CWE-125

Out-of-bounds Read

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product reads data past the end, or before the beginning, of the intended buffer.

8,926 vulnerabilities with CWE-125
CVE-2018-12034 HIGH
YARA < 3.7.1 - Out-of-bounds Read in yr_execute_code
CVSS 7.8
CVE-2018-12322 MEDIUM
radare2 2.6.0 - Heap Out-of-bounds Read in 6502 Analyzer
CVSS 5.5
CVE-2018-12321 HIGH
radare2 2.6.0 - Heap Out-of-Bounds Read in Java Binary Parser
CVSS 7.8
CVE-2018-12265 HIGH
Exiv2 0.26 - Integer Overflow in LoaderExifJpeg
CVSS 8.8
CVE-2018-12264 HIGH
Exiv2 0.26 - Integer Overflow in LoaderTiff::getData()
CVSS 8.8
CVE-2018-3579 MEDIUM
Android WLAN Driver - Out-of-bounds Read via Unvalidated Firmware Event
CVSS 5.5
CVE-2018-12248 HIGH
mruby 1.4.1 - Heap-Based Buffer Over-Read in Fiber Stack Handling
CVSS 7.5
CVE-2018-5153 HIGH
Firefox < 60.0 - Out-of-bounds Read via WebSocket Mixed Text and Binary Data
CVSS 7.5
CVE-2018-12092 CRITICAL
tinyexr 0.9.5 - Heap-Based Buffer Over-Read in DecodePixelData
CVSS 9.8
CVE-2018-10360 MEDIUM
file 5.33 - Denial of Service via Crafted ELF File
CVSS 6.5
CVE-2018-4253 MEDIUM
macOS < 10.13.5 - Out-of-bounds Read in AMD Component
CVSS 5.5
CVE-2018-4222 HIGH
Safari < 11.1.1 - Remote Code Execution via WebAssembly getWasmBufferFromValue Out-of-Bounds Read
CVSS 8.8
CVE-2018-10506 MEDIUM
Trend Micro OfficeScan <11.0 SP1 - Info Disclosure
CVSS 4.7
CVE-2018-12064 CRITICAL
tinyexr 0.9.5 - Heap-Based Buffer Over-Read in ReadChannelInfo
CVSS 9.8
CVE-2018-3739 CRITICAL
https-proxy-agent < 2.1.1 - Denial of Service via Auth Parameter Buffer Handling
CVSS 9.1
CVE-2018-11740 HIGH
The Sleuth Kit 4.0.2-4.6.1 - Out-of-bounds Read in tsk_UTF16toUTF8
CVSS 8.1
CVE-2018-11739 HIGH
The Sleuth Kit 4.0.2-4.6.1 - Out-of-bounds Read in raw_read Function
CVSS 8.1
CVE-2018-11738 HIGH
The Sleuth Kit 4.0.2-4.6.1 - Out-of-bounds Read in ntfs_make_data_run
CVSS 8.1
CVE-2018-11737 HIGH
The Sleuth Kit 4.0.2-4.6.1 - Out-of-bounds Read in ntfs_fix_idxrec
CVSS 8.1
CVE-2018-11698 HIGH
libsass < 3.5.4 - Out-of-bounds Read in Error Handling
CVSS 8.1
CVE-2018-11697 HIGH
libsass < 3.5.4 - Out-of-bounds Read in Prelexer::exactly()
CVSS 8.1
CVE-2018-11693 HIGH
libsass < 3.5.4 - Out-of-bounds Read in Prelexer::skip_over_scopes
CVSS 8.1
CVE-2018-11625 HIGH
ImageMagick 7.0.7-37 Q16 - Heap-Based Buffer Over-Read in SetGrayscaleImage
CVSS 8.8
CVE-2018-11598 HIGH
Espruino < 1.99 - Denial of Service and Information Disclosure via For Loop Syntax Parsing
CVSS 7.1
CVE-2018-11592 MEDIUM
Espruino < 1.98 - Denial of Service via Out-of-bounds Read in Graphics Library
CVSS 5.5
Details
Vulnerabilities 8,926