Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-125

CWE-125

Out-of-bounds Read

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product reads data past the end, or before the beginning, of the intended buffer.

8,778 vulnerabilities with CWE-125

CVE-2026-41069 MEDIUM

libheif allows Out-of-bounds vector access leading to invalid dereference (DoS)

CVE-2026-44067 MEDIUM

Netatalk 2.1.0-4.4.2 and >=4.5.0 - Authenticated Heap-Based Out-of-bounds Read in Extended Attribute Header Parsing

CVE-2026-44066 HIGH

Heap out-of-bounds reads in Spotlight RPC unmarshalling

CVE-2026-44064 HIGH

Netatalk 1.3-4.4.2 - Out-of-bounds Read in ASP Session ID Handling

CVE-2026-9122 MEDIUM

Google Chrome < 148.0.7778.179 - Out-of-bounds Read in GPU via Crafted HTML Page

CVE-2026-9121 HIGH

Google Chrome < 148.0.7778.179 - Out-of-bounds Read in GPU via Crafted HTML Page

CVE-2026-9113 MEDIUM

Google Chrome < 148.0.7778.179 - Out-of-bounds Read in GPU via Crafted HTML Page

CVE-2026-5946 HIGH

BIND 9.11.0-9.16.50, 9.18.0-9.18.48, 9.20.0-9.20.22, 9.21.0-9.21.21 - DoS via Non-IN DNS Message Handling

CVE-2026-32792 MEDIUM

Unbound 1.6.2-1.25.0 - Denial of Service via DNSCrypt Packet Processing

CVE-2026-24213 HIGH

NVIDIA Triton Inference Server < 26.03 - Out-of-bounds Read in DALI Backend

CVE-2026-43620 MEDIUM

Rsync < 3.4.3 Out-of-Bounds Array Read via recv_files()

CVE-2026-43618 HIGH

Rsync < 3.4.3 Integer Overflow Information Disclosure

CVE-2026-32882 HIGH

libheif: Heap Buffer OOB Read in overlay compositing due to wrong alpha stride

CVE-2026-33642 CRITICAL

Kitty <0.47.0 compose_rectangles - Heap Buffer Over-Read/Write

CVE-2026-32738 MEDIUM

libheif <1.22.0 samples_per_chunk - Out-of-Bounds Read Denial of Service

CVE-2026-38719 MEDIUM

OpENer v2.3-558-g1e99582 - Out-of-Bounds Read

CVE-2026-8686 HIGH

DoS from MQTT v5.0 Deserialization Fault in core MQTT

CVE-2026-8578 LOW

Google Chrome < 148.0.7778.168 - Out-of-bounds Read in GPU

CVE-2026-8546 MEDIUM

Google Chrome < 148.0.7778.168 - Out-of-bounds Read in GPU

CVE-2026-8543 MEDIUM

Google Chrome < 148.0.7778.168 - Out-of-bounds Read in FileSystem

CVE-2026-8541 MEDIUM

Google Chrome < 148.0.7778.168 - Out-of-bounds Read in UI

CVE-2026-8535 MEDIUM

Google Chrome < 148.0.7778.168 - Out-of-bounds Read in Media via Crafted JPEG File

CVE-2026-43996 MEDIUM

OpenImageIO: Integer wraparound in bounds check of decode_pixel leads to out-of-bounds read in TGA paletted image decoder

CVE-2026-43909 HIGH

OpenImageIO: Signed integer overflow in SwapRGBABytes loop index leads to out-of-bounds read/write in DPX ABGR decoder

CVE-2026-42934 MEDIUM

NGINX Plus and NGINX Open Source - Out-of-bounds Read in ngx_http_charset_module

Previous Page 7 of 352 Next

Details

Vulnerabilities 8,778

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy