CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,008 vulnerabilities with CWE-119
CVE-2015-6460
3S-Smart CODESYS Gateway Server < 2.3.9.34 - Remote Code Execution via Opcode 0x3ef or 0x3f0
CVE-2015-7243
Boxoft WAV to MP3 Converter - Buffer Overflow via Crafted WAV File
CVE-2015-5903
macOS < 10.10.5 and iPhone OS < 8.4.1 - Memory Corruption
CVE-2015-5899
macOS < 10.10.5 and iOS < 8.4.1 - Memory Corruption in libpthread
CVE-2015-5896
Apple iOS <9 - Privilege Escalation/DoS
CVE-2015-5876
Apple watchOS iOS < 9 and macOS < 10.10.5 - Memory Corruption via Crafted App
CVE-2015-5874
Apple iOS <9 - iTunes <12.3 - Memory Corruption
CVE-2015-5868
macOS < 10.10.5 and iOS < 8.4.1 - Memory Corruption
CVE-2015-5867
Apple iOS < 9 - Memory Corruption in IOHIDFamily
CVE-2015-5862
Apple iOS <9 - Memory Corruption/DoS
CVE-2015-5848
Apple iOS <9 - Memory Corruption
CVE-2015-5847
Apple iOS < 9 - Memory Corruption in Disk Images
CVE-2015-5846
watchOS and iPhone OS < 8.4.1 - Memory Corruption in IOKit
CVE-2015-5845
watchOS and iPhone OS < 8.4.1 - Remote Code Execution via Memory Corruption
CVE-2015-5844
Apple iOS < 9 and watchOS - Memory Corruption via Crafted App
CVE-2015-5843
iPhone OS < 8.4.1 - Memory Corruption in IOMobileFrameBuffer
CVE-2015-5840
Apple iOS < 9 - Denial of Service via Crafted Data in checkint Division Routines
CVE-2015-5829
iPhone OS < 8.4.1 - Remote Code Execution via Crafted Text File
CVE-2015-5823
Apple WebKit JavaScriptCore - Crafted Web Site Memory Corruption Code Execution
CVE-2015-5822
Safari < 8.0.8 - Remote Code Execution via Memory Corruption
CVE-2015-5821
Safari < 8.0.8 - Remote Code Execution via Memory Corruption
CVE-2015-5819
Apple WebKit - Crafted Web Site Memory Corruption Code Execution
CVE-2015-5818
Apple WebKit - Crafted Web Site Memory Corruption Code Execution
CVE-2015-5817
Safari < 8.0.8 - Remote Code Execution via Memory Corruption
CVE-2015-5816
Apple WebKit JavaScriptCore - Crafted Web Site Memory Corruption Code Execution
Details
Vulnerabilities 14,008
Exploit Likelihood High