CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,258 vulnerabilities with CWE-787
CVE-2022-24159 HIGH
Tenda AX3 v16.03.12.10_CN - Denial of Service via formSetPPTPServer Stack Overflow
CVSS 7.5
CVE-2022-24158 HIGH
Tenda AX3 v16.03.12.10_CN - Denial of Service via Stack Overflow in fromSetIpMacBind
CVSS 7.5
CVE-2022-24157 HIGH
Tenda AX3 v16.03.12.10_CN - Denial of Service via formSetMacFilterCfg deviceList Parameter
CVSS 7.5
CVE-2022-24156 HIGH
Tenda AX3 v16.03.12.10_CN - Stack Overflow via formSetVirtualSer list Parameter
CVSS 7.5
CVE-2022-24155 HIGH
Tenda AX3 v16.03.12.10_CN - Denial of Service via setSchedWifi Heap Overflow
CVSS 7.5
CVE-2022-24154 HIGH
Tenda AX3 v16.03.12.10_CN - Stack Overflow via rebootTime Parameter
CVSS 7.5
CVE-2022-24153 HIGH
Tenda AX3 v16.03.12.10_CN - Denial of Service via devName Parameter
CVSS 7.5
CVE-2022-24152 HIGH
Tenda AX3 v16.03.12.10_CN - Stack Overflow via fromSetRouteStatic list Parameter
CVSS 7.5
CVE-2022-24151 HIGH
Tenda AX3 v16.03.12.10_CN - Buffer Overflow
CVSS 7.5
CVE-2022-24149 HIGH
Tenda AX3 v16.03.12.10_CN - Buffer Overflow
CVSS 7.5
CVE-2022-24147 HIGH
Tenda AX3 v16.03.12.10_CN - Buffer Overflow
CVSS 7.5
CVE-2022-24146 HIGH
Tenda AX3 v16.03.12.10_CN - Stack Overflow via formSetQosBand list Parameter
CVSS 7.5
CVE-2022-24145 HIGH
Tenda AX3 v16.03.12.10_CN - Stack Overflow in formWifiBasicSet via Security Parameters
CVSS 7.5
CVE-2022-24143 HIGH
Tenda AX3 v16.03.12.10_CN and AX12 22.03.01.2_CN - Buffer Overflow
CVSS 7.5
CVE-2022-24142 HIGH
Tenda AX3 v16.03.12.10_CN - Stack Overflow via formSetFirewallCfg firewallEn Parameter
CVSS 7.5
CVE-2022-21740 HIGH
TensorFlow < 2.5.3 - Heap Overflow in SparseCountSparseOutput
CVSS 7.6
CVE-2022-24031 HIGH
Insyde H2O <5.5 - Memory Corruption
CVSS 8.2
CVE-2022-24030 HIGH
Insyde InsydeH2O 5.0-5.08.41 - SMM Memory Corruption via AhciBusDxe
CVSS 7.5
CVE-2022-24197 MEDIUM
iText < 7.1.18 and < 7.2.2 - Denial of Service via ByteBuffer.append Stack Overflow
CVSS 6.5
CVE-2022-0417 HIGH
vim < 8.2.4245 - Heap-based Buffer Overflow
CVSS 7.8
CVE-2022-0408 HIGH
vim < 8.2.4247 - Stack-based Buffer Overflow
CVSS 7.8
CVE-2022-0407 HIGH
vim < 8.2.4219 - Heap-based Buffer Overflow
CVSS 7.8
CVE-2022-0392 HIGH
vim < 8.2.4218 - Heap-based Buffer Overflow
CVSS 7.8
CVE-2022-21796 HIGH
Reolink RLC-410W Firmware 3.0.0.136_20121102 - Memory Corruption via HTTP Request to netserver parse_command_list
CVSS 8.2
CVE-2022-21217 CRITICAL
Reolink RLC-410W Firmware 3.0.0.136_20121102 - Out-of-Bounds Write via TestEmail Functionality
CVSS 9.8
Details
Vulnerabilities 14,258
Exploit Likelihood High