CWE-125

Out-of-bounds Read

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product reads data past the end, or before the beginning, of the intended buffer.

8,932 vulnerabilities with CWE-125
CVE-2018-9144 HIGH
exiv2 < 0.26 - Out-of-bounds Read in binaryToString
CVSS 8.1
CVE-2018-9135 HIGH
ImageMagick 7.0.7-24 - Heap-Based Buffer Over-Read in IsWEBPImageLossless
CVSS 8.8
CVE-2018-0202 MEDIUM
ClamAV < 0.99.4 - Unauthenticated Denial of Service via Crafted PDF File
CVSS 5.5
CVE-2018-1303 HIGH
Debian Linux < 2.4.29 - Out-of-Bounds Read
CVSS 7.5
CVE-2018-8976 MEDIUM
Exiv2 0.26 - Out-of-bounds Read in JPG Image Processing
CVSS 6.5
CVE-2018-8975 MEDIUM
netpbm < 10.81.03 - Denial of Service via Crafted Image File
CVSS 5.5
CVE-2018-8960 HIGH
ImageMagick 7.0.7-26 Q16 - Heap-Based Buffer Over-Read in ReadTIFFImage
CVSS 8.8
CVE-2018-8883 HIGH
Netwide Assembler (NASM) <2.13.02rc2 - Buffer Overflow
CVSS 7.8
CVE-2018-8881 HIGH
Netwide Assembler (NASM) <2.13.02rc2 - Buffer Overflow
CVSS 7.3
CVE-2018-8810 MEDIUM
radare2 2.4.0 - Denial of Service via Crafted Mach-O File
CVSS 5.5
CVE-2018-8809 MEDIUM
radare2 2.4.0 - Denial of Service via Crafted DEX File
CVSS 5.5
CVE-2018-8808 MEDIUM
radare2 2.4.0 - Denial of Service via Crafted DEX File
CVSS 5.5
CVE-2018-8769 HIGH
elfutils 0.170 - Out-of-bounds Read in ebl_dynamic_tag_name
CVSS 7.8
CVE-2018-8754 MEDIUM
libevt <2018-03-17 - Info Disclosure
CVSS 5.5
CVE-2018-1000122 CRITICAL
curl <7.59 - Buffer Overflow
CVSS 9.1
CVE-2018-0919 LOW
Microsoft Office - Information Disclosure via Uninitialized Variable
CVSS 3.3
CVE-2018-0894 MEDIUM
Windows Kernel - Information Disclosure via Memory Address Handling
CVSS 4.7
CVE-2018-8107 MEDIUM
xpdf 4.00 - Denial of Service via JPXStream Heap-Based Buffer Over-Read
CVSS 5.5
CVE-2018-8106 MEDIUM
xpdf 4.00 - Denial of Service via JPXStream::readTilePartData Heap-Based Buffer Over-Read
CVSS 5.5
CVE-2018-8105 MEDIUM
xpdf 4.00 - Denial of Service via JPXStream Heap-Based Buffer Over-Read
CVSS 5.5
CVE-2018-8104 MEDIUM
xpdf 4.00 - Denial of Service via Heap-Based Buffer Over-Read in BufStream::lookChar
CVSS 5.5
CVE-2018-8103 MEDIUM
xpdf 4.00 - Denial of Service via JBIG2Stream::readGenericBitmap Heap-Based Buffer Over-Read
CVSS 5.5
CVE-2018-8102 MEDIUM
xpdf 4.00 - Denial of Service via JBIG2MMRDecoder Buffer Over-Read
CVSS 5.5
CVE-2018-8101 MEDIUM
xpdf 4.00 - Denial of Service via JPXStream::inverseTransformLevel Heap-Based Buffer Over-Read
CVSS 5.5
CVE-2018-1000085 MEDIUM
ClamAV 0.99.3 - Out-of-bounds Read in XAR Parser
CVSS 5.5
Details
Vulnerabilities 8,932