CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,225 vulnerabilities with CWE-787
CVE-2023-4685 HIGH
Delta Electronics CNCSoft-B < 1.0.0.2 and DOPSoft < 4.0.0.82 - Stack-based Buffer Overflow
CVSS 7.8
CVE-2023-30800 HIGH
MikroTik RouterOS 6.0-6.49.9 - Unauthenticated Denial of Service via HTTP Request
CVSS 7.5
CVE-2023-40942 CRITICAL
Tenda AC9 V3.0BR_V15.03.06.42_multi_TD01 - Buffer Overflow
CVSS 9.8
CVE-2023-38485 HIGH
HPE Aruba 9200/9000 Controllers BIOS - Early Boot Code Execution
CVSS 8.0
CVE-2023-20250 MEDIUM
Cisco Small Business RV110W-215W - Authenticated RCE
CVSS 6.5
CVE-2023-28581 CRITICAL
Qualcomm FastConnect and Snapdragon WLAN Firmware - Memory Corruption in GTK Key Parsing
CVSS 9.8
CVE-2023-28573 HIGH
Qualcomm WLAN HAL - Memory Corruption
CVSS 7.8
CVE-2023-28567 HIGH
Qualcomm WLAN HAL - Memory Corruption
CVSS 7.8
CVE-2023-28565 HIGH
Qualcomm WLAN HAL - Memory Corruption
CVSS 7.8
CVE-2023-28564 HIGH
Qualcomm WLAN HAL - Memory Corruption
CVSS 7.8
CVE-2023-28562 CRITICAL
Qualcomm FastConnect and AQT1000 Firmware - Memory Corruption via Remote ESL Payloads
CVSS 9.8
CVE-2023-28560 HIGH
Qualcomm WLAN HAL - Memory Corruption
CVSS 7.8
CVE-2023-28559 HIGH
Qualcomm WLAN Firmware - Memory Corruption
CVSS 7.8
CVE-2023-28558 HIGH
WLAN <Tx Status Handler - Memory Corruption
CVSS 7.8
CVE-2023-28538 HIGH
Qualcomm AQT1000 Firmware - Stack-based Buffer Overflow in WinAcpi Update Driver
CVSS 8.4
CVE-2023-21664 HIGH
Qualcomm AQT1000 Firmware - Buffer Overflow in Core Platform Response Logging
CVSS 7.8
CVE-2023-21663 MEDIUM
Qualcomm Display Metadata Access Firmware - Memory Corruption
CVSS 6.7
CVE-2023-21654 MEDIUM
Qualcomm Audio Playback Firmware - Memory Corruption
CVSS 6.7
CVE-2023-4756 MEDIUM
gpac < 2.3 - Stack-based Buffer Overflow
CVSS 5.5
CVE-2023-4754 MEDIUM
gpac < 2.3 - Out-of-bounds Write
CVSS 5.5
CVE-2023-32813 MEDIUM
Yocto - Out-of-bounds Write in GNSS Service
CVSS 4.4
CVE-2023-32812 MEDIUM
Yocto - Out-of-bounds Write in GNSS Service
CVSS 6.7
CVE-2023-32811 MEDIUM
Yocto - Local Privilege Escalation via Improper Input Validation in Connectivity System Driver
CVSS 6.7
CVE-2023-32806 MEDIUM
Yocto - Out-of-bounds Write in WLAN Driver
CVSS 6.7
CVE-2023-32805 MEDIUM
Android - Out-of-bounds Write in Power Component
CVSS 6.5
Details
Vulnerabilities 14,225
Exploit Likelihood High