CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,011 vulnerabilities with CWE-119
CVE-2014-9187 CRITICAL
Honeywell Experion PKS <R400 - Buffer Overflow
CVSS 9.8
CVE-2014-9998 CRITICAL
Qualcomm MDM9206 and Snapdragon Firmware - Buffer Overflow in Firmware Image Signature Processing
CVSS 9.8
CVE-2014-9997 CRITICAL
Qualcomm Snapdragon Mobile and Wear Firmware - Buffer Over-Read in PRDiagMaintenanceHandler
CVSS 9.8
CVE-2014-9996 CRITICAL
Qualcomm Snapdragon Mobile SD 400 and SD 800 Firmware - Buffer Overflow in Provisioning Verification
CVSS 9.8
CVE-2014-9995 CRITICAL
Qualcomm Snapdragon Mobile SD 400 and SD 800 Firmware - Buffer Overflow in drmprov_cmd_verify_key()
CVSS 9.8
CVE-2014-9994 CRITICAL
Qualcomm Snapdragon Mobile SD 400 and SD 800 Firmware - Buffer Overflow via Integer Overflow
CVSS 9.8
CVE-2014-9993 CRITICAL
Qualcomm MDM9206 and Snapdragon Firmware - Buffer Overread during Content Provisioning
CVSS 9.8
CVE-2014-9991 CRITICAL
Qualcomm Snapdragon Mobile and Wear Firmware - Buffer Overflow via USB Mass Storage Transfer
CVSS 9.8
CVE-2014-9988 CRITICAL
Qualcomm Snapdragon Firmware - Buffer Over-Read in drm_app_encapsulate_save_keys
CVSS 9.8
CVE-2014-9987 CRITICAL
Qualcomm Snapdragon Firmware - Buffer Over-Read in DRM API
CVSS 9.8
CVE-2014-9986 HIGH
Qualcomm MSM8909W and Snapdragon Firmware - Memory Overread in playready_licacq_process_response()
CVSS 7.5
CVE-2014-10056 CRITICAL
Qualcomm SD 210/SD 212/SD 205 Firmware - Buffer Overflow via OpenCL clBuildProgram
CVSS 9.8
CVE-2014-10052 CRITICAL
Qualcomm Snapdragon SoC - Memory Information Disclosure via TZ Subsystem
CVSS 9.8
CVE-2014-10045 CRITICAL
Qualcomm MDM9206 and related firmwares - Buffer Overflow in Sahara Boot Program Header Parsing
CVSS 9.8
CVE-2014-10043 HIGH
Qualcomm MSM8909W SD 210/212/205 SD 400 SD 410/12 SD 800 Firmware - Buffer Over-Read via PlayReady Rights String
CVSS 7.5
CVE-2014-0158 HIGH
OpenJPEG < 1.5.2 - Heap-Based Buffer Overflow in JPEG2000 Tile Decoder
CVSS 8.8
CVE-2014-1215 HIGH
Core FTP Server < 1.2 - Buffer Overflow via Config File and Registry Handling
CVSS 7.8
CVE-2014-10072 CRITICAL
zsh < 5.0.6 - Buffer Overflow in Directory Path Scanner
CVSS 9.8
CVE-2014-10071 CRITICAL
zsh < 5.0.7 - Buffer Overflow via Long File Descriptor in Redirection Syntax
CVSS 9.8
CVE-2014-8985 HIGH
Microsoft Internet Explorer 11 - Memory Corruption
CVSS 7.5
CVE-2014-4145 HIGH
Microsoft Internet Explorer 11 - Memory Corruption
CVSS 7.5
CVE-2014-4112 HIGH
Microsoft Internet Explorer 11 - Memory Corruption
CVSS 7.5
CVE-2014-4066 HIGH
Microsoft Internet Explorer 11 - Memory Corruption
CVSS 7.5
CVE-2014-4705 HIGH
Huawei eSap Platform - Remote Denial of Service via Crafted Packet Length Field
CVSS 7.5
CVE-2014-7221 MEDIUM
TeamSpeak 3 < 3.0.14 - Authenticated Denial of Service via Crafted BBCode Image Tag
CVSS 6.5
Details
Vulnerabilities 14,011
Exploit Likelihood High