CWE-125

Out-of-bounds Read

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product reads data past the end, or before the beginning, of the intended buffer.

8,900 vulnerabilities with CWE-125
CVE-2022-27831 LOW
Android libsflvextractor - Out-of-bounds Read in sflvd_rdbuf_bits
CVSS 2.9
CVE-2022-27825 MEDIUM
Android libsapeextractor - Out-of-bounds Read in sapefd_parse_meta_HEADER
CVSS 4.0
CVE-2022-27824 MEDIUM
Android libsapeextractor - Out-of-bounds Read in sapefd_parse_meta_DESCRIPTION
CVSS 4.0
CVE-2022-27823 MEDIUM
Android libsapeextractor - Out-of-bounds Read in sapefd_parse_meta_HEADER_old
CVSS 4.0
CVE-2022-27821 MEDIUM
Google Android Quram Agif Library - Out-of-bounds Read via Crafted Image File
CVSS 4.0
CVE-2022-25794 HIGH
Autodesk FBX Review < 1.5.3 - Out-of-Bounds Read via Malicious ActionScript Byte Code Files
CVSS 7.8
CVE-2022-20074 MEDIUM
preloader - Local Privilege Escalation
CVSS 6.6
CVE-2022-20065 MEDIUM
Android - Out-of-bounds Read in ccci
CVSS 6.7
CVE-2022-20064 MEDIUM
Android - Out-of-bounds Read in ccci
CVSS 6.7
CVE-2022-1297 CRITICAL
radare2 < 5.6.8 - Out-of-bounds Read in r_bin_ne_get_entrypoints
CVSS 9.1
CVE-2022-1296 CRITICAL
radare2 < 5.6.8 - Out-of-bounds Read in r_bin_ne_get_relocs
CVSS 9.1
CVE-2022-1276 CRITICAL
mruby < 3.2 - Out-of-bounds Read in mrb_get_args
CVSS 9.8
CVE-2022-28805 CRITICAL
Lua 5.4.0-5.4.3 - Heap-Based Buffer Over-Read in lparser.c singlevar
CVSS 9.1
CVE-2022-22519 HIGH
CODESYS Control Runtime System < 4.5.0.0 - Unauthenticated Denial of Service via HTTP Request Buffer Over-Read
CVSS 7.5
CVE-2022-24786 CRITICAL
pjsip < 2.12 - Out-of-bounds Read in RTCP Feedback RPSI Parser
CVSS 9.8
CVE-2022-0806 MEDIUM
Google Chrome < 99.0.4844.51 - Data Leak via Canvas Screen Sharing
CVSS 6.5
CVE-2022-0792 MEDIUM
Google Chrome <99.0.4844.51 - Info Disclosure
CVSS 6.5
CVE-2022-1207 MEDIUM
radare2 < 5.6.8 - Out-of-bounds Read
CVSS 6.6
CVE-2022-23937 MEDIUM
Wind River VxWorks <7 - Info Disclosure
CVSS 5.3
CVE-2022-26280 MEDIUM
Libarchive <3.6.0 - Info Disclosure
CVSS 6.5
CVE-2022-1056 MEDIUM
libtiff 4.3.0 - Out-of-bounds Read in tiffcrop
CVSS 5.5
CVE-2022-27942 HIGH
Tcpreplay 4.4.1 - Heap-Based Buffer Over-Read in parse_mpls
CVSS 7.8
CVE-2022-27941 HIGH
Tcpreplay 4.4.1 - Heap-Based Buffer Over-Read in get_l2len_protocol
CVSS 7.8
CVE-2022-27940 HIGH
Tcpreplay 4.4.1 - Heap-Based Buffer Over-Read in get_ipv6_next
CVSS 7.8
CVE-2022-27607 HIGH
Bento4 1.6.0-639 - Heap-Based Buffer Over-Read in AP4_HvccAtom
CVSS 8.1
Details
Vulnerabilities 8,900