CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,216 vulnerabilities with CWE-787
CVE-2023-39279 MEDIUM
SonicOS < 7.0.1-5145 - Authenticated Stack-Based Buffer Overflow via getPacketReplayData.json Endpoint
CVSS 6.5
CVE-2023-39278 MEDIUM
SonicOS < 7.0.1-5145 - Authenticated Stack-Based Buffer Overflow via main.cgi
CVSS 6.5
CVE-2023-39277 MEDIUM
SonicOS < 7.0.1-5145 - Authenticated Stack-based Buffer Overflow via sonicflow.csv and appflowsessions.csv Endpoints
CVSS 6.5
CVE-2023-39276 MEDIUM
SonicOS < 7.0.1-5145 - Authenticated Stack-based Buffer Overflow via getBookmarkList.json Endpoint
CVSS 6.5
CVE-2023-45985 HIGH
TOTOLINK X5000R V9.1.0u.6118_B20201102 and A7000R V9.1.0u.6115_B20201022 - Stack Overflow in setParentalRules
CVSS 7.5
CVE-2023-45984 CRITICAL
TOTOLINK X5000R/A7000R <9.1.0u - Buffer Overflow
CVSS 9.8
CVE-2023-45580 CRITICAL
D-Link DI-7003G/DI-7100G+/DI-7100G/DI-7200G+/DI-7200G/DI-7300G+/DI-7400G+ Buffer Overflow via ddns.asp
CVSS 9.8
CVE-2023-45579 CRITICAL
D-Link DI-7003G Firmware < 23.08.25d1 - Buffer Overflow via jingx.asp ip/type Parameter
CVSS 9.8
CVE-2023-45578 CRITICAL
D-Link DI-7003G/DI-7100G+/DI-7100G/DI-7200G+/DI-7200G/DI-7300G+/DI-7400G+ Buffer Overflow via pppoe_base.asp
CVSS 9.8
CVE-2023-45577 CRITICAL
D-Link DI-7003G/DI-7100G+/DI-7100G/DI-7200G+/DI-7200G/DI-7300G+/DI-7400G+ Firmware - Stack Overflow via wanid Parameter
CVSS 9.8
CVE-2023-45576 CRITICAL
D-Link DI-7003G < 23.08.25d1 - RCE via upnp_ctrl.asp Parameters
CVSS 9.8
CVE-2023-45575 CRITICAL
D-Link DI-7003G Firmware < 23.08.25d1 - Remote Code Execution via ip_position.asp ip Parameter
CVSS 9.8
CVE-2023-45574 CRITICAL
D-Link DI-7003G Firmware < 23.08.25d1 - Remote Code Execution via fn Parameter
CVSS 9.8
CVE-2023-45573 CRITICAL
D-Link DI-7003G Firmware < 23.08.25d1 - Remote Code Execution via mrclfile_del.asp n Parameter
CVSS 9.8
CVE-2023-45572 CRITICAL
D-Link DI-7003G/DI-7100G+/DI-7100G/DI-7200G+/DI-7200G/DI-7300G+/DI-7400G+ Buffer Overflow via tgfile.htm
CVSS 9.8
CVE-2023-44808 CRITICAL
D-Link DIR-820L 1.05B03 - Stack Overflow in sub_4507CC
CVSS 9.8
CVE-2023-36955 CRITICAL
TOTOLINK CP300+ <=V5.2cu.7594_B20200910 - Buffer Overflow
CVSS 9.8
CVE-2023-36950 CRITICAL
TOTOLINK X5000R V9.1.0u.6118_B20201102 & A7000R V9.1.0u.6115_B20201022 - Stack-based Buffer Overflow via http_host
CVSS 9.8
CVE-2023-36952 CRITICAL
TOTOLINK CP300+ V5.2cu.7594_B20200910 - Buffer Overflow
CVSS 9.8
CVE-2023-36947 CRITICAL
TOTOLINK X5000R/A7000R <9.1.0u - Buffer Overflow
CVSS 9.8
CVE-2023-36340 CRITICAL
TOTOLINK NR1800X 9.1.0u.6279_B20210910 - Buffer Overflow
CVSS 9.8
CVE-2023-45863 MEDIUM
Linux kernel <6.2.3 - Memory Corruption
CVSS 6.4
CVE-2023-32973 LOW
QNAP QTS 4.5.1-4.5.4.2467 - Authenticated Stack-based Buffer Overflow
CVSS 3.8
CVE-2023-29464 HIGH
FactoryTalk Linx - Unauthenticated Information Disclosure and Denial of Service via Malicious Packet Size
CVSS 8.2
CVE-2023-44197 HIGH
Junos OS & Evolved < 20.4R3-S8, 21.1, < 21.2R3-S2, < 21.3R3-S5, < 21.4R3-S5 - BGP Route Update DoS
CVSS 7.5
Details
Vulnerabilities 14,216
Exploit Likelihood High