CWE-125
Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.
8,900 vulnerabilities with CWE-125
CVE-2022-28788
MEDIUM
aviextractor <SMR May-2022 Release 1 - Buffer Overflow
CVSS 4.0
CVE-2022-28787
MEDIUM
wmfextractor <SMR May-2022 Release 1 - Memory Corruption
CVSS 4.0
CVE-2022-28786
MEDIUM
aviextractor <SMR May-2022 Release 1 - Memory Corruption
CVSS 4.0
CVE-2022-28785
MEDIUM
Aviextractor <SMR May-2022 Release 1 - Buffer Overflow
CVSS 4.0
CVE-2022-20092
MEDIUM
Android - Out-of-bounds Read in ALAC Decoder
CVSS 5.5
CVE-2022-1402
HIGH
ASDA-Soft < 5.4.1.0 - Out-of-bounds Read via Project File Processing
CVSS 7.8
CVE-2022-1534
HIGH
libmobi < 0.11 - Out-of-bounds Read in parse_rawml.c
CVSS 7.1
CVE-2022-1533
HIGH
libmobi < 0.11 - Out-of-bounds Read
CVSS 7.8
CVE-2022-1441
HIGH
GPAC MP4Box - Buffer Overflow in diST_box_read Function
CVSS 7.8
CVE-2022-1452
HIGH
radare2 < 5.7.0 - Out-of-bounds Read in r_bin_java_bootstrap_methods_attr_new
CVSS 7.1
CVE-2022-1451
HIGH
radare2 < 5.7.0 - Out-of-bounds Read in r_bin_java_constant_value_attr_new
CVSS 7.1
CVE-2022-1427
HIGH
mruby < 3.2 - Out-of-bounds Read in mrb_obj_is_kind_of
CVSS 7.8
CVE-2022-27406
HIGH
FreeType < 2.12.0 - Out-of-bounds Read via FT_Request_Size
CVSS 7.5
CVE-2022-27405
HIGH
FreeType < 2.12.0 - Out-of-bounds Read via FNT_Size_Request
CVSS 7.5
CVE-2022-29537
MEDIUM
GPAC 2.0.0 - Heap-Based Buffer Over-Read in gp_rtp_builder_do_hevc
CVSS 5.5
CVE-2022-29458
HIGH
ncurses < 6.3 - Out-of-bounds Read in convert_strings
CVSS 7.1
CVE-2022-20714
HIGH
Cisco IOS XR - Unauthenticated Denial of Service via Malformed Packet Handling in Lightspeed-Plus Line Cards
CVSS 8.6
CVE-2022-1304
HIGH
e2fsprogs 1.46.5 - Out-of-bounds Read and Write via Crafted Filesystem
CVSS 7.8
CVE-2022-27524
HIGH
Autodesk DWG TrueView 2019-2019.1.4 - Out-of-bounds Read via Malicious DWG File
CVSS 7.1
CVE-2022-27523
HIGH
Autodesk DWG TrueView >=2019 <2019.1.4 - Out-of-bounds Read via Malicious DWG File
CVSS 7.1
CVE-2022-24383
HIGH
Product <Version - Memory Corruption
CVSS 7.8
CVE-2022-21202
LOW
Fujielectric Alpha5 Smart Loader Firmware < 4.3 - Out-of-bounds Read
CVSS 3.3
CVE-2022-28661
HIGH
Simcenter Femap < V2022.1.2 - Code Injection
CVSS 8.8
CVE-2022-26380
HIGH
Siemens SCALANCE X Series Firmware < 4.1.4 - Denial of Service via SNMP Key Validation
CVSS 7.5
CVE-2022-27832
MEDIUM
Android media.extractor - Denial of Service via Crafted Media File
CVSS 4.0
Details
Vulnerabilities
8,900