CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,006 vulnerabilities with CWE-119
CVE-2016-7866 CRITICAL
Adobe Animate <= 15.2.1.95 - Memory Corruption
CVSS 9.8
CVE-2016-7856 CRITICAL
Adobe DNG Converter <= 9.7 - Memory Corruption
CVSS 9.8
CVE-2016-9203 HIGH
Cisco ASR 5000 Series Software 20.2.3 20.2.3.65026 - Unauthenticated Denial of Service via IKEv2 Packet Processing
CVSS 7.5
CVE-2016-2334 HIGH
7-zip < 16.00 - Remote Code Execution via Crafted HFS+ Image
CVSS 7.8
CVE-2016-7953 CRITICAL
Fedora < 1.0.9 - Memory Corruption
CVSS 9.8
CVE-2016-5407 CRITICAL
X.org libXv < 1.0.11 - Memory Corruption via XvQueryAdaptors and XvQueryEncodings
CVSS 9.8
CVE-2016-6699 HIGH
Android < 7.0 - Remote Code Execution in libstagefright via Crafted Media File
CVSS 7.8
CVE-2016-5688 HIGH
ImageMagick <6.9.4-4,7.x <7.0.1-5 - Buffer Overflow
CVSS 8.1
CVE-2016-9937 HIGH
Asterisk 13.12.x-13.13.x < 13.13.1 and 14.x < 14.2.1 - Unauthenticated Denial of Service via Opus SDP Parameter Parsing
CVSS 7.5
CVE-2016-9632 MEDIUM
Tats W3m < 0.5.3-32 - Memory Corruption
CVSS 6.5
CVE-2016-9630 MEDIUM
Tats W3m < 0.5.3-32 - Memory Corruption
CVSS 6.5
CVE-2016-9627 MEDIUM
tats/w3m < 0.5.3-32 - Denial of Service via Heap Buffer Overflow
CVSS 6.5
CVE-2016-9626 MEDIUM
Tats W3m < 0.5.3-32 - Memory Corruption
CVSS 6.5
CVE-2016-9625 MEDIUM
tats/w3m < 0.5.3-32 - Denial of Service via Infinite Recursion
CVSS 6.5
CVE-2016-9442 MEDIUM
Tats W3m < 0.5.3-30 - Memory Corruption
CVSS 6.5
CVE-2016-9439 MEDIUM
Tats W3m < 0.5.3-30 - Memory Corruption
CVSS 6.5
CVE-2016-9437 MEDIUM
tats/w3m < 0.5.3-30 - Denial of Service via Crafted HTML Page
CVSS 6.5
CVE-2016-9432 MEDIUM
tats w3m < 0.5.3-30 - Denial of Service via Crafted HTML Page
CVSS 6.5
CVE-2016-9431 MEDIUM
Tats W3m < 0.5.3-30 - Memory Corruption
CVSS 6.5
CVE-2016-9429 HIGH
Tats W3m < 0.5.3-30 - Memory Corruption
CVSS 8.8
CVE-2016-9428 HIGH
Tats W3m < 0.5.3-30 - Memory Corruption
CVSS 8.8
CVE-2016-9427 CRITICAL
bdwgc < 7.4.4 - Heap Buffer Overflow via Huge Allocation
CVSS 9.8
CVE-2016-9425 HIGH
Tats W3m < 0.5.3-30 - Memory Corruption
CVSS 8.8
CVE-2016-9424 HIGH
Tats W3m < 0.5.3-30 - Memory Corruption
CVSS 8.8
CVE-2016-9423 HIGH
Tats W3m < 0.5.3-30 - Memory Corruption
CVSS 8.8
Details
Vulnerabilities 14,006
Exploit Likelihood High