CWE-119
High likelihoodImproper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
14,009 vulnerabilities with CWE-119
CVE-2015-2491
Microsoft Internet Explorer 9-11 - Remote Code Execution via Memory Corruption
CVE-2015-2490
Microsoft Internet Explorer 7-11 - Remote Code Execution via Memory Corruption
CVE-2015-2487
Microsoft Internet Explorer 7-11 - Remote Code Execution via Memory Corruption
CVE-2015-2486
Microsoft Internet Explorer 7-11 and Edge - Remote Code Execution via Memory Corruption
CVE-2015-2485
Microsoft Edge and Internet Explorer 9-11 - Remote Code Execution via Memory Corruption
CVE-2015-3247
SPICE 0.12.4 - DoS/Privilege Escalation
CVE-2015-5624
FreeBit ELPhoneBtnV6 < - Buffer Overflow
CVE-2015-6820
FFmpeg < 2.7.2 - Denial of Service via AAC SBR Frame Handling
CVE-2015-2991
NScripter - Buffer Overflow via Crafted Save Data
CVE-2015-6274
Cisco ASR 1000 Series Software 15.5(3)S - Denial of Service via IPv4 Packet Fragmentation and Reassembly
CVE-2015-6587
OpenAFS < 1.6.13 - Authenticated Denial of Service via VL_ListAttributesN2 RPC
CVE-2015-4036
Linux Kernel < 4.0 - Memory Corruption via VHOST_SCSI_SET_ENDPOINT ioctl
CVE-2015-6750
Ricoh DL-1 SR10 < 1.1.0.6 - Remote Code Execution via Long USER Command
CVE-2015-3214
Linux kernel <2.6.33 & QEMU <2.3.1 - Use After Free
CVE-2015-1333
Linux Kernel < 4.1.4 - Denial of Service via Keyring Memory Leak
CVE-2015-1171
GSM SIM Utility <6.6 - Buffer Overflow
CVE-2015-5368
HP lt4112 LTE/HSPA+ Gobi 4G Module < 12.500.00.15.1803 - Remote Code Execution and Denial of Service
CVE-2015-5409
HP Version Control Repository Manager < 7.4.0 - Authenticated Buffer Overflow
CVE-2015-5949
VideoLAN VLC media player <2.2.1 - RCE/DoS
CVE-2015-5786
Apple QuickTime < 7.7.7 - Remote Code Execution via Crafted File
CVE-2015-5785
Apple QuickTime < 7.7.8 - Remote Code Execution via Crafted File
CVE-2015-4323
Cisco NX-OS - Denial of Service via Crafted ARP Packet
CVE-2015-4324
Cisco NX-OS - Denial of Service via Malformed IGMPv3 Packet
CVE-2015-5783
IOGraphics <10.10.5 - Memory Corruption
CVE-2015-5779
QuickTime 7 - Apple OS X <10.10.5 - RCE/DoS
Details
Vulnerabilities
14,009
Exploit Likelihood
High