CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,225 vulnerabilities with CWE-787
CVE-2023-34365 CRITICAL
Yifan YF325 Firmware v1.0_20221108 - Stack-based Buffer Overflow in libutils.so nvram_restore
CVSS 9.8
CVE-2023-34346 CRITICAL
Yifan YF325 Firmware v1.0_20221108 - Stack-Based Buffer Overflow via httpd gwcfg.cgi
CVSS 9.8
CVE-2023-31272 HIGH
Yifan YF325 <1.0_20221108 - Buffer Overflow
CVSS 8.8
CVE-2023-31096 HIGH
Broadcom LSI PCI-SV92EX Firmware < 2.2.100.1 - Local Privilege Escalation via Stack Overflow in RTLCopyMemory
CVSS 7.8
CVE-2023-43785 MEDIUM
libX11 < 1.8.7 - Out-of-bounds Read in _XkbReadKeySyms()
CVSS 6.5
CVE-2023-45601 HIGH
Siemens Parasolid < 35.0.262 - Out-of-Bounds Write
CVSS 7.8
CVE-2023-44083 HIGH
Tecnomatix Plant Simulation <V2201.0009-V2302.0003 - Code Injection
CVSS 7.8
CVE-2023-44082 HIGH
Tecnomatix Plant Simulation <V2201.0009, V2302.0003 - Code Injection
CVSS 7.8
CVE-2023-44081 HIGH
Tecnomatix Plant Simulation <V2201.0009, V2302.0003 - Code Injection
CVSS 7.8
CVE-2023-43641 HIGH
libcue < 2.3.0 - Out-of-bounds Write via CUE Sheet Parsing
CVSS 8.8
CVE-2023-40652 MEDIUM
Android - Out-of-bounds Write in JPG Driver
CVSS 4.4
CVE-2023-40651 MEDIUM
Android - Out-of-bounds Write in urild Service
CVSS 4.4
CVE-2023-3725 HIGH
Zephyr < 3.4.0 - Stack-based Buffer Overflow in CAN Bus Subsystem
CVSS 7.6
CVE-2023-44807 CRITICAL
D-Link DIR-820L 1.05B03 - Stack Overflow in cancelPing Function
CVSS 9.8
CVE-2023-32972 LOW
QNAP QTS/QuTS Authenticated Stack-based Buffer Overflow
CVSS 3.8
CVE-2023-32971 LOW
QNAP QTS 4.5.0-4.5.4.2466 and 5.0.0-5.0.1.2424 - Authenticated Stack-based Buffer Overflow
CVSS 3.8
CVE-2023-3428 MEDIUM
ImageMagick < 7.1.1-19 - Heap-based Buffer Overflow in TIFF Coder
CVSS 6.2
CVE-2023-30733 HIGH
Samsung Android - Stack-based Buffer Overflow in HDCP Trustlet
CVSS 7.8
CVE-2023-4911 HIGH KEV
Glibc Tunables Privilege Escalation CVE-2023-4911 (aka Looney Tunables)
CVSS 7.8
CVE-2023-34970 MEDIUM
Mali GPU Kernel Driver - Use-After-Free via Improper GPU Processing Operations
CVSS 4.7
CVE-2023-33034 HIGH
Qualcomm CSRA6620 Firmware - Memory Corruption via ADSP Response Command Parsing
CVSS 7.8
CVE-2023-33028 CRITICAL
Qualcomm WLAN Firmware - Stack-based Buffer Overflow in PMK Cache Memory Copy
CVSS 9.8
CVE-2023-24855 CRITICAL
Modem <AS Security Exchange - Memory Corruption
CVSS 9.8
CVE-2023-24853 HIGH
Qualcomm FastConnect and AR8035 Firmware - Memory Corruption in HLOS
CVSS 8.4
CVE-2023-22385 HIGH
Qualcomm 315 5G IoT Modem Firmware - Memory Corruption via MO or MT VoLTE Call
CVSS 8.2
Details
Vulnerabilities 14,225
Exploit Likelihood High