CWE-125

Out-of-bounds Read

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product reads data past the end, or before the beginning, of the intended buffer.

8,911 vulnerabilities with CWE-125
CVE-2021-22757 HIGH
IGSS Definition <15.0.0.21140 - Info Disclosure/Code Execution
CVSS 7.8
CVE-2021-22756 HIGH
IGSS Definition <15.0.0.21140 - Info Disclosure/Remote Code Execution
CVSS 7.8
CVE-2021-22753 HIGH
IGSS Definition <15.0.0.21140 - RCE
CVSS 7.8
CVE-2021-28801 LOW
QNAP QSS < 1.0.2 - Out-of-bounds Read
CVSS 3.1
CVE-2021-3588 LOW
cli_feat_read_cb - Memory Corruption
CVSS 3.3
CVE-2021-27629 HIGH
SAP NetWeaver ABAP Server and ABAP Platform - Denial of Service via EncPSetUnsupported() Method
CVSS 7.5
CVE-2021-27606 HIGH
SAP NetWeaver ABAP Server and ABAP Platform - Unauthenticated Denial of Service via EncOAMParamStore()
CVSS 7.5
CVE-2021-27597 HIGH
SAP NetWeaver AS for ABAP (RFC Gateway) - Unauthenticated Denial of Service via memmove() Input Validation
CVSS 7.5
CVE-2021-30536 HIGH
Google Chrome <91.0.4472.77 - Info Disclosure
CVSS 8.1
CVE-2021-30511 HIGH
Google Chrome <90.0.4430.212 - Memory Corruption
CVSS 8.1
CVE-2021-3490 HIGH
Linux eBPF ALU32 32-bit Invalid Bounds Tracking LPE
CVSS 7.8
CVE-2021-25288 CRITICAL
Pillow < 8.2.0 - Out-of-bounds Read in J2kDecode
CVSS 9.1
CVE-2021-25287 CRITICAL
Pillow < 8.2.0 - Out-of-bounds Read in J2kDecode
CVSS 9.1
CVE-2021-3522 MEDIUM
GStreamer <1.18.4 - Info Disclosure
CVSS 5.5
CVE-2021-27490 HIGH
Datakit Software libraries - Memory Corruption
CVSS 7.8
CVE-2021-33590 CRITICAL
GattLib 0.3-rc1 - Stack-Based Buffer Over-Read in get_device_path_from_mac
CVSS 9.8
CVE-2021-32614 HIGH
dmg2img < 20170502 - Out-of-bounds Read in fill_mishblk()
CVSS 7.1
CVE-2021-3548 HIGH
dmg2img <20170502 - Info Disclosure
CVSS 7.1
CVE-2021-20177 MEDIUM
Linux Kernel < 5.4.9 - Out-of-bounds Read via iptables String Matching
CVSS 4.4
CVE-2021-30195 HIGH
CODESYS V2 <2.4.7.55 - SQL Injection
CVSS 7.5
CVE-2021-30194 CRITICAL
CODESYS V2 Web-Server <1.1.9.20 - Memory Corruption
CVSS 9.1
CVE-2021-32629 HIGH
Cranelift x64 <0.73 - Sandbox Escape
CVSS 7.2
CVE-2021-21989 MEDIUM
VMware Workstation 16.0.0-16.1.1 and Horizon Client 5.0.0-5.5.1 - Out-of-bounds Read in Cortado ThinPrint TTC Parser
CVSS 6.5
CVE-2021-21988 MEDIUM
VMware Workstation 16.0.0-16.1.1 & Horizon Client 5.0.0-5.5.1 - Out-of-bounds Read in JPEG2000 Parser
CVSS 6.5
CVE-2021-21987 MEDIUM
VMware Workstation 16.0.0-16.1.1 and Horizon Client 5.0.0-5.5.1 - Out-of-bounds Read in Cortado ThinPrint TTC Parser
CVSS 6.5
Details
Vulnerabilities 8,911