CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,008 vulnerabilities with CWE-119
CVE-2016-0055 HIGH
Microsoft Office 2007 SP3 - Remote Code Execution via Crafted Office Document
CVSS 7.8
CVE-2016-0054 HIGH
Microsoft Excel - Remote Code Execution via Crafted Office Document
CVSS 7.8
CVE-2016-0053 HIGH
Microsoft Office - Remote Code Execution via Crafted Office Document
CVSS 7.8
CVE-2016-0052 HIGH
Microsoft Office - Remote Code Execution via Crafted Office Document
CVSS 7.8
CVE-2016-0038 HIGH
Windows Journal - Remote Code Execution via Crafted Journal File
CVSS 7.8
CVE-2016-0022 HIGH
Microsoft Office - Remote Code Execution via Crafted Office Document
CVSS 7.8
CVE-2016-0804 CRITICAL
Android <5.1.1 LMY49G & <6.x - Memory Corruption
CVSS 9.8
CVE-2016-0803 CRITICAL
Android <4.4.4-2016-02-01 - Memory Corruption
CVSS 9.8
CVE-2016-2213 MEDIUM
FFmpeg < 2.8.6 - Denial of Service via JPEG 2000 Tile Decoding
CVSS 6.5
CVE-2016-1727 HIGH
Safari < 9.0.3 - Remote Code Execution via Memory Corruption
CVSS 8.8
CVE-2016-1726 HIGH
Safari < 9.0.3 - Remote Code Execution via Memory Corruption
CVSS 8.8
CVE-2016-1725 HIGH
WebKit <9.2.1-9.0.3 - Memory Corruption
CVSS 8.8
CVE-2016-1724 HIGH
Safari < 9.0.3 - Remote Code Execution via Memory Corruption
CVSS 8.8
CVE-2016-1723 HIGH
Safari < 9.0.2 and iPhone OS < 9.2 and watchOS < 2.1 - Remote Code Execution via Memory Corruption
CVSS 8.8
CVE-2016-1722 HIGH
Apple iOS <9.2.1, OS X <10.11.3, tvOS <9.1.1 - Memory Corruption
CVSS 7.8
CVE-2016-1721 HIGH
Apple iOS <9.2.1, OS X <10.11.3, tvOS <9.1.1 - Memory Corruption
CVSS 7.8
CVE-2016-1720 HIGH
IOKit <9.2.1-10.11.3-9.1.1 - Privilege Escalation/DoS
CVSS 7.8
CVE-2016-1719 HIGH
Apple iOS <9.2.1-OS X <10.11.3-tvOS <9.1.1 - Privilege Escalation/DoS
CVSS 7.8
CVE-2016-1718 HIGH
Apple OS X <10.11.3 - Privilege Escalation
CVSS 7.3
CVE-2016-1717 HIGH
Apple iOS <9.2.1, OS X <10.11.3, tvOS <9.1.1 - Memory Corruption
CVSS 7.8
CVE-2016-1716 HIGH
Apple OS X <10.11.3 - Privilege Escalation/DoS
CVSS 7.8
CVE-2016-1946 CRITICAL
Mozilla Firefox <44.0 - DoS
CVSS 9.8
CVE-2016-1944 CRITICAL
Firefox < 44.0 - Memory Corruption via ANGLE Buffer11::NativeBuffer11::map
CVSS 9.8
CVE-2016-1935 HIGH
Mozilla Firefox <44.0 - Firefox ESR <38.6 - RCE
CVSS 8.8
CVE-2016-1931 CRITICAL
Mozilla Firefox <44.0 - Memory Corruption
CVSS 10.0
Details
Vulnerabilities 14,008
Exploit Likelihood High