CWE-131

High likelihood

Incorrect Calculation of Buffer Size

Parent: CWE-682 - Incorrect Calculation

The product does not correctly calculate the size to be used when allocating a buffer, which could lead to a buffer overflow.

182 vulnerabilities with CWE-131
CVE-2019-19282 HIGH
Siemens SIMATIC Encrypted Communication - Denial of Service
CVSS 7.5
CVE-2019-10500 CRITICAL
Qualcomm APQ8009 Firmware - Buffer Overflow via MT Secondary PDP Request
CVSS 9.8
CVE-2019-10627 CRITICAL
Qualcomm IPS < 2019.2 - Integer Overflow to Buffer Overflow in PostScript Image Handling
CVSS 9.8
CVE-2019-5696 MEDIUM
NVIDIA Virtual GPU Manager - Denial of Service via Incorrectly Sized Buffer
CVSS 5.5
CVE-2019-15161 MEDIUM
libpcap < 1.9.1 - Buffer Overflow via rpcapd/daemon.c Length Mishandling
CVSS 5.3
CVE-2019-5435 LOW
curl 7.62.0-7.64.1 - Integer Overflow Buffer Overflow in URL API
CVSS 3.7
CVE-2019-3560 HIGH
Facebook Fizz < 2019.03.04.00 - Denial of Service via PlaintextRecordLayer Buffer Length Calculation
CVSS 7.5
CVE-2018-4038 HIGH
Atlantis Word Processor <3.2.7.2 - Code Injection
CVSS 7.8
CVE-2018-14618 HIGH
libcurl < 7.61.1 - Heap Buffer Overflow via NTLM Authentication Password Length
CVSS 7.5
CVE-2018-1000224 HIGH
Godot Engine < 2.1.5 and 3.0 < 3.0.6 - Denial of Service via Malformed Network Packet
CVSS 7.5
CVE-2017-13315 HIGH
Android - Elevation of Privileges via DcParamObject Parcel Size Mismatch
CVSS 7.8
CVE-2017-13289 HIGH
Android <8.1 - Privilege Escalation
CVSS 7.8
CVE-2017-14934 MEDIUM
GNU Binutils 2.29 - Denial of Service via Crafted ELF File with Negative CU Size
CVSS 5.5
CVE-2017-0715 HIGH
Android 6.0 6.0.1 7.0 7.1.1 7.1.2 - Remote Code Execution in libavc
CVSS 7.8
CVE-2017-0620 HIGH
Android Kernel <3.18 - Privilege Escalation
CVSS 7.0
CVE-2017-0166 HIGH
Windows LDAP - Elevation of Privilege via Improper Buffer Length Calculation
CVSS 8.1
CVE-2017-0569 HIGH
Android Kernel <3.18 - Privilege Escalation
CVSS 7.0
CVE-2014-3468
GNU Libtasn1 < 3.6 - Out-of-Bounds Access via Negative Bit Length in ASN.1 Data
CVE-2008-0599 CRITICAL
PHP < 5.2.6 - Remote Code Execution via PATH_TRANSLATED Buffer Overflow
CVSS 9.8
CVE-2005-3120 CRITICAL
lynx < 2.8.6 - Remote Code Execution via HTrjis Asian Character Handling
CVSS 9.8
CVE-2005-2103 CRITICAL
Gaim < 1.5.0 - Buffer Overflow via AIM/ICQ Away Message Substitution Strings
CVSS 9.8
CVE-2005-0490 HIGH
curl 7.12.1 - Remote Code Execution via Base64 Decoding Buffer Overflow
CVSS 8.8
CVE-2004-0940 HIGH
HP-UX - Buffer Overflow in mod_include get_tag Function
CVSS 7.8
CVE-2004-0747 HIGH
Apache HTTP Server 2.0.35-2.0.50 - Local Privilege Escalation via .htaccess Environment Variable Expansion
CVSS 7.8
CVE-2004-1363 CRITICAL
Oracle Application Server - Buffer Overflow via Extproc Library Name Environment Variable Expansion
CVSS 9.8
Details
Vulnerabilities 182
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits