CWE-125

Out-of-bounds Read

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product reads data past the end, or before the beginning, of the intended buffer.

8,951 vulnerabilities with CWE-125
CVE-2016-9297 HIGH
libtiff - Out-of-bounds Read via Crafted TIFF Tag Values
CVSS 7.5
CVE-2016-9273 MEDIUM
libtiff 4.0.6 - Denial of Service via Crafted File in TIFF_STRIPCHOP Mode
CVSS 5.5
CVE-2016-9109 HIGH
Artifex MuJS - Denial of Service via Incomplete Escape Sequence Handling
CVSS 7.5
CVE-2016-7799 MEDIUM
ImageMagick < 6.9.6-0 - Out-of-bounds Read in MagickCore/profile.c
CVSS 6.5
CVE-2016-7563 HIGH
Artifex MuJS - Denial of Service via Asterisk in chartorune Function
CVSS 7.5
CVE-2016-7101 MEDIUM
ImageMagick < 6.9.5-8 - Denial of Service via SGI Row Value
CVSS 6.5
CVE-2016-9812 HIGH
GStreamer < 1.10.1 - Denial of Service via MPEG-TS Section Handling
CVSS 7.5
CVE-2016-9811 MEDIUM
GStreamer < 1.10.2 - Denial of Service via Crafted ICO File
CVSS 4.7
CVE-2016-9810 MEDIUM
GStreamer < 1.10.1 - Denial of Service via FLX Decoder Invalid Memory Read
CVSS 5.5
CVE-2016-9809 HIGH
GStreamer < 1.10.1 - Out-of-bounds Read in gst_h264_parse_set_caps
CVSS 7.8
CVE-2016-9807 MEDIUM
GStreamer < 1.10.1 - Denial of Service via FLIC File Processing
CVSS 5.5
CVE-2016-8334 MEDIUM
Foxit Reader >=8.0.2.805 <8.0.2.805 - Out-of-bounds Read
CVSS 6.8
CVE-2016-2380 LOW
Pidgin < 2.10.12 - Out-of-bounds Read in MXIT Protocol Handler
CVSS 3.1
CVE-2016-2375 MEDIUM
Pidgin < 2.10.12 - Out-of-Bounds Read in MXIT Protocol Handler
CVSS 5.3
CVE-2016-2374 HIGH
Pidgin < 2.10.12 - Memory Corruption via MXIT MultiMX Message Handling
CVSS 8.1
CVE-2016-2373 MEDIUM
Pidgin < 2.10.12 - Denial of Service via MXIT Protocol Mood Handling
CVSS 5.9
CVE-2016-2372 MEDIUM
Pidgin < 2.10.12 - Out-of-bounds Read in MXIT Protocol File Transfer
CVSS 5.9
CVE-2016-2370 MEDIUM
Pidgin < 2.10.12 - Denial of Service via MXIT Protocol Data Handling
CVSS 5.9
CVE-2016-2367 MEDIUM
Pidgin < 2.10.12 - Out-of-bounds Read in MXIT Avatar Handling
CVSS 5.9
CVE-2016-2366 MEDIUM
Pidgin < 2.10.12 - Denial of Service via MXIT Protocol Data Handling
CVSS 5.9
CVE-2016-6891 HIGH
MatrixSSL < 3.8.5 - Denial of Service via ASN.1 Bit Field Primitive in X.509 Certificate
CVSS 7.5
CVE-2016-9935 CRITICAL
PHP < 5.6.29 and 7.x < 7.0.14 - Out-of-bounds Read in WDDX Boolean Element Parsing
CVSS 9.8
CVE-2016-9777 HIGH
Linux Kernel < 4.8.12 - Out-of-bounds Read in KVM I/O APIC
CVSS 7.8
CVE-2016-9037 HIGH
Tarantool 1.7.2.0-g8e92715 - Buffer Overflow
CVSS 7.5
CVE-2016-9036 HIGH
Tarantool Msgpuck 1.0.3 - Denial of Service via mp_check Buffer Validation Bypass
CVSS 7.5
Details
Vulnerabilities 8,951