CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,258 vulnerabilities with CWE-787
CVE-2022-24094 HIGH
Adobe After Effects <22.2, 18.4.4 - RCE
CVSS 7.8
CVE-2022-25566 HIGH
Tenda AX1806 v1.0.0.1 - Denial of Service via saveParentControlInfo Time Parameter
CVSS 7.5
CVE-2022-25561 HIGH
Tenda AX12 v22.03.01.21 - Denial of Service via Stack Overflow in sub_42DE00
CVSS 7.5
CVE-2022-25560 HIGH
Tenda AX12 v22.03.01.21 - Stack Overflow via list Parameter
CVSS 7.5
CVE-2022-25558 HIGH
Tenda AX1806 v1.0.0.1 - Stack Overflow via ProvinceCode Parameter
CVSS 7.5
CVE-2022-25557 HIGH
Tenda AX1806 v1.0.0.1 - Denial of Service via Heap Overflow in saveParentControlInfo
CVSS 7.5
CVE-2022-25556 HIGH
Tenda AX12 v22.03.01.21 - Stack Overflow via list Parameter
CVSS 7.5
CVE-2022-25555 HIGH
Tenda AX1806 v1.0.0.1 - Stack Overflow via ntpServer Parameter
CVSS 7.5
CVE-2022-25554 HIGH
Tenda AX1806 v1.0.0.1 - Stack Overflow via deviceId Parameter
CVSS 7.5
CVE-2022-25553 HIGH
Tenda AX1806 v1.0.0.1 - Stack Overflow via formSetSysToolDDNS ddnsPwd Parameter
CVSS 7.5
CVE-2022-25552 HIGH
Tenda AX1806 v1.0.0.1 - Stack Overflow via form_fast_setting_wifi_set SSID Parameter
CVSS 7.5
CVE-2022-25551 HIGH
Tenda AX1806 v1.0.0.1 - Denial of Service via ddnsDomain Parameter
CVSS 7.5
CVE-2022-25550 HIGH
Tenda AX1806 v1.0.0.1 - Denial of Service via deviceName Parameter
CVSS 7.5
CVE-2022-25549 HIGH
Tenda AX1806 v1.0.0.1 - Stack Overflow via formSetSysToolDDNS ddnsEn Parameter
CVSS 7.5
CVE-2022-25548 HIGH
Tenda AX1806 v1.0.0.1 - Stack Overflow Denial of Service via fromSetSysTime serverName Parameter
CVSS 7.5
CVE-2022-25547 HIGH
Tenda AX1806 v1.0.0.1 - Stack Overflow Denial of Service via fromSetSysTime Time Parameter
CVSS 7.5
CVE-2022-25546 HIGH
Tenda AX1806 v1.0.0.1 - Denial of Service via ddnsUser Parameter
CVSS 7.5
CVE-2022-25234 HIGH
CX-Programmer < 9.77 - Out-of-bounds Write via Crafted CXP File
CVSS 7.8
CVE-2022-24995 CRITICAL
Tenda AX3 v16.03.12.10_CN - Stack Overflow in fromSetSysTime via Time Parameter
CVSS 9.8
CVE-2022-21124 HIGH
CX-Programmer < 9.77 - Out-of-bounds Write via Crafted CXP File
CVSS 7.8
CVE-2022-20059 MEDIUM
Preloader (usb) - Local Privilege Escalation
CVSS 6.6
CVE-2022-20058 MEDIUM
Preloader (usb) - Privilege Escalation
CVSS 6.6
CVE-2022-20056 MEDIUM
Preloader (usb) - Local Privilege Escalation
CVSS 6.6
CVE-2022-20055 MEDIUM
Preloader (usb) - Privilege Escalation
CVSS 6.8
CVE-2022-20048 HIGH
Video Decoder - Privilege Escalation
CVSS 7.8
Details
Vulnerabilities 14,258
Exploit Likelihood High