CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,250 vulnerabilities with CWE-787
CVE-2022-42499 CRITICAL
Android - Remote Code Execution via Heap Buffer Overflow in sms_SendMmCpErrMsg
CVSS 9.8
CVE-2022-42498 CRITICAL
Android Pixel Cellular Firmware - Out-of-bounds Write
CVSS 9.8
CVE-2022-48423 HIGH
Linux Kernel < 6.1.3 - Out-of-bounds Write in NTFS3 Resident Attribute Handling
CVSS 7.8
CVE-2022-43605 CRITICAL
EIP Stack Group OpENer <58ee13c - Memory Corruption
CVSS 10.0
CVE-2022-43604 CRITICAL
EIP Stack Group OpENer <58ee13c - RCE
CVSS 10.0
CVE-2022-47459 MEDIUM
Android - Out-of-bounds Write in WLAN Driver
CVSS 5.5
CVE-2022-47457 MEDIUM
Android - Out-of-bounds Write in WLAN Driver
CVSS 5.5
CVE-2022-33260 MEDIUM
Product <Version> - Buffer Overflow
CVSS 5.9
CVE-2022-47665 HIGH
Libde265 1.0.9 - Heap Buffer Overflow in de265_image::set_SliceAddrRS
CVSS 7.8
CVE-2022-37937 CRITICAL
HPE Serviceguard for Linux < a.12.80.05 - Unauthenticated Out-of-bounds Write
CVSS 9.8
CVE-2022-46723 CRITICAL
macOS <12.6.1/<11.7.1 - Info Disclosure
CVSS 9.8
CVE-2022-26760 CRITICAL
iPadOS < 15.5 - Privilege Escalation via Memory Corruption
CVSS 9.8
CVE-2022-3219 LOW
GnuPG - Denial of Service via Crafted Public Key with Excessive Signatures
CVSS 3.3
CVE-2022-36382 MEDIUM
Intel Ethernet <1.7.0.8, <9.101 - DoS
CVSS 6.0
CVE-2022-32575 MEDIUM
Intel Trace Analyzer and Collector < 2021.5 - Authenticated Out-of-bounds Write
CVSS 4.8
CVE-2022-40080 HIGH
Acer Aspire E5-475G Firmware - Stack Overflow in FpGui Module
CVSS 7.8
CVE-2022-33871 MEDIUM
FortiWeb <=7.0.1/6.4/6.3.19 Authenticated Stack Overflow via CLI Backup
CVSS 6.6
CVE-2022-30306 MEDIUM
FortiWeb 6.3.6-6.3.19, 6.4, <=7.0.1 - Authenticated Stack-based Buffer Overflow via CA Sign Password
CVSS 6.6
CVE-2022-45587 MEDIUM
xpdf 4.04 - Denial of Service via Stack Overflow in gmalloc
CVSS 5.5
CVE-2022-45586 MEDIUM
xpdf 4.04 - Denial of Service via Stack Overflow in Dict::find
CVSS 5.5
CVE-2022-47977 HIGH
Siemens JT Open < 11.2.3.0 and JT Utilities < 13.2.3.0 - Memory Corruption via Crafted JT File Parsing
CVSS 7.8
CVE-2022-48322 CRITICAL
NETGEAR Nighthawk WiFi Mesh Systems and Routers - Pre-authentication Stack-based Buffer Overflow
CVSS 9.8
CVE-2022-47452 MEDIUM
Android - Out-of-bounds Write in GNSS Driver
CVSS 5.5
CVE-2022-47369 MEDIUM
Android - Denial of Service via Missing Params Check in WLAN Driver
CVSS 5.5
CVE-2022-47368 MEDIUM
Android - Denial of Service in WLAN Driver via Missing Params Check
CVSS 5.5
Details
Vulnerabilities 14,250
Exploit Likelihood High