CWE-125

Out-of-bounds Read

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product reads data past the end, or before the beginning, of the intended buffer.

8,950 vulnerabilities with CWE-125
CVE-2017-6840 MEDIUM
PoDoFo 0.9.5 - Denial of Service via ColorChanger::GetColorFromStack Invalid Read
CVSS 5.5
CVE-2017-6437 MEDIUM
libplist 1.12 - Denial of Service via Crafted plist File
CVSS 5.0
CVE-2017-6335 MEDIUM
GraphicsMagick < 1.3.25 - Denial of Service via Out-of-bounds Read in QuantumTransferMode
CVSS 5.5
CVE-2017-6883 MEDIUM
Foxit Reader <8.2.1, PhantomPDF <8.2.1 - DoS
CVSS 4.7
CVE-2017-6802 HIGH
ytnef < 1.9.2 - Heap-Based Buffer Over-Read in DecompressRTF
CVSS 7.5
CVE-2017-6801 HIGH
ytnef < 1.9.2 - Out-of-bounds Read in TNEFParse
CVSS 7.5
CVE-2017-6800 HIGH
ytnef < 1.9.2 - Heap-Based Buffer Over-Read in MAPIPrint
CVSS 7.5
CVE-2017-2786 HIGH
Pharos PopUp Printer Client 9.0 - Denial of Service via Crafted Packet
CVSS 7.5
CVE-2017-6500 MEDIUM
ImageMagick - Heap-Based Buffer Over-Read via Crafted SUN File
CVSS 5.5
CVE-2017-5834 MEDIUM
libplist - Denial of Service via Crafted File
CVSS 5.5
CVE-2017-5356 HIGH
irssi < 0.8.21 - Denial of Service via Unclosed Formatting Sequence
CVSS 7.5
CVE-2017-5196 HIGH
irssi 0.8.18-0.8.20 - Denial of Service via Non-UTF8 String Processing
CVSS 7.5
CVE-2017-5195 HIGH
irssi 0.8.17-0.8.20 - Denial of Service via ANSI x8 Color Code
CVSS 7.5
CVE-2017-6387 MEDIUM
radare2 1.2.1 - Denial of Service via Crafted DEX File
CVSS 5.5
CVE-2017-6347 HIGH
Linux Kernel < 4.4.52 - Out-of-bounds Read in ip_cmsg_recv_checksum
CVSS 7.8
CVE-2017-5978 MEDIUM
zziplib 0.13.62 - Denial of Service via Crafted ZIP File
CVSS 5.5
CVE-2017-5977 MEDIUM
zziplib 0.13.62 - Denial of Service via Crafted ZIP File
CVSS 5.5
CVE-2017-5504 MEDIUM
JasPer 1.900.27 - Denial of Service via Invalid Memory Read in jpc_undo_roi
CVSS 5.5
CVE-2017-6310 HIGH
tnef < 1.4.13 - Out-of-bounds Read via MAPI Attribute Type Confusion
CVSS 7.8
CVE-2017-6309 HIGH
tnef < 1.4.13 - Out-of-bounds Read via Type Confusion in parse_file()
CVSS 7.8
CVE-2017-6305 HIGH
ytnef < 1.9.1 - Out-of-bounds Read and Write
CVSS 7.8
CVE-2017-6304 HIGH
ytnef < 1.9.1 - Out-of-bounds Read
CVSS 7.8
CVE-2017-6301 HIGH
ytnef < 1.9.1 - Out-of-bounds Read
CVSS 7.8
CVE-2017-6011 MEDIUM
icoutils 0.31.1 - Out-of-bounds Read in simple_vec Function
CVSS 5.5
CVE-2017-6004 HIGH
PCRE < 8.38 - Denial of Service via Crafted Regular Expression
CVSS 7.5
Details
Vulnerabilities 8,950