CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,250 vulnerabilities with CWE-787
CVE-2022-44314 MEDIUM
picoc 3.2.2 - Heap Buffer Overflow in StringStrncpy via ExpressionParseFunctionCall
CVSS 5.5
CVE-2022-44313 MEDIUM
picoc 3.2.2 - Heap Buffer Overflow in ExpressionCoerceUnsignedInteger
CVSS 5.5
CVE-2022-44312 MEDIUM
picoc 3.2.2 - Heap Buffer Overflow in ExpressionCoerceInteger
CVSS 5.5
CVE-2022-43397 HIGH
Parasolid <V34.0.252-V35.0.170, Simcenter Femap <V2023.1 - Code Inj...
CVSS 7.8
CVE-2022-41664 HIGH
JT2Go, Teamcenter Visualization <V14.1.0.4 - Buffer Overflow
CVSS 7.8
CVE-2022-41660 HIGH
JT2Go, Teamcenter Visualization <V14.1.0.4 - Code Injection
CVSS 7.8
CVE-2022-39136 HIGH
Siemens JT2Go < 14.1.0.4 and Teamcenter Visualization < 13.3.0.7 - Heap-based Buffer Overflow via TIF File Parsing
CVSS 7.8
CVE-2022-42920 CRITICAL
Apache Commons BCEL < 6.6.0 - Arbitrary Bytecode Generation via Out-of-bounds Write
CVSS 9.8
CVE-2022-38582 MEDIUM
Watchdog Antivirus <1.4.158 - Privilege Escalation
CVSS 6.5
CVE-2022-43108 CRITICAL
Tenda AC23 V16.03.07.45_cn - Stack Overflow via formSetFirewallCfg firewallEn Parameter
CVSS 9.8
CVE-2022-43107 CRITICAL
Tenda AC23 V16.03.07.45_cn - Stack Overflow via setSmartPowerManagement Time Parameter
CVSS 9.8
CVE-2022-43106 CRITICAL
Tenda AC23 V16.03.07.45_cn - Stack Overflow via setSchedWifi schedStartTime Parameter
CVSS 9.8
CVE-2022-43105 CRITICAL
Tenda AC23 V16.03.07.45_cn - Stack Overflow via fromSetWifiGusetBasic shareSpeed Parameter
CVSS 9.8
CVE-2022-43104 CRITICAL
Tenda AC23 V16.03.07.45_cn - Stack Overflow via wpapsk_crypto Parameter in fromSetWirelessRepeat
CVSS 9.8
CVE-2022-43103 CRITICAL
Tenda AC23 V16.03.07.45_cn - Stack Overflow via formSetQosBand List Parameter
CVSS 9.8
CVE-2022-43102 CRITICAL
Tenda AC23 V16.03.07.45_cn - Stack Overflow via fromSetSysTime timeZone Parameter
CVSS 9.8
CVE-2022-43101 CRITICAL
Tenda AC23 V16.03.07.45_cn - Stack Overflow via devName Parameter in formSetDeviceName
CVSS 9.8
CVE-2022-24936 HIGH
Silicon Labs Gecko Bootloader < 4.0.1 - Out-of-Bounds Write in GBL Parser
CVSS 8.3
CVE-2022-43253 MEDIUM
Libde265 1.0.8 - Heap Buffer Overflow in put_unweighted_pred_16_fallback
CVSS 6.5
CVE-2022-43252 MEDIUM
Libde265 1.0.8 - Denial of Service via Heap Buffer Overflow in put_epel_16_fallback
CVSS 6.5
CVE-2022-43250 MEDIUM
libde265 1.0.8 - Heap-Based Buffer Overflow in put_qpel_0_0_fallback_16
CVSS 6.5
CVE-2022-43249 MEDIUM
Libde265 1.0.8 - Denial of Service via put_epel_hv_fallback in fallback-motion.cc
CVSS 6.5
CVE-2022-43248 MEDIUM
Libde265 1.0.8 - Heap-Based Buffer Overflow in put_weighted_pred_avg_16_fallback
CVSS 6.5
CVE-2022-43245 MEDIUM
libde265 1.0.8 - Denial of Service via Crafted Video File
CVSS 6.5
CVE-2022-43244 MEDIUM
libde265 1.0.8 - Heap-Based Buffer Overflow in put_qpel_fallback
CVSS 6.5
Details
Vulnerabilities 14,250
Exploit Likelihood High