Parser
CVSS 9.8
CVE-2016-8574 CRITICAL
tcpdump < 4.8.1 - Buffer Overflow in FRF.15 Parser
CVSS 9.8
CVE-2016-7993 CRITICAL
tcpdump < 4.8.1 - Buffer Overflow in util-print.c:relts_print()
CVSS 9.8
CVE-2016-7992 CRITICAL
tcpdump < 4.8.1 - Buffer Overflow in Classical IP over ATM Parser
CVSS 9.8
CVE-2016-7986 CRITICAL
tcpdump < 4.8.1 - Buffer Overflow in GeoNetworking Parser
CVSS 9.8
CVE-2016-7985 CRITICAL
tcpdump < 4.8.1 - Buffer Overflow in CALM FAST Parser
CVSS 9.8
CVE-2016-7984 CRITICAL
tcpdump < 4.8.1 - Buffer Overflow in TFTP Parser
CVSS 9.8
Details
Vulnerabilities 14,006
Exploit Likelihood High