CWE-125

Out-of-bounds Read

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product reads data past the end, or before the beginning, of the intended buffer.

8,945 vulnerabilities with CWE-125
CVE-2017-11054 HIGH
Android - Out-of-bounds Read via Crafted cfg80211 Vendor Command
CVSS 7.5
CVE-2017-11052 HIGH
Android - Out-of-bounds Read via QCA_NL80211_VENDOR_SUBCMD_NDP cfg80211 Vendor Command
CVSS 7.5
CVE-2017-15045 MEDIUM
LAME 3.98-3.99.5 - Heap-Based Buffer Over-Read in fill_buffer
CVSS 5.5
CVE-2017-15037 HIGH
FreeBSD < 11.1 - Out-of-bounds Read via smb_strdupin Race Condition
CVSS 8.1
CVE-2017-15021 MEDIUM
GNU Binutils - Out-of-bounds Read in BFD Library via Crafted ELF File
CVSS 5.5
CVE-2017-15020 HIGH
GNU Binutils 2.29 - Out-of-bounds Read in parse_die Function
CVSS 7.8
CVE-2017-15018 MEDIUM
LAME 3.98-3.99.5 - Heap-Based Buffer Over-Read in vbrquantize.c
CVSS 5.5
CVE-2017-0812 HIGH
Android <8.0 - Privilege Escalation
CVSS 7.8
CVE-2017-14976 HIGH
Poppler 0.59.0 - Denial of Service via Heap-Based Buffer Over-Read in FoFiType1C::convertToType0
CVSS 7.5
CVE-2017-14939 MEDIUM
GNU Binutils 2.29 - Heap-Based Buffer Over-Read in decode_line_info
CVSS 5.5
CVE-2017-14931 MEDIUM
OpenExif 2.1.4 - Denial of Service via Crafted JPEG File
CVSS 5.5
CVE-2017-14860 MEDIUM
exiv2 - Denial of Service via Heap-Based Buffer Over-Read in Jp2Image::readMetadata
CVSS 5.5
CVE-2017-14795 HIGH
libbpg 0.9.7 - Out-of-Bounds Read in hevc_write_frame
CVSS 8.8
CVE-2017-14733 MEDIUM
GraphicsMagick 1.3.26 - Denial of Service via RLE Header Color Count Mismatch
CVSS 6.5
CVE-2017-14731 MEDIUM
LibOFX 0.9.12 - Denial of Service via Heap-Based Buffer Over-Read in ofx_proc_file
CVSS 6.5
CVE-2017-9283 CRITICAL
Micro Focus VisiBroker 8.5 - Info Disclosure
CVSS 9.8
CVE-2017-7544 CRITICAL
libexif <0.6.21 - Memory Corruption
CVSS 9.1
CVE-2017-14646 HIGH
Bento4 <1.5.0-617 - Buffer Overflow
CVSS 7.5
CVE-2017-14645 MEDIUM
Bento4 <1.5.0-617 - Buffer Overflow
CVSS 6.5
CVE-2017-14643 MEDIUM
Bento4 <1.5.0-617 - Buffer Overflow
CVSS 6.5
CVE-2017-11002 MEDIUM
Android < 8.0 - Out-of-bounds Read via Vendor Sub-command Processing
CVSS 5.5
CVE-2017-14246 HIGH
libsndfile 1.0.28 - Info Disclosure
CVSS 8.1
CVE-2017-14245 HIGH
libsndfile 1.0.28 - Info Disclosure
CVSS 8.1
CVE-2017-14633 MEDIUM
libvorbis 1.3.5 - Out-of-bounds Read in mapping0_forward()
CVSS 6.5
CVE-2017-14608 CRITICAL
LibRaw < 0.18.4 - Out-of-bounds Read in kodak_65000_load_raw
CVSS 9.1
Details
Vulnerabilities 8,945