CWE-125

Out-of-bounds Read

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product reads data past the end, or before the beginning, of the intended buffer.

8,932 vulnerabilities with CWE-125
CVE-2018-5380 MEDIUM
Quagga < 1.2.3 - Out-of-bounds Read in BGP Daemon Debug Code-to-String Conversion
CVSS 4.3
CVE-2018-7051 HIGH
Irssi < 1.0.7 and 1.1.x < 1.1.1 - Out-of-bounds Read in Theme String Printing
CVSS 7.5
CVE-2018-6930 MEDIUM
ImageMagick 7.0.7-22 - Denial of Service via Stack-Based Buffer Over-Read in ComputeResizeImage
CVSS 6.5
CVE-2018-6912 MEDIUM
FFmpeg < 3.4.2 - Denial of Service via Crafted AVI File
CVSS 6.5
CVE-2018-1000034 CRITICAL
Info-Zip UnZip <6.10c22 - DoS/Info Disclosure
CVSS 9.1
CVE-2018-1000033 CRITICAL
Info-Zip UnZip <6.10c22 - DoS/Info Disclosure
CVSS 9.1
CVE-2018-6872 MEDIUM
GNU Binutils - Denial of Service via Malformed ELF Note Alignment
CVSS 5.5
CVE-2018-6767 HIGH
WavPack 5.1.0 - Stack-Based Buffer Over-Read in ParseRiffHeaderConfig
CVSS 7.8
CVE-2018-6621 MEDIUM
FFmpeg < 3.2 - Denial of Service via Crafted AVI File
CVSS 6.5
CVE-2018-6612 MEDIUM
jhead 3.00 - Heap-Based Buffer Over-Read in EXIF Processing
CVSS 5.5
CVE-2018-6611 HIGH
OpenMPT < 1.27.04.00 and libopenmpt < 0.3.6 - Out-of-bounds Read via Malformed STP File
CVSS 8.8
CVE-2018-6406 HIGH
libwebm < 2018-01-30 - Out-of-bounds Read in ParseVP9SuperFrameIndex
CVSS 8.8
CVE-2018-6392 MEDIUM
FFmpeg < 3.4.1 - Out-of-bounds Read in filter_slice via Crafted MP4 File
CVSS 6.5
CVE-2018-6315 HIGH
libming < 0.4.8 - Integer Overflow and Out-of-Bounds Read via Crafted SWF File
CVSS 8.8
CVE-2018-1000005 CRITICAL
libcurl 7.49.0-7.57.0 - Out-of-bounds Read in HTTP/2 Trailer Handling
CVSS 9.1
CVE-2018-5683 MEDIUM
Qemu < 2.11.1 - Denial of Service via vga_draw_text Memory Address Validation
CVSS 6.0
CVE-2018-5698 HIGH
WizardMac ReadStat 0.1.1 - Buffer Overflow
CVSS 7.8
CVE-2018-5360 HIGH
libtiff < 4.0.6 - Out-of-bounds Read in ReadTIFFImage
CVSS 8.8
CVE-2018-4871 HIGH
Redhat Enterprise Linux Desktop < 28.0.0.126 - Out-of-Bounds Read
CVSS 7.5
CVE-2018-5248 HIGH
ImageMagick 7.0.7-17 - Buffer Overflow
CVSS 8.8
CVE-2018-0780 MEDIUM
Microsoft Edge - Information Disclosure via Scripting Engine Memory Handling
CVSS 5.3
CVE-2018-0767 MEDIUM
ChakraCore < 1.7.6 - Out-of-bounds Read in Scripting Engine
CVSS 5.3
CVE-2017-13318 MEDIUM
Android - Remote Information Disclosure via Integer Overflow in HeifDataSource::readAt
CVSS 5.7
CVE-2017-13317 MEDIUM
Android - Out-of-bounds Read in HeifDecoderImpl
CVSS 5.7
CVE-2017-13321 MEDIUM
Android - Out-of-bounds Read in SensorService::isDataInjectionEnabled
CVSS 5.5
Details
Vulnerabilities 8,932