CWE-125

Out-of-bounds Read

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product reads data past the end, or before the beginning, of the intended buffer.

8,950 vulnerabilities with CWE-125
CVE-2017-7854 MEDIUM
radare2 - Denial of Service via Crafted Web Assembly File
CVSS 5.5
CVE-2017-7716 MEDIUM
radare2 1.3.0 - Denial of Service via Crafted Web Assembly File
CVSS 5.5
CVE-2017-3060 CRITICAL
Adobe Flash Player <= 25.0.0.127 - Memory Corruption in ActionScript2 Parser
CVSS 9.8
CVE-2017-3053 MEDIUM
Adobe Acrobat and Reader < 11.0.19, < 15.006.30280, < 15.023.20070 - Out-of-bounds Read in JPEG APP13 Segment Parser
CVSS 5.5
CVE-2017-3052 MEDIUM
Adobe Acrobat and Reader < 11.0.19, < 15.006.30280, < 15.023.20070 - Out-of-bounds Read in EMF Image Conversion Engine
CVSS 5.5
CVE-2017-3051 HIGH
Adobe Acrobat and Reader < 11.0.19, < 15.006.30280, < 15.023.20070 - Out-of-bounds Read in JPEG Image Parser
CVSS 7.8
CVE-2017-3046 MEDIUM
Adobe Acrobat and Reader < 11.0.19, < 15.006.30280, < 15.023.20070 - Out-of-bounds Read in JPEG 2000 Parser
CVSS 5.5
CVE-2017-3045 MEDIUM
Adobe Acrobat Reader <= 11.0.19, <= 15.006.30280, <= 15.023.20070 - Out-of-bounds Read in JPEG 2000 Palette Box Parser
CVSS 5.5
CVE-2017-3033 LOW
Adobe Acrobat and Reader < 11.0.19, < 15.006.30280, < 15.023.20070 - Out-of-bounds Read in JPEG 2000 Tile Data Handling
CVSS 3.3
CVE-2017-3032 LOW
Adobe Acrobat and Reader <= 11.0.19, <= 15.006.30280, <= 15.023.20070 - Out-of-bounds Read in JPEG 2000 Parser
CVSS 3.3
CVE-2017-3031 LOW
Adobe Acrobat Reader <= 11.0.19, <= 15.006.30280, <= 15.023.20070 - Memory Address Leak in XSLT Engine
CVSS 3.3
CVE-2017-3022 LOW
Adobe Acrobat Reader < 11.0.19, 15.006.30280, 15.023.20070 - Out-of-bounds Read in JPEG 2000 Header Parser
CVSS 3.3
CVE-2017-3021 LOW
Adobe Acrobat and Reader < 11.0.19, < 15.006.30280, < 15.023.20070 - Out-of-bounds Read in JPEG 2000 Parser
CVSS 3.3
CVE-2017-3019 HIGH
Adobe Acrobat Reader <= 11.0.19, <= 15.006.30280, <= 15.023.20070 - Out-of-bounds Read in PRC Format Parser
CVSS 7.8
CVE-2017-7697 MEDIUM
Libsamplerate <0.1.9 - Buffer Overflow
CVSS 5.5
CVE-2017-7623 MEDIUM
ImageWorsener 1.3.0 - Denial of Service via Heap-Based Buffer Over-Read in iwmiffr_convert_row32
CVSS 5.5
CVE-2017-7612 MEDIUM
elfutils 0.168 - Denial of Service via Crafted ELF File
CVSS 5.5
CVE-2017-7611 MEDIUM
elfutils 0.168 - Denial of Service via Crafted ELF File
CVSS 5.5
CVE-2017-7610 MEDIUM
elfutils 0.168 - Denial of Service via Heap-Based Buffer Over-Read in check_group Function
CVSS 5.5
CVE-2017-7608 MEDIUM
elfutils - Denial of Service via Crafted ELF File
CVSS 5.5
CVE-2017-7607 MEDIUM
elfutils 0.168 - Denial of Service via Crafted ELF File in handle_gnu_hash
CVSS 5.5
CVE-2017-7454 MEDIUM
ImageWorsener 1.3.0 - Denial of Service via Heap-Based Buffer Over-Read in iwgif_record_pixel
CVSS 5.5
CVE-2017-7379 MEDIUM
PoDoFo 0.9.5 - Denial of Service via Heap-Based Buffer Over-Read in PdfSimpleEncoding::ConvertToEncoding
CVSS 5.5
CVE-2017-7378 MEDIUM
PoDoFo 0.9.5 - Denial of Service via Heap-Based Buffer Over-Read in PdfPainter::ExpandTabs
CVSS 5.5
CVE-2017-5923 HIGH
YARA 3.5.0 - Denial of Service via Crafted Rule in yara_yyparse Function
CVSS 7.5
Details
Vulnerabilities 8,950