CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,008 vulnerabilities with CWE-119
CVE-2016-1768 HIGH
Apple OS X <10.11.4 - Memory Corruption
CVSS 7.8
CVE-2016-1767 HIGH
QuickTime <10.11.4 - Memory Corruption
CVSS 7.8
CVE-2016-1765 HIGH
Apple Xcode <7.3 - Privilege Escalation/DoS
CVSS 7.8
CVE-2016-1762 HIGH
libxml2 <2.9.4 - DoS
CVSS 8.1
CVE-2016-1761 CRITICAL
Apple iPhone OS < 9.2.1, macOS < 10.11.3, watchOS < 2.1 - Remote Code Execution via Crafted XML Document
CVSS 9.8
CVE-2016-1759 HIGH
macOS < 10.11.4 - Remote Code Execution via Memory Corruption
CVSS 7.8
CVE-2016-1758 LOW
Apple iOS <9.3 & OS X <10.11.4 - Info Disclosure/DoS
CVSS 3.3
CVE-2016-1755 HIGH
Apple iOS <9.3 - Privilege Escalation
CVSS 7.8
CVE-2016-1754 HIGH
Apple iOS <9.3, OS X <10.11.4, tvOS <9.2, watchOS <2.2 - RCE/DoS
CVSS 7.8
CVE-2016-1749 HIGH
Apple OS X < 10.11.4 - Memory Corruption in IOUSBFamily
CVSS 7.8
CVE-2016-1747 HIGH
macOS < 10.11.4 - Remote Code Execution via IOGraphics Memory Corruption
CVSS 7.8
CVE-2016-1746 HIGH
macOS < 10.11.4 - Remote Code Execution via IOGraphics Memory Corruption
CVSS 7.8
CVE-2016-1744 HIGH
macOS < 10.11.4 - Memory Corruption in Intel Graphics Driver
CVSS 7.8
CVE-2016-1743 HIGH
macOS < 10.11.4 - Memory Corruption in Intel Graphics Driver
CVSS 7.8
CVE-2016-1741 CRITICAL
Apple macOS X < 10.11.4 - Memory Corruption in NVIDIA Graphics Driver
CVSS 9.8
CVE-2016-1740 HIGH
Apple iOS <9.3, OS X <10.11.4, tvOS <9.2, watchOS <2.2 - RCE
CVSS 7.8
CVE-2016-1737 MEDIUM
Carbon <10.11.4 - Memory Corruption
CVSS 6.3
CVE-2016-1736 HIGH
macOS < 10.11.4 - Remote Code Execution or Denial of Service via Bluetooth
CVSS 7.8
CVE-2016-1735 HIGH
macOS < 10.11.4 - Remote Code Execution via Bluetooth
CVSS 7.8
CVE-2016-1734 MEDIUM
Apple iOS <9.2.1 and OS X <10.11.3 - Memory Corruption via Crafted USB Device
CVSS 6.8
CVE-2016-1733 HIGH
Apple OS X < 10.11.4 - Memory Corruption in AppleRAID
CVSS 7.8
CVE-2016-1732 MEDIUM
Apple OS X <10.11.4 - Info Disclosure/DoS
CVSS 5.5
CVE-2016-3191 CRITICAL
PCRE < 8.39 and PCRE2 < 10.22 - Stack-Based Buffer Overflow via (*ACCEPT) Pattern Handling
CVSS 9.8
CVE-2016-2345 CRITICAL
DameWare Mini Remote Control 12.0 - Stack-Based Buffer Overflow via Crafted String
CVSS 9.8
CVE-2016-2342 HIGH
Quagga < 1.0.20160309 - Remote Code Execution via VPNv4 NLRI Parser
CVSS 8.1
Details
Vulnerabilities 14,008
Exploit Likelihood High