CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,250 vulnerabilities with CWE-787
CVE-2022-31696 HIGH
VMware ESXi - Memory Corruption via Network Socket Handling
CVSS 8.8
CVE-2022-25698 HIGH
Qualcomm Snapdragon Mobile and Wearables Firmware - Memory Corruption via SPI Bus Address Configuration
CVSS 8.4
CVE-2022-25697 HIGH
Qualcomm Snapdragon Mobile and Wearables Firmware - Memory Corruption via I2C Address Configuration
CVSS 8.4
CVE-2022-20469 HIGH
Android - Out-of-bounds Write in avct_lcb_msg_asmbl
CVSS 8.8
CVE-2022-20411 HIGH
Android - Remote Code Execution via Out-of-bounds Write in avdt_msg_asmbl
CVSS 8.8
CVE-2022-45693 HIGH
jettison < 1.5.2 - Denial of Service via Stack Overflow in Map Parameter
CVSS 7.5
CVE-2022-45690 HIGH
hutool-json < 5.8.11 - Denial of Service via Crafted JSON or XML Data
CVSS 7.5
CVE-2022-45689 HIGH
hutool-json 5.8.10 - Out-of-bounds Write
CVSS 7.5
CVE-2022-45688 HIGH
hutool-json 5.8.10 - Denial of Service via XML.toJSONObject Stack Overflow
CVSS 7.5
CVE-2022-45685 HIGH
Jettison < 1.5.2 - Denial of Service via Stack Overflow in JSON Parser
CVSS 7.5
CVE-2022-45979 HIGH
Tenda AX12 v22.03.01.21_CN - Stack Overflow via SSID Parameter
CVSS 7.5
CVE-2022-45957 HIGH
ZTE ZXHN-H108NS Firmware H108NSV1.0.7u_ZRD_GR2_A68 - Remote Denial of Service via Stack Buffer Overflow
CVSS 7.5
CVE-2022-44650 HIGH
Trend Micro Apex One - Local Privilege Escalation via Unauthorized Change Prevention Service
CVSS 7.8
CVE-2022-44649 HIGH
Trend Micro Apex One < 14.0.11789 - Local Privilege Escalation via Unauthorized Change Prevention Service
CVSS 7.8
CVE-2022-37903 HIGH
Aruba SD-WAN 8.7.0.0-2.3.0.6 & ArubaOS 6.5.4.0-6.5.4.22 - Authenticated Arbitrary File Write
CVSS 7.2
CVE-2022-20968 HIGH
Cisco IP Phone 7800 and 8800 Series Firmware - Stack Overflow via Cisco Discovery Protocol Packet Processing
CVSS 8.1
CVE-2022-23478 CRITICAL
xrdp < 0.9.21 - Out-of-bounds Write in xrdp_mm_trans_process_drdynvc_channel_open()
CVSS 9.1
CVE-2022-45525 HIGH
Tenda W30E V1.0.1.25(633) - Stack Overflow via CertListInfo downaction Parameter
CVSS 7.5
CVE-2022-45524 HIGH
Tenda W30E V1.0.1.25(633) - Stack Overflow via opttype Parameter in IPSECsave Endpoint
CVSS 7.5
CVE-2022-45523 HIGH
Tenda W30E V1.0.1.25(633) - Stack Overflow via L7Im Page Parameter
CVSS 7.5
CVE-2022-45522 HIGH
Tenda W30E V1.0.1.25(633) - Stack Overflow via SafeClientFilter Page Parameter
CVSS 7.5
CVE-2022-45521 HIGH
Tenda W30E V1.0.1.25(633) - Stack Overflow via SafeUrlFilter Page Parameter
CVSS 7.5
CVE-2022-45520 HIGH
Tenda W30E V1.0.1.25(633) - Stack Overflow via QoS Setting Page Parameter
CVSS 7.5
CVE-2022-45519 HIGH
Tenda W30E V1.0.1.25(633) - Stack Overflow via Go Parameter in SafeMacFilter
CVSS 7.5
CVE-2022-45518 HIGH
Tenda W30E V1.0.1.25(633) - Stack Overflow via SetIpBind Page Parameter
CVSS 7.5
Details
Vulnerabilities 14,250
Exploit Likelihood High