CWE-125

Out-of-bounds Read

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product reads data past the end, or before the beginning, of the intended buffer.

8,951 vulnerabilities with CWE-125
CVE-2016-8878 HIGH
Foxit Reader & PhantomPDF <8.1 - RCE
CVSS 8.8
CVE-2016-8876 HIGH
Foxit Reader & PhantomPDF <8.1 - RCE
CVSS 7.5
CVE-2016-8875 MEDIUM
Foxit Reader & PhantomPDF <8.1 (Win) - DoS
CVSS 5.3
CVE-2016-7506 HIGH
Artifex MuJS < 8c805b4eb19cf2af689c860b77e6111d2ee439d5 - Out-of-bounds Read in Sp_replace_regexp
CVSS 7.5
CVE-2016-9017 HIGH
Artifex MuJS < 5c337af4b3df80cf967e4f9f6a21522de84b392a - Out-of-Bounds Read in jsC_dumpfunction
CVSS 7.5
CVE-2016-6905 MEDIUM
libgd < 2.2.3 - Denial of Service via Crafted TGA Image
CVSS 6.5
CVE-2016-3658 HIGH
libtiff < 4.0.6 - Denial of Service via TIFFWriteDirectoryTagLongLong8Array Out-of-bounds Read
CVSS 7.5
CVE-2016-3634 HIGH
libtiff < 4.0.6 - Denial of Service via tagCompare Function
CVSS 7.5
CVE-2016-3633 HIGH
libtiff < 4.0.6 - Denial of Service via Thumbnail Tool setrow Function
CVSS 7.5
CVE-2016-3631 HIGH
libtiff < 4.0.6 - Denial of Service via Thumbnail Tool Bytecounts Array
CVSS 7.5
CVE-2016-3625 MEDIUM
libtiff < 4.0.6 - Denial of Service via Out-of-bounds Read in tif_read.c
CVSS 6.5
CVE-2016-3621 HIGH
libtiff < 4.0.6 - Denial of Service via LZWEncode Buffer Over-Read
CVSS 8.8
CVE-2016-3620 HIGH
libtiff < 4.0.6 - Denial of Service via BMP Image Processing in bmp2tiff
CVSS 7.5
CVE-2016-3619 MEDIUM
libtiff - Out-of-bounds Read in DumpModeEncode via Crafted BMP Image
CVSS 6.5
CVE-2016-6306 MEDIUM
OpenSSL < 1.0.1u and 1.0.2 < 1.0.2i - Denial of Service via Certificate Parser Out-of-bounds Read
CVSS 5.9
CVE-2016-4776 HIGH
Apple iOS < 10, macOS < 10.12, tvOS < 10, watchOS < 3 - Out-of-bounds Read
CVSS 7.1
CVE-2016-4774 HIGH
Apple iOS < 10, macOS < 10.12, tvOS < 10, watchOS < 3 - Out-of-bounds Read
CVSS 7.1
CVE-2016-4773 HIGH
Apple iOS < 10, macOS < 10.12, tvOS < 10, watchOS < 3 - Out-of-bounds Read
CVSS 7.1
CVE-2016-5271 MEDIUM
Firefox < 48.0.2 - Denial of Service via CSS Display Property Handling
CVSS 6.5
CVE-2016-2827 MEDIUM
Firefox < 48.0.2 - Denial of Service via CSP Referrer Directive
CVSS 6.5
CVE-2016-7175 MEDIUM
Wireshark 2.x < 2.0.6 - Denial of Service via QNX6 QNET Dissector MAC Address Handling
CVSS 5.9
CVE-2016-6263 HIGH
libidn < 1.32 - Denial of Service via Out-of-bounds Read in stringprep_utf8_nfkc_normalize
CVSS 7.5
CVE-2016-6262 HIGH
libidn < 1.33 - Out-of-bounds Read via Zero Byte Input
CVSS 7.5
CVE-2016-6261 HIGH
libidn <1.33 - DoS
CVSS 7.5
CVE-2016-5107 MEDIUM
QEMU < 2.6.2 - Denial of Service via MegaRAID SAS 8708EM2 Frame Lookup
CVSS 6.0
Details
Vulnerabilities 8,951