CWE-125

Out-of-bounds Read

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product reads data past the end, or before the beginning, of the intended buffer.

8,922 vulnerabilities with CWE-125
CVE-2018-11897 HIGH
Android - Out-of-bounds Read in Diag Event Processing
CVSS 7.8
CVE-2018-11297 HIGH
Android - Out-of-bounds Read in WMA NDP Event Handler
CVSS 7.8
CVE-2018-11293 MEDIUM
Android - Out-of-bounds Read in wma_ndp_confirm_event_handler and wma_ndp_indication_event_handler
CVSS 5.7
CVE-2018-11278 HIGH
Android - Out-of-bounds Read in Venus HW Bit Stream Decoder
CVSS 7.1
CVE-2018-17072 CRITICAL
JSON++ <2016-06-15 - Buffer Overflow
CVSS 9.8
CVE-2018-11058 CRITICAL
RSA BSAFE Micro Edition Suite 4.0.0-4.0.10 and 4.1.0-4.1.5 - Buffer Over-Read via ASN.1 Parsing
CVSS 9.8
CVE-2018-16985 HIGH
Lizard (formerly LZ5) 2.0 - Memory Corruption
CVSS 7.5
CVE-2018-16982 MEDIUM
Open Chinese Convert 1.0.5 - Denial of Service via Crafted .ocd File
CVSS 5.5
CVE-2018-16790 HIGH
libbson 1.12.0 - Heap-Based Buffer Over-Read in _bson_iter_next_internal
CVSS 8.1
CVE-2018-16764 HIGH
WebAssembly Virtual Machine < 2018-07-26 - Denial of Service via Heap-Based Buffer Over-Read
CVSS 8.8
CVE-2018-16667 HIGH
Contiki-NG < 4.1 - Out-of-bounds Read in AQL Parser
CVSS 7.0
CVE-2018-1000668 MEDIUM
jsish <2.4.70-2.047 - Out-of-bounds Read
CVSS 6.5
CVE-2018-16438 HIGH
HDF5 1.8.20 - Out-of-bounds Read in H5L_extern_query
CVSS 8.8
CVE-2018-16430 HIGH
GNU Libextractor <= 1.7 - Out-of-bounds Read in EXTRACTOR_zip_extract_method
CVSS 8.8
CVE-2018-16429 HIGH
GNOME GLib 2.56.1 - Out-of-bounds Read in g_markup_parse_context_parse
CVSS 7.5
CVE-2018-16427 MEDIUM
OpenSC < 0.18.0 - Out-of-bounds Read via Crafted Smartcard Response
CVSS 4.3
CVE-2018-16413 HIGH
ImageMagick 7.0.8-11 - Heap-Based Buffer Over-Read in PushShortPixel
CVSS 8.8
CVE-2018-16412 HIGH
ImageMagick 7.0.8-11 Q16 - Heap-Based Buffer Over-Read in ParseImageResourceBlocks
CVSS 8.8
CVE-2018-16403 MEDIUM
elfutils - Heap-Based Buffer Over-Read in libdw Abbreviation Handling
CVSS 5.5
CVE-2018-16382 MEDIUM
Netwide Assembler 2.14rc15 - Out-of-bounds Read in x86/regflags.c
CVSS 5.5
CVE-2018-16368 MEDIUM
Xpdf 4.00 - Denial of Service via Heap-Based Buffer Over-Read in SplashXPath::strokeAdjust
CVSS 5.5
CVE-2018-16336 MEDIUM
exiv2 v0.26 - Denial of Service via Heap-Based Buffer Over-Read in PngChunk TXT Chunk Parser
CVSS 6.5
CVE-2018-15161 MEDIUM
libesedb <2018-04-01 - Heap-Based Buffer Overflow
CVSS 6.5
CVE-2018-15160 MEDIUM
libesedb <2018-04-01 - Buffer Overflow
CVSS 6.5
CVE-2018-15159 MEDIUM
libesedb <2018-04-01 - Heap-Based Buffer Overflow
CVSS 6.5
Details
Vulnerabilities 8,922