Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-125

CWE-125

Out-of-bounds Read

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product reads data past the end, or before the beginning, of the intended buffer.

8,784 vulnerabilities with CWE-125

CVE-2026-2394 MEDIUM

RTI Connext Professional Core Libraries - Buffer Over-Read

CVE-2026-34556 MEDIUM

iccDEV: HBO in icAnsiToUtf8()

CVE-2026-34554 MEDIUM

iccDEV: HBO in CIccApplyCmmSearch::costFunc()

CVE-2026-34235 CRITICAL

PJSIP: Heap OOB read in VPX unpacketizer

CVE-2026-33985 MEDIUM

FreeRDP: ClearCodec Glyph Cache Count Desync - Heap OOB Read

CVE-2026-33982 HIGH

FreeRDP: Persistent Cache Allocator Mismatch - Heap OOB Read

CVE-2026-32877 HIGH

Botan: Heap Buffer Over-read in SM2 Decryption via Undersized C3 Hash Field

CVE-2026-25627 MEDIUM

nanomq: OOB Read / Crash (DoS) via Malformed MQTT Remaining Length over WebSocket

CVE-2026-28528 MEDIUM

BlueKitchen BTstack < 1.8.1 AVRCP Browsing Target GET_FOLDER_ITEMS Handler OOB Read / Undefined Behavior

CVE-2026-28527 LOW

BlueKitchen BTstack < 1.8.1 AVRCP Controller GET_PLAYER_APPLICATION_SETTING_*_TEXT Handlers OOB Read

CVE-2026-28526 LOW

BlueKitchen BTstack < 1.8.1 AVRCP Controller LIST_PLAYER_APPLICATION_SETTING_* Handlers OOB Read

CVE-2026-32984 LOW

Heap buffer overflow in wazuh-authd

CVE-2026-27880 HIGH

OpenFeature evaluation API reads input data with no bounds

CVE-2026-33669 CRITICAL

SiYuan has Arbitrary Document Reading within the Publishing Service

CVE-2026-3622 HIGH

Denial-of-Service Vulnerability in UPnP Component of TP Link's TL-WR841N

CVE-2026-32284 HIGH

Denial of service in github.com/shamaton/msgpack

CVE-2026-33636 HIGH

LIBPNG has ARM NEON Palette Expansion Out-of-Bounds Read on AArch64

CVE-2026-26008 HIGH

EVerest has OOB via EVSE ID Indexing Mismatch in OCPP 2.0.1 UpdateAllowedEnergyTransferModes

CVE-2026-33515 MEDIUM

Squid has issues in ICP message handling

CVE-2026-23388 HIGH

Squashfs: check metadata block offset is within range

CVE-2026-23363 HIGH

wifi: mt76: mt7925: Fix possible oob access in mt7925_mac_write_txwi_80211()

CVE-2026-23327 HIGH

cxl/mbox: validate payload size before accessing contents in cxl_payload_from_user_allowed()

CVE-2026-23325 HIGH

wifi: mt76: mt7996: Fix possible oob access in mt7996_mac_write_txwi_80211()

CVE-2026-23318 HIGH

ALSA: usb-audio: Use correct version for UAC3 header validation

CVE-2026-23315 HIGH

wifi: mt76: Fix possible oob access in mt76_connac2_mac_write_txwi_80211()

Previous Page 17 of 352 Next

Details

Vulnerabilities 8,784

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy