CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,008 vulnerabilities with CWE-119
CVE-2016-7202 HIGH
Microsoft Edge - Remote Code Execution via Scripting Engine Memory Corruption
CVSS 7.5
CVE-2016-7198 HIGH
Microsoft Edge and Internet Explorer 9-11 - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2016-7196 HIGH
Microsoft Edge and Internet Explorer - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2016-7195 HIGH
Microsoft Internet Explorer 9-11 and Edge - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2016-7184 HIGH
Microsoft Windows - Privilege Escalation in Common Log File System Driver
CVSS 7.8
CVE-2016-3343 HIGH
Microsoft Windows - Privilege Escalation via Common Log File System Driver
CVSS 7.8
CVE-2016-3342 HIGH
Microsoft Windows - Privilege Escalation via Common Log File System Driver
CVSS 7.8
CVE-2016-3340 HIGH
Microsoft Windows - Privilege Escalation in Common Log File System Driver
CVSS 7.8
CVE-2016-3338 HIGH
Microsoft Windows - Local Privilege Escalation via Common Log File System Driver
CVSS 7.8
CVE-2016-3335 HIGH
Microsoft Windows - Privilege Escalation in Common Log File System Driver
CVSS 7.8
CVE-2016-3334 HIGH
Microsoft Windows - Privilege Escalation in Common Log File System Driver
CVSS 7.8
CVE-2016-3333 HIGH
Microsoft Windows - Privilege Escalation via Common Log File System Driver
CVSS 7.8
CVE-2016-3332 HIGH
Microsoft Windows - Privilege Escalation in Common Log File System Driver
CVSS 7.8
CVE-2016-0026 HIGH
Microsoft Windows - Local Privilege Escalation via Common Log File System Driver
CVSS 7.8
CVE-2016-8812 HIGH
NVIDIA GeForce Experience <GFE 2.11.4.125-3.1.0.52 - Buffer Overflow
CVSS 8.8
CVE-2016-9176 CRITICAL
Micro Focus Rumba <9.4 - Buffer Overflow
CVSS 9.8
CVE-2016-6448 CRITICAL
Cisco Meeting Server < 2.0.3 and Acano Server < 1.9.5 - Unauthenticated Remote Code Execution via SDP Parser
CVSS 9.8
CVE-2016-6447 CRITICAL
Cisco Meeting Server and Meeting App - Remote Code Execution
CVSS 9.8
CVE-2016-6441 CRITICAL
Cisco IOS XE 3.17.0S-3.18.1S - Unauthenticated Remote Code Execution via TL1 Code
CVSS 9.8
CVE-2016-9136 HIGH
Artifex MuJS < 2016-10-31 - Buffer Over-read via Crafted JavaScript
CVSS 7.5
CVE-2016-8203 HIGH
Brocade NetIron OS - Memory Corruption
CVSS 7.5
CVE-2016-9118 MEDIUM
OpenJPEG 2.1.2 - Heap Buffer Overflow in pnmtoimage Function
CVSS 5.3
CVE-2016-9115 MEDIUM
OpenJPEG 2.1.2 - Heap Buffer Over-read in imagetotga Function
CVSS 6.5
CVE-2016-7505 CRITICAL
Artifex MuJS < a3a4fe840b80706c706e86160352af5936f292d8 - Buffer Overflow in divby Function
CVSS 9.8
CVE-2016-4396 HIGH
HPE System Management Homepage <7.6 - Buffer Overflow
CVSS 7.5
Details
Vulnerabilities 14,008
Exploit Likelihood High