CWE-125

Out-of-bounds Read

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product reads data past the end, or before the beginning, of the intended buffer.

8,950 vulnerabilities with CWE-125
CVE-2017-5896 MEDIUM
MuPDF < 1.10 - Denial of Service via Crafted Image in fz_subsample_pixmap
CVSS 5.5
CVE-2017-2981 HIGH
Adobe Digital Editions <= 4.5.3 - Out-of-bounds Read
CVSS 7.5
CVE-2017-2980 HIGH
Adobe Digital Editions <= 4.5.3 - Out-of-bounds Read
CVSS 7.5
CVE-2017-2979 HIGH
Adobe Digital Editions <= 4.5.3 - Out-of-bounds Read
CVSS 7.5
CVE-2017-2978 HIGH
Adobe Digital Editions <= 4.5.3 - Out-of-bounds Read
CVSS 7.5
CVE-2017-2977 HIGH
Adobe Digital Editions <= 4.5.3 - Out-of-bounds Read
CVSS 7.5
CVE-2017-2976 HIGH
Adobe Digital Editions <= 4.5.3 - Out-of-bounds Read
CVSS 7.5
CVE-2017-2975 HIGH
Adobe Digital Editions <= 4.5.3 - Out-of-bounds Read
CVSS 7.5
CVE-2017-2974 HIGH
Adobe Digital Editions <= 4.5.3 - Out-of-bounds Read
CVSS 7.5
CVE-2017-5848 HIGH
GStreamer < 1.11.2 - Denial of Service via PSM Parsing in gst_ps_demux_parse_psm
CVSS 7.5
CVE-2017-5847 HIGH
GStreamer < 1.11.2 - Denial of Service via ASF Demux Extended Content Descriptor Processing
CVSS 7.5
CVE-2017-5846 MEDIUM
GStreamer < 1.10.3 - Denial of Service via ASF Demuxer Language Count
CVSS 5.5
CVE-2017-5845 HIGH
GStreamer < 1.10.3 - Denial of Service via AVI Demuxer ncdt Sub-Tag Parsing
CVSS 7.5
CVE-2017-5841 HIGH
GStreamer < 1.10.3 - Out-of-bounds Read in AVI Demuxer ncdt Tag Parsing
CVSS 7.5
CVE-2017-5840 HIGH
GStreamer < 1.10.3 - Denial of Service via qtdemux STTS Index Handling
CVSS 7.5
CVE-2017-5838 HIGH
GStreamer < 1.10.3 - Denial of Service via Malformed ISO8601 Datetime String
CVSS 7.5
CVE-2017-5601 HIGH
libarchive 3.2.2 - Out-of-bounds Read in lha_read_file_header_1()
CVSS 7.5
CVE-2017-5563 HIGH
LibTIFF 4.0.7 - Heap-Based Buffer Over-Read in tif_lzw.c via Crafted BMP Image
CVSS 8.8
CVE-2017-5556 HIGH
Foxit Reader and PhantomPDF - Out-of-bounds Read via ConvertToPDF Plugin
CVSS 8.1
CVE-2017-5545 CRITICAL
libplist < 1.12 - Out-of-bounds Read via Apple Property List Data
CVSS 9.1
CVE-2017-5209 CRITICAL
libimobiledevice <1.12 - Info Disclosure/DoS
CVSS 9.1
CVE-2016-20022 HIGH
Linux kernel <4.8 - Info Disclosure
CVSS 8.4
CVE-2016-7524 MEDIUM
ImageMagick < 6.9.4-0 - Denial of Service via Out-of-bounds Read in coders/meta.c
CVSS 6.5
CVE-2016-7523 MEDIUM
ImageMagick < 6.9.4-0 - Denial of Service via Out-of-bounds Read in coders/meta.c
CVSS 6.5
CVE-2016-7151 MEDIUM
capstone < 4.0.0 - Out-of-bounds Read in X86_insn_reg_intel
CVSS 5.5
Details
Vulnerabilities 8,950