CWE-125

Out-of-bounds Read

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product reads data past the end, or before the beginning, of the intended buffer.

8,950 vulnerabilities with CWE-125
CVE-2016-7522 MEDIUM
ImageMagick < 6.9.4-0 - Denial of Service via Crafted PSD File
CVSS 6.5
CVE-2016-7519 MEDIUM
ImageMagick < 6.9.4-0 - Denial of Service via ReadRLEImage Function
CVSS 6.5
CVE-2016-7515 MEDIUM
ImageMagick < 6.9.4-0 - Denial of Service via ReadRLEImage Out-of-Bounds Read
CVSS 6.5
CVE-2016-5309 MEDIUM
Symantec Data Center Security: Server - Out-of-bounds Read in RAR File Parser
CVSS 5.5
CVE-2016-9959 HIGH
Opensuse Leap < 0.6.0 - Out-of-Bounds Write
CVSS 7.8
CVE-2016-5322 MEDIUM
libtiff < 4.0.6 - Denial of Service via Out-of-bounds Read in setByteArray
CVSS 5.5
CVE-2016-10226 HIGH
Safari Technology Preview Release 18 - Denial of Service via JavaScript Operator String Handling
CVSS 7.5
CVE-2016-10270 HIGH
LibTIFF 4.0.7 - Out-of-bounds Read in tif_read.c
CVSS 7.8
CVE-2016-10269 HIGH
LibTIFF 4.0.0alpha4-4.0.7 - Out-of-bounds Read via Crafted TIFF Image
CVSS 7.8
CVE-2016-3178 MEDIUM
MiniSSDPd 1.2.20130907-3 - Denial of Service via Negative Length Value
CVSS 5.5
CVE-2016-9276 HIGH
libdwarf < 2016-11-24 - Out-of-bounds Read in dwarf_get_aranges_list
CVSS 7.5
CVE-2016-10197 HIGH
Debian Linux < 2.1.5 - Out-of-Bounds Read
CVSS 7.5
CVE-2016-10195 CRITICAL
libevent < 2.1.6-beta - Out-of-bounds Read in evdns.c name_parse Function
CVSS 9.8
CVE-2016-6906 MEDIUM
libgd < 2.2.4 - Denial of Service via Crafted TGA File Decompression
CVSS 5.5
CVE-2016-10172 MEDIUM
WavPack < 5.1.0 - Denial of Service via Crafted WV File
CVSS 5.5
CVE-2016-10171 MEDIUM
WavPack < 5.1.0 - Denial of Service via Crafted WV File
CVSS 5.5
CVE-2016-10170 MEDIUM
WavPack < 5.1.0 - Denial of Service via Crafted WV File
CVSS 5.5
CVE-2016-10169 MEDIUM
WavPack < 5.1.0 - Denial of Service via Crafted WV File
CVSS 5.5
CVE-2016-5315 MEDIUM
libtiff < 4.0.6 - Denial of Service via Out-of-bounds Read in setByteArray
CVSS 5.5
CVE-2016-10244 HIGH
FreeType < 2.7.1 - Out-of-bounds Read in parse_charstrings
CVSS 7.8
CVE-2016-10070 MEDIUM
ImageMagick <6.9.4-0 - Buffer Overflow
CVSS 5.5
CVE-2016-7969 HIGH
Opensuse Leap < 0.13.3 - Out-of-Bounds Read
CVSS 7.5
CVE-2016-6884 MEDIUM
MatrixSSL < 3.8.2 - Denial of Service via TLS CBC Mode Out-of-Bounds Read
CVSS 6.5
CVE-2016-10071 MEDIUM
ImageMagick < 6.9.3-10 - Denial of Service via Crafted MAT File
CVSS 5.5
CVE-2016-8388 HIGH
Iceni Argus - Heap-Based Buffer Overflow via Malformed PDF Font Object
CVSS 7.8
Details
Vulnerabilities 8,950