CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,008 vulnerabilities with CWE-119
CVE-2015-5277
GNU C Library <2.20 - DoS/Privilege Escalation
CVE-2015-7221
Firefox < 42.0 - Buffer Overflow in nsDeque::GrowCapacity
CVE-2015-7220
Opensuse Leap < 42.0 - Memory Corruption
CVE-2015-7217
Firefox < 42.0 - Denial of Service via TGA Image Heap Overflow
CVE-2015-7203
Firefox < 42.0 - Buffer Overflow in DirectWriteFontInfo::LoadFontFamilyData
CVE-2015-7202
Firefox < 42.0 - Remote Code Execution via Memory Corruption
CVE-2015-7201
Fedora < 42.0 - Memory Corruption
CVE-2015-8572
Autodesk Design Review <2013 Hotfix 2 - Buffer Overflow
CVE-2015-8317
libxml2 <2.9.3 - Info Disclosure
CVE-2015-8242
libxml2 <2.9.3 - DoS/Info Disclosure
CVE-2015-8241
libxml2 <2.9.2 - DoS/Info Disclosure
CVE-2015-7500
libxml2 <2.9.3 - DoS
CVE-2015-7499
libxml2 < 2.9.2 - Heap-based Buffer Overflow via xmlGROW Function
CVE-2015-7498
libxml2 <2.9.3 - Buffer Overflow
CVE-2015-7497
libxml2 <2.9.3 - Buffer Overflow
CVE-2015-8561
Schneider Electric ProClima <6.2 - RCE
CVE-2015-7918
Schneider Electric ProClima <6.2 - Buffer Overflow
CVE-2015-6359
Cisco IOS 15.3(3)S0.1 - Denial of Service via Neighbor Discovery Message Flood
CVE-2015-7113
iPhone OS < 9.2 and watchOS < 2.1 - Remote Code Execution via Malformed plist
CVE-2015-7112
Apple iOS <9.2, macOS <10.11.2, tvOS <9.1, watchOS <2.1 - Memory Corruption in IOHIDFamily API
CVE-2015-7111
Apple iOS <9.2, OS X <10.11.2, tvOS <9.1, watchOS <2.1 - Memory Corruption in IOHIDFamily API
CVE-2015-7110
Apple macOS X < 10.11.2 and iPhone OS < 9.1 - Memory Corruption in Disk Images
CVE-2015-7109
Apple OS X < 10.11.2 and tvOS < 9.1 - Remote Code Execution in IOAcceleratorFamily
CVE-2015-7108
macOS X < 10.11.2 - Memory Corruption via Bluetooth HCI Interface
CVE-2015-7107
Apple iOS < 9.2 and macOS < 10.11.2 - Remote Code Execution via Crafted iWork File
Details
Vulnerabilities 14,008
Exploit Likelihood High