CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,144 vulnerabilities with CWE-787
CVE-2025-14133 HIGH
Linksys RE6500/RE6250/RE6300/RE6350/RE7000/RE9000 - Stack-Based Buffer Overflow
CVSS 8.8
CVE-2025-13654 HIGH
zevv duc < 1.4.6 - Stack Buffer Overflow in buffer_get Function
CVSS 7.5
CVE-2025-12196 HIGH
WatchGuard Fireware 12.0-12.11.4, 12.5-12.5.13, 2025.1-2025.1.2 - Authenticated Remote Code Execution via CLI Command
CVSS 7.2
CVE-2025-12195 HIGH
WatchGuard Fireware <=12.5.13, 2025.1.2 - Authenticated RCE via IPSec CLI
CVSS 7.2
CVE-2025-12026 HIGH
WatchGuard Fireware Authenticated Out-of-bounds Write via Certificate Request CLI
CVSS 7.2
CVE-2025-20777 MEDIUM
Android - Out-of-bounds Write in Display Component
CVSS 6.7
CVE-2025-20774 MEDIUM
Android - Heap-based Buffer Overflow in Display Component
CVSS 6.7
CVE-2025-20769 MEDIUM
Android - Local Privilege Escalation via Display Bounds Check Bypass
CVSS 6.7
CVE-2025-20767 HIGH
Android - Out-of-bounds Write in Display Component
CVSS 7.8
CVE-2025-20764 HIGH
Android - Out-of-bounds Write in SMI
CVSS 7.8
CVE-2025-20763 HIGH
Android - Out-of-bounds Write in mmdvfs
CVSS 7.8
CVE-2025-20751 MEDIUM
MediaTek NR15 - Remote Denial of Service via Missing Bounds Check in Modem
CVSS 6.5
CVE-2025-58480 MEDIUM
libimagecodec.quram.so <SMR Dec-2025 Release 1 - Buffer Overflow
CVSS 4.3
CVE-2025-58478 MEDIUM
libimagecodec.quram.so <SMR Dec-2025 Release 1 - Memory Corruption
CVSS 4.3
CVE-2025-58477 MEDIUM
libimagecodec <SMR Dec-2025 Release 1 - Memory Corruption
CVSS 4.3
CVE-2025-21072 MEDIUM
Samsung Android - Out-of-bounds Write in Fingerprint Trustlet Metadata Decoding
CVSS 5.7
CVE-2025-66216 CRITICAL
AIS-catcher <0.64 - Buffer Overflow
CVSS 9.8
CVE-2025-64344 HIGH
Suricata < 7.0.13 - Stack-based Buffer Overflow in Lua Script Buffer Handling
CVSS 7.5
CVE-2025-64333 HIGH
Suricata < 7.0.13 - Denial of Service via HTTP Content Type Logging
CVSS 7.5
CVE-2025-64332 HIGH
Suricata < 7.0.13 - Denial of Service via SWF Decompression
CVSS 7.5
CVE-2025-64331 HIGH
Suricata < 7.0.13 - Stack-based Buffer Overflow via Large HTTP File Transfer
CVSS 7.5
CVE-2025-64330 HIGH
Suricata < 7.0.13 - Denial of Service via Heap-based Buffer Overflow in Alert Logging
CVSS 7.5
CVE-2025-64129 HIGH
Zenitel TCIV-3+ - Memory Corruption
CVSS 7.6
CVE-2025-64657 CRITICAL
Azure Application Gateway - Stack-based Buffer Overflow
CVSS 9.8
CVE-2025-65084 CRITICAL
Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, and Cobalt Share <= 12.6.1204.216 - Out-of-Bounds Write
CVSS 9.8
Details
Vulnerabilities 14,144
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits