Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-129

CWE-129

High likelihood

Improper Validation of Array Index

Parent: CWE-1285 - Improper Validation of Specified Index, Position, or Offset in Input

The product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array.

572 vulnerabilities with CWE-129

CVE-2023-28558 HIGH

WLAN <Tx Status Handler - Memory Corruption

CVE-2023-28557 HIGH

Qualcomm WLAN HAL - Memory Corruption

CVE-2023-28548 HIGH

Qualcomm WLAN HAL - Memory Corruption

CVE-2023-21636 MEDIUM

Qualcomm AQT1000 Firmware - Memory Corruption via Improper Array Index Validation

CVE-2023-36307 MEDIUM

ZPLGFA 1.1.1 - Denial of Service via Zero-Width Image Processing

CVE-2023-36308 MEDIUM

Disintegration Imaging 1.6.2 - Info Disclosure

CVE-2023-21650 MEDIUM

GPS HLOS Driver - Memory Corruption

CVE-2023-29458 MEDIUM

Zabbix - Denial of Service via Duktape Valstack Overflow

CVE-2023-31194 MEDIUM

Diagon v1.0.139 - Memory Corruption

CVE-2023-2570 HIGH

Schneider Electric EcoStruxure Foxboro DCS Control Core Services - Local DoS and Kernel Execution via IOCTL

CVE-2023-0950 HIGH

LibreOffice 7.4.0-7.4.5 and 7.5.0 - Remote Code Execution via Malformed Spreadsheet Formula

CVE-2023-28004 CRITICAL

PowerLogic HDPM6000 Firmware < 0.58.6 - Denial of Service or Remote Code Execution via Ethernet Request

CVE-2023-2008 HIGH

Linux Kernel < 5.19 - Privilege Escalation via udmabuf Fault Handler Array Index Validation

CVE-2023-26066 CRITICAL

Lexmark <2023-02-19 - Info Disclosure

CVE-2023-20080 HIGH

Cisco IOS - Unauthenticated Denial of Service via DHCPv6 Message Handling

CVE-2023-20633 MEDIUM

Android - Local Privilege Escalation via USB Missing Bounds Check

CVE-2023-0755 CRITICAL

GE Digital Industrial Gateway Server < 7.612 - Remote Code Execution via Array Index Validation

CVE-2023-22408 HIGH

Juniper Junos OS on SRX 5000 Series DoS via Malformed SIP SDP Field

CVE-2023-22401 HIGH

Juniper Networks Junos OS/Junos OS Evolved - DoS

CVE-2022-50315 HIGH

Linux Kernel Array Index Out-of-Bounds in AHCI EM Priv Array

CVE-2022-50066 HIGH

Linux Kernel 4.11-5.19.3 - Out-of-Bounds Array Index in aq_nic_stop

CVE-2022-49720 HIGH

Linux Kernel 4.16-5.10.213, 5.11-5.15.48, 5.16-5.18.5 - Out-of-Bounds Array Index in blk_mq_alloc_request_hctx

CVE-2022-49548 HIGH

Linux Kernel 5.7-5.10.119, 5.11-5.15.44, 5.16-5.17.12, 5.18 - Memory Corruption via BPF Trampoline Array Overflow

CVE-2022-49478 HIGH

Linux kernel - Array Index Out-of-Bounds

CVE-2022-49471 HIGH

Linux Kernel < 5.17.14, 5.16.0-5.16, 5.18.0-5.18.3 - Out-of-Bounds Array Access in rtw89_phy_cfo_parse

Previous Page 11 of 23 Next

Details

Vulnerabilities 572

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy