CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

14,011 vulnerabilities with CWE-119
CVE-2014-9092 MEDIUM
libjpeg-turbo < 1.3.1 - Denial of Service via Crafted JPEG Exif Marker
CVSS 6.5
CVE-2014-9474 CRITICAL
GNU MPFR <3.1.2-p11 - Buffer Overflow
CVSS 9.8
CVE-2014-9497 HIGH
mpg123 < 1.17.0 - Buffer Overflow
CVSS 7.5
CVE-2014-7859 CRITICAL
D-Link DNS-322L Firmware < 2.00b07 - Stack-Based Buffer Overflow via Malformed Host and Referer Headers
CVSS 9.8
CVE-2014-9981 CRITICAL
Google Android - Memory Corruption
CVSS 9.8
CVE-2014-9980 CRITICAL
Qualcomm Android CAF - Memory Corruption via Sample App Length Check Bypass
CVSS 9.8
CVE-2014-9979 CRITICAL
Qualcomm Products with Android CAF Linux Kernel - Memory Corruption via Uninitialized Variable in TrustZone System Call
CVSS 9.8
CVE-2014-9978 CRITICAL
Qualcomm Products with Android CAF - Buffer Overflow in QTEE Service
CVSS 9.8
CVE-2014-9977 CRITICAL
Qualcomm Android PlayReady DRM - Buffer Overflow
CVSS 9.8
CVE-2014-9976 CRITICAL
Google Android - Memory Corruption
CVSS 9.8
CVE-2014-9974 CRITICAL
Google Android - Memory Corruption
CVSS 9.8
CVE-2014-9973 CRITICAL
Qualcomm Android CAF - Memory Corruption in PlayReady DRM Buffer Validation
CVSS 9.8
CVE-2014-9968 CRITICAL
Qualcomm Android CAF - Buffer Overflow in UIMDIAG Interface
CVSS 9.8
CVE-2014-0145 HIGH
QEMU <1.7.2, <2.0.0 - Buffer Overflow
CVSS 7.8
CVE-2014-1235 HIGH
Graphviz 2.34.0 - Stack-Based Buffer Overflow in yyerror Function
CVSS 7.8
CVE-2014-6354 HIGH
Internet Explorer 6-11 - Remote Code Execution
CVSS 7.5
CVE-2014-9963 HIGH
Android - Buffer Overflow in WideVine DRM
CVSS 7.8
CVE-2014-9960 HIGH
Android - Buffer Overflow in PlayReady API
CVSS 7.8
CVE-2014-9984 CRITICAL
glibc < 2.19 - Buffer Overflow in nscd Netgroup Request Handling
CVSS 9.8
CVE-2014-6031 MEDIUM
F5 BIG-IP LTM 10.x-11.6.0 Authenticated DoS via mcpq Daemon Buffer Overflow
CVSS 4.9
CVE-2014-9929 HIGH
Android WCDMA - Use-After-Free via Out-of-range Pointer Offset
CVSS 7.8
CVE-2014-9928 HIGH
Android GERAN - Buffer Overflow
CVSS 7.8
CVE-2014-9927 HIGH
Android UIM - Buffer Overflow
CVSS 7.8
CVE-2014-9925 HIGH
Android - Buffer Overflow in HDR
CVSS 7.8
CVE-2014-9923 HIGH
Android NAS - Buffer Overflow in Memory Copy Operation
CVSS 7.8
Details
Vulnerabilities 14,011
Exploit Likelihood High