CWE-125

Out-of-bounds Read

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product reads data past the end, or before the beginning, of the intended buffer.

8,945 vulnerabilities with CWE-125
CVE-2017-12988 CRITICAL
tcpdump < 4.9.1 - Out-of-bounds Read in Telnet Parser
CVSS 9.8
CVE-2017-12987 CRITICAL
tcpdump < 4.9.2 - Out-of-bounds Read in IEEE 802.11 Parser
CVSS 9.8
CVE-2017-12986 CRITICAL
tcpdump < 4.9.2 - Out-of-bounds Read in IPv6 Routing Header Parser
CVSS 9.8
CVE-2017-12985 CRITICAL
tcpdump < 4.9.2 - Out-of-bounds Read in IPv6 Parser
CVSS 9.8
CVE-2017-12902 CRITICAL
tcpdump < 4.9.2 - Out-of-bounds Read in Zephyr Parser
CVSS 9.8
CVE-2017-12901 CRITICAL
tcpdump < 4.9.2 - Out-of-bounds Read in EIGRP Parser
CVSS 9.8
CVE-2017-12900 CRITICAL
tcpdump < 4.9.1 - Out-of-bounds Read in util-print.c:tok2strbuf()
CVSS 9.8
CVE-2017-12899 CRITICAL
tcpdump < 4.9.2 - Out-of-bounds Read in DECnet Parser
CVSS 9.8
CVE-2017-12898 CRITICAL
tcpdump < 4.9.2 - Out-of-bounds Read in NFS Parser
CVSS 9.8
CVE-2017-12897 CRITICAL
tcpdump < 4.9.2 - Out-of-bounds Read in ISO CLNS Parser
CVSS 9.8
CVE-2017-12896 CRITICAL
tcpdump < 4.9.2 - Out-of-bounds Read in ISAKMP Parser
CVSS 9.8
CVE-2017-12895 CRITICAL
tcpdump < 4.9.2 - Out-of-bounds Read in ICMP Parser
CVSS 9.8
CVE-2017-12894 CRITICAL
tcpdump < 4.9.1 - Out-of-bounds Read in addrtoname.c:lookup_bytestring()
CVSS 9.8
CVE-2017-12893 CRITICAL
tcpdump < 4.9.2 - Out-of-bounds Read in SMB/CIFS Parser
CVSS 9.8
CVE-2017-14410 MEDIUM
MP3Gain 1.5.2 - Denial of Service via Buffer Over-Read in III_i_stereo
CVSS 5.5
CVE-2017-14408 MEDIUM
MP3Gain 1.5.2 - Denial of Service via Stack-Based Buffer Over-Read in dct36
CVSS 5.5
CVE-2017-14407 MEDIUM
MP3Gain 1.5.2 - Denial of Service via Stack-Based Buffer Over-Read in filterYule
CVSS 5.5
CVE-2017-14316 HIGH
Xen < 4.9.0 - Out-of-bounds Read via MEMF_get_node Parameter
CVSS 8.8
CVE-2017-14314 MEDIUM
GraphicsMagick 1.3.26 - Denial of Service via DrawImage Off-by-One Error
CVSS 6.5
CVE-2017-14248 MEDIUM
ImageMagick <7.0.6-8 - Buffer Overflow
CVSS 6.5
CVE-2017-14227 HIGH
MongoDB libbson 1.7.0 - Out-of-bounds Read in bson_iter_codewscope
CVSS 7.5
CVE-2017-14226 HIGH
LibreOffice < 5.3.7 - Denial of Service via libwpd WPXTableList Heap-Based Buffer Over-Read
CVSS 7.5
CVE-2017-14166 MEDIUM
libarchive 3.3.2 - Denial of Service via Crafted XAR Archive
CVSS 6.5
CVE-2017-14132 MEDIUM
JasPer 1.900.8-2.0.16 - Denial of Service via Heap-Based Buffer Over-Read in jas_image_ishomosamp
CVSS 6.5
CVE-2017-14130 MEDIUM
GNU Binutils 2.29 - Out-of-bounds Read in _bfd_elf_parse_attributes
CVSS 5.5
Details
Vulnerabilities 8,945