Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-125

CWE-125

Out-of-bounds Read

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product reads data past the end, or before the beginning, of the intended buffer.

8,784 vulnerabilities with CWE-125

CVE-2026-35201 MEDIUM

rdiscount 1.3.1.1-2.2.7.3 Markdown Parser - Out-of-Bounds Read

CVE-2026-35176 HIGH

openFPGALoader <=1.1.1 POFParser::parseSection - Heap Buffer Over-Read

CVE-2026-35170 HIGH

openFPGALoader <=1.1.1 BitParser::parseHeader - Heap Buffer Over-Read

CVE-2026-34588 HIGH

OpenEXR PIZ Decoder - Out-of-Bounds Read/Write

CVE-2026-5673 MEDIUM

Libtheora: libtheora: denial of service or information disclosure via malformed avi file processing

CVE-2026-31405 CRITICAL

media: dvb-net: fix OOB access in ULE extension header tables

CVE-2026-34776 MEDIUM

Electron: Out-of-bounds read in second-instance IPC on macOS and Linux

CVE-2026-34824 HIGH

Mesop: Unbounded Thread Creation in WebSocket Handler Leads to Denial of Service

CVE-2026-31395 HIGH

bnxt_en: fix OOB access in DBG_BUF_PRODUCER async event handler

CVE-2026-31393 HIGH

Bluetooth: L2CAP: Validate L2CAP_INFO_RSP payload length before access

CVE-2026-23456 HIGH

netfilter: nf_conntrack_h323: fix OOB read in decode_int() CONS case

CVE-2026-23455 CRITICAL

netfilter: nf_conntrack_h323: check for zero length in DecodeQ931()

CVE-2026-28815 HIGH

macOS 4.0.0-4.3.0 - Out-of-bounds Read via HPKE Decapsulation

CVE-2026-34608 MEDIUM

nanomq: Heap-Buffer-Overflow in webhook_inproc.c via cJSON_Parse OOB Read

CVE-2026-35038 MEDIUM

signalk-server: Arbitrary Prototype Read via `from` Field Bypass

CVE-2026-34876 HIGH

Mbed TLS 3.x <3.6.6 - Info Disclosure

CVE-2026-5342 MEDIUM

LibRaw TIFF/NEF decoders_libraw.cpp nikon_load_padded_packed_raw out-of-bounds

CVE-2026-5315 MEDIUM

Nothings stb TTF File stb_truetype.h stbtt__buf_get8 out-of-bounds

CVE-2026-5314 MEDIUM

Nothings stb TTF File stb_truetype.h stbtt_InitFont_internal out-of-bounds

CVE-2026-32929 HIGH

Fuji Electric Co., Ltd. / Hakko Electronics Co., Ltd. V-sft < 6.2.10.0 and prior - Information Disclosure

CVE-2026-32927 HIGH

Fuji Electric Co., Ltd. / Hakko Electronics Co., Ltd. V-sft < 6.2.10.0 and prior - Information Disclosure

CVE-2026-32926 HIGH

Fuji Electric Co., Ltd. / Hakko Electronics Co., Ltd. V-sft < 6.2.10.0 and prior - Information Disclosure

CVE-2026-23406 HIGH

apparmor: fix side-effect bug in match_char() macro usage

CVE-2026-5292 HIGH

Google Chrome < 146.0.7680.178 - Out-of-bounds Read in WebCodecs

CVE-2026-5282 HIGH

Google Chrome < 146.0.7680.178 - Out-of-bounds Read in WebCodecs

Previous Page 16 of 352 Next

Details

Vulnerabilities 8,784

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy