CWE-125

Out-of-bounds Read

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product reads data past the end, or before the beginning, of the intended buffer.

8,932 vulnerabilities with CWE-125
CVE-2018-10767 MEDIUM
libgxps < 0.3.0 - Denial of Service via Stack-Based Buffer Over-Read in gxps_images_guess_content_type
CVSS 6.5
CVE-2018-10733 MEDIUM
libgxps < 0.3.0 - Denial of Service via Heap-Based Buffer Over-Read in ft_font_face_hash
CVSS 6.5
CVE-2018-10549 HIGH
PHP < 5.6.36, 7.0.x < 7.0.30, 7.1.x < 7.1.17, 7.2.x < 7.2.5 - Out-of-bounds Read in exif_read_data
CVSS 8.8
CVE-2018-10529 HIGH
LibRaw <0.18.9 - Memory Corruption
CVSS 8.8
CVE-2018-10393 HIGH
Xiph.Org libvorbis <1.3.6 - Buffer Overflow
CVSS 7.5
CVE-2018-10392 HIGH
libvorbis 1.3.6 - Out-of-bounds Read in mapping0_forward
CVSS 8.8
CVE-2018-10372 MEDIUM
GNU Binutils - Denial of Service via Heap-Based Buffer Over-Read in dwarf.c
CVSS 5.5
CVE-2018-10254 HIGH
Netwide Assembler (NASM) 2.13 - Buffer Overflow
CVSS 7.8
CVE-2018-6798 HIGH
Debian Linux < 5.26 - Out-of-Bounds Read
CVSS 7.5
CVE-2018-10187 MEDIUM
radare2 2.5.0 - Denial of Service via Crafted DEX File
CVSS 5.5
CVE-2018-10186 MEDIUM
radare2 2.5.0 - Heap-Based Buffer Over-Read in r_hex_bin2str
CVSS 5.5
CVE-2018-3594 CRITICAL
Qualcomm MDM9206 and Snapdragon Firmware - Out-of-bounds Read in ID3 Tag Private Frame Parser
CVSS 9.8
CVE-2018-10017 MEDIUM
libopenmpt < 0.3.8 and OpenMPT < 1.27.07.00 - Denial of Service via IT or MO3 File with Nested Pattern Loops
CVSS 6.5
CVE-2018-10001 MEDIUM
FFmpeg < 3.4.2 - Denial of Service via AVI File Out-of-Bounds Read
CVSS 6.5
CVE-2018-3838 MEDIUM
SDL_image - Out-of-bounds Read in XCF Image Rendering
CVSS 6.5
CVE-2018-3837 MEDIUM
SDL_image - Out-of-bounds Read in PCX Image Rendering
CVSS 5.5
CVE-2018-9989 HIGH
ARM mbed TLS < 2.1.11, < 2.7.2, < 2.8.0 - Out-of-bounds Read in ssl_parse_server_psk_hint
CVSS 7.5
CVE-2018-9988 HIGH
ARM mbed TLS < 2.1.11, < 2.7.2, < 2.8.0 - Out-of-bounds Read in ssl_parse_server_key_exchange()
CVSS 7.5
CVE-2018-9841 HIGH
FFmpeg < 3.4.2 - Denial of Service via Long Filename in Signature Filter Export
CVSS 8.8
CVE-2018-9305 HIGH
exiv2 < 0.26 - Out-of-bounds Read in IptcData::printStructure
CVSS 8.1
CVE-2018-5821 HIGH
Qualcomm Android <2018-04-05 - Buffer Overflow
CVSS 7.3
CVE-2018-4160 HIGH
macOS < 10.13.4 - Kernel Out-of-bounds Read
CVSS 7.8
CVE-2018-4136 HIGH
macOS < 10.13.4 - Out-of-bounds Read in Kernel
CVSS 7.8
CVE-2018-6248 HIGH
NVIDIA Windows GPU Display Driver - Out-of-bounds Read in DxgkDdiEscape Handler
CVSS 8.8
CVE-2018-1093 MEDIUM
Linux Kernel < 4.15.15 - Denial of Service via ext4 Bitmap Block Validation Bypass
CVSS 5.5
Details
Vulnerabilities 8,932