CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,008 vulnerabilities with CWE-119
CVE-2015-5937
Apple iOS <9.1, OS X <10.11.1, watchOS <2.0.1 - Memory Corruption
CVE-2015-5936
ImageIO - Memory Corruption
CVE-2015-5935
Apple iOS < 9.1, OS X < 10.11.1, watchOS < 2.0.1 - Memory Corruption
CVE-2015-5934
Apple OS X <10.11.1 - Memory Corruption
CVE-2015-5933
Apple OS X <10.11.1 - Memory Corruption
CVE-2015-5931
iTunes < 12.3.1 - Remote Code Execution via Crafted Web Site
CVE-2015-5930
iTunes < 12.3.1 - Remote Code Execution via Crafted Web Site
CVE-2015-5929
iTunes < 12.3.1 - Remote Code Execution via Crafted Web Site
CVE-2015-5928
Apple WebKit - Crafted Web Site Memory Corruption Code Execution
CVE-2015-5927
Apple iOS <9.1, OS X <10.11.1, watchOS <2.0.1 - RCE
CVE-2015-5926
Apple iOS <9.1, OS X <10.11.1, watchOS <2.0.1 - RCE
CVE-2015-5925
Apple iOS <9.1, OS X <10.11.1, watchOS <2.0.1 - RCE
CVE-2015-5924
Apple iOS <9.1 & OS X <10.11.1 - RCE
CVE-2015-7017
Apple iTunes < 12.3.1 - Remote Code Execution via Crafted Font File
CVE-2015-7005
iPhone OS < 9.0.2 - Remote Code Execution via WebKit Memory Corruption
CVE-2015-6992
iTunes < 12.3.1 - Remote Code Execution via Crafted Font File
CVE-2015-6982
iPhone OS < 9.0.2 - Remote Code Execution via WebKit Memory Corruption
CVE-2015-6981
iPhone OS < 9.0.2 - Remote Code Execution via WebKit Memory Corruption
CVE-2015-6979
iPhone OS < 9.0.2 and watchOS < 2.0 - Remote Code Execution via GasGauge Memory Corruption
CVE-2015-6975
iTunes < 12.3.1 - Remote Code Execution via Crafted Font File
CVE-2015-7860
Persistent Accelerite Radia Client Automation <9.1 - Buffer Overflow
CVE-2015-5283
Linux Kernel < 4.2.2 - Denial of Service via SCTP Socket Initialization
CVE-2015-5156
Linux Kernel < 4.2 - Denial of Service via Virtio Net FRAGLIST Feature
CVE-2015-7034
Apple iWork < 2.5.4 and Pages < 5.5.3 - Remote Code Execution via Crafted Pages Document
CVE-2015-7033
Apple iWork < 2.6, Keynote < 6.6, Pages < 5.6, Numbers < 3.6 - Remote Code Execution via Crafted Document
Details
Vulnerabilities
14,008
Exploit Likelihood
High