CWE-125
Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.
8,932 vulnerabilities with CWE-125
CVE-2018-5380
MEDIUM
Quagga < 1.2.3 - Out-of-bounds Read in BGP Daemon Debug Code-to-String Conversion
CVSS 4.3
CVE-2018-7051
HIGH
Irssi < 1.0.7 and 1.1.x < 1.1.1 - Out-of-bounds Read in Theme String Printing
CVSS 7.5
CVE-2018-6930
MEDIUM
ImageMagick 7.0.7-22 - Denial of Service via Stack-Based Buffer Over-Read in ComputeResizeImage
CVSS 6.5
CVE-2018-6912
MEDIUM
FFmpeg < 3.4.2 - Denial of Service via Crafted AVI File
CVSS 6.5
CVE-2018-1000034
CRITICAL
Info-Zip UnZip <6.10c22 - DoS/Info Disclosure
CVSS 9.1
CVE-2018-1000033
CRITICAL
Info-Zip UnZip <6.10c22 - DoS/Info Disclosure
CVSS 9.1
CVE-2018-6872
MEDIUM
GNU Binutils - Denial of Service via Malformed ELF Note Alignment
CVSS 5.5
CVE-2018-6767
HIGH
WavPack 5.1.0 - Stack-Based Buffer Over-Read in ParseRiffHeaderConfig
CVSS 7.8
CVE-2018-6621
MEDIUM
FFmpeg < 3.2 - Denial of Service via Crafted AVI File
CVSS 6.5
CVE-2018-6612
MEDIUM
jhead 3.00 - Heap-Based Buffer Over-Read in EXIF Processing
CVSS 5.5
CVE-2018-6611
HIGH
OpenMPT < 1.27.04.00 and libopenmpt < 0.3.6 - Out-of-bounds Read via Malformed STP File
CVSS 8.8
CVE-2018-6406
HIGH
libwebm < 2018-01-30 - Out-of-bounds Read in ParseVP9SuperFrameIndex
CVSS 8.8
CVE-2018-6392
MEDIUM
FFmpeg < 3.4.1 - Out-of-bounds Read in filter_slice via Crafted MP4 File
CVSS 6.5
CVE-2018-6315
HIGH
libming < 0.4.8 - Integer Overflow and Out-of-Bounds Read via Crafted SWF File
CVSS 8.8
CVE-2018-1000005
CRITICAL
libcurl 7.49.0-7.57.0 - Out-of-bounds Read in HTTP/2 Trailer Handling
CVSS 9.1
CVE-2018-5683
MEDIUM
Qemu < 2.11.1 - Denial of Service via vga_draw_text Memory Address Validation
CVSS 6.0
CVE-2018-5698
HIGH
WizardMac ReadStat 0.1.1 - Buffer Overflow
CVSS 7.8
CVE-2018-5360
HIGH
libtiff < 4.0.6 - Out-of-bounds Read in ReadTIFFImage
CVSS 8.8
CVE-2018-4871
HIGH
Redhat Enterprise Linux Desktop < 28.0.0.126 - Out-of-Bounds Read
CVSS 7.5
CVE-2018-5248
HIGH
ImageMagick 7.0.7-17 - Buffer Overflow
CVSS 8.8
CVE-2018-0780
MEDIUM
Microsoft Edge - Information Disclosure via Scripting Engine Memory Handling
CVSS 5.3
CVE-2018-0767
MEDIUM
ChakraCore < 1.7.6 - Out-of-bounds Read in Scripting Engine
CVSS 5.3
CVE-2017-13318
MEDIUM
Android - Remote Information Disclosure via Integer Overflow in HeifDataSource::readAt
CVSS 5.7
CVE-2017-13317
MEDIUM
Android - Out-of-bounds Read in HeifDecoderImpl
CVSS 5.7
CVE-2017-13321
MEDIUM
Android - Out-of-bounds Read in SensorService::isDataInjectionEnabled
CVSS 5.5
Details
Vulnerabilities
8,932