CWE-125

Out-of-bounds Read

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product reads data past the end, or before the beginning, of the intended buffer.

8,945 vulnerabilities with CWE-125
CVE-2017-16370 HIGH
Adobe Acrobat and Reader <= 11.0.22, <= 15.006.30355, <= 17.012.20098 - Out-of-bounds Read in JavaScript Engine
CVSS 8.8
CVE-2017-16365 HIGH
Adobe Acrobat and Reader <2017.012.20098 - Buffer Overflow
CVSS 8.8
CVE-2017-16363 HIGH
Adobe Acrobat and Reader <2017.012.20098 - Buffer Overflow
CVSS 8.8
CVE-2017-16362 HIGH
Adobe Acrobat and Reader <2017.012.20098 - Memory Corruption
CVSS 8.8
CVE-2017-11213 CRITICAL
Redhat Enterprise Linux Desktop < 27.0.0.183 - Out-of-Bounds Read
CVSS 9.8
CVE-2017-3737 MEDIUM
OpenSSL 1.0.2b-1.0.2m - Unencrypted Data Exposure via SSL_read/SSL_write After Fatal Error
CVSS 5.9
CVE-2017-13160 CRITICAL
Android 7.0-8.0 - Remote Code Execution in Bluetooth Component
CVSS 9.8
CVE-2017-14905 MEDIUM
Android for MSM - Out-of-bounds Read via cfg80211 Vendor Command
CVSS 5.3
CVE-2017-14903 MEDIUM
Android for MSM - Out-of-bounds Read via SENDACTIONFRAME IOCTL
CVSS 5.3
CVE-2017-17066 HIGH
i2pd < 2.17 and kovri - Out-of-bounds Read via Garlic DeliveryTypeTunnel Packet Handling
CVSS 7.5
CVE-2017-17125 HIGH
GNU Binutils <2.29.1 - Buffer Overflow
CVSS 7.8
CVE-2017-17081 MEDIUM
FFmpeg 2.3 and 3.4 - Out-of-bounds Read in gmc_mmx Function
CVSS 6.5
CVE-2017-17080 MEDIUM
GNU Binutils - Denial of Service via Crafted Object File Core Notes
CVSS 5.5
CVE-2017-12369 CRITICAL
Cisco WebEx Network Recording Player - Buffer Overflow
CVSS 9.6
CVE-2017-8817 CRITICAL
curl and libcurl < 7.57.0 - Out-of-bounds Read via FTP Wildcard String
CVSS 9.8
CVE-2017-8200 MEDIUM
Huawei MAX PRESENCE, TP3106, TP3206 V100R001C00, V100R002C00 - Authenticated Out-of-bounds Read via H323 Protocol
CVSS 6.5
CVE-2017-8199 MEDIUM
Huawei MAX PRESENCE V100R001C00, TP3106 V100R002C00, TP3206 V100R002C00 - Out-of-bounds Read in H323 Protocol
CVSS 6.5
CVE-2017-8182 MEDIUM
Huawei MTK Platform Smart Phone Firmware < Nice-AL00C00B160, < Nice-AL10C00B140 - Out-of-Bounds Read
CVSS 6.1
CVE-2017-8163 MEDIUM
Huawei AR Series and NetEngine/SRG/SMC - Authenticated Out-of-bounds Read
CVSS 6.5
CVE-2017-16840 CRITICAL
FFmpeg 3.0 and 3.4 - Denial of Service via VC-2 Video Compression Encoder Buffer Padding
CVSS 9.8
CVE-2017-1000128 MEDIUM
Exiv2 0.26 - Stack Out-of-Bounds Read in JPEG2000 Parser
CVSS 5.5
CVE-2017-1000126 MEDIUM
exiv2 0.26 - Stack Out-of-bounds Read in WebP Parser
CVSS 5.5
CVE-2017-4937 HIGH
VMware Workstation 12.x < 12.5.8 and Horizon View Client for Windows 4.x < 4.6.1 - Out-of-bounds Read in JPEG2000 Parser
CVSS 7.8
CVE-2017-4936 HIGH
VMware Workstation <12.5.8 - Memory Corruption
CVSS 7.8
CVE-2017-1000173 CRITICAL
Creolabs Gravity 1.0 - Code Injection
CVSS 9.8
Details
Vulnerabilities 8,945