CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,279 vulnerabilities with CWE-787
CVE-2021-23910 MEDIUM
Mercedes-Benz HERMES 2.1 - Out-of-bounds Write in RemoteDiagnosisApp
CVSS 5.3
CVE-2021-23909 MEDIUM
Mercedes-Benz HERMES 2.1 - Remote Code Execution via SH2 MCU Out-of-bounds Write
CVSS 6.3
CVE-2021-20221 MEDIUM
QEMU <= 4.2.0 - Out-of-bounds Read in ARM Generic Interrupt Controller Emulator
CVSS 6.0
CVE-2021-29511 MEDIUM
evm < 0.21.0 - Denial of Service via Memory Over-Allocation in EVM Opcode Handling
CVSS 6.5
CVE-2021-27397 HIGH
Tecnomatix Plant Simulation < V16.0.5 - Memory Corruption
CVSS 7.8
CVE-2021-20277 HIGH
Samba 4.0.0-4.12.12 - Denial of Service via LDAP Attribute with Leading Spaces
CVSS 7.5
CVE-2021-28465 HIGH
Web Media Extensions - Remote Code Execution via Out-of-bounds Write
CVSS 7.8
CVE-2021-26419 HIGH
Internet Explorer - Out-of-bounds Write in Scripting Engine
CVSS 7.5
CVE-2021-28664 HIGH KEV
Arm Mali GPU Kernel Driver Bifrost r0p0-r29p0 Midgard r8p0-r30p0 Valhall r19p0-r29p0 - Out-of-bounds Write
CVSS 8.8
CVE-2021-22672 HIGH
Delta Electronics' CNCSoft ScreenEditor <1.01.30 - RCE
CVSS 7.8
CVE-2021-31758 CRITICAL
Tenda AC11 Firmware < 02.03.01.104_cn - Remote Code Execution via setportList Buffer Overflow
CVSS 9.8
CVE-2021-31757 CRITICAL
Tenda AC11 Firmware <= 02.03.01.104_cn - Remote Code Execution via setVLAN POST Request
CVSS 9.8
CVE-2021-31756 CRITICAL
Tenda AC11 Firmware <= 02.03.01.104_cn - Stack Buffer Overflow via /gofrom/setwanType
CVSS 9.8
CVE-2021-31755 CRITICAL KEV
Tenda AC11 Firmware <= 02.03.01.104_cn - Remote Code Execution via /goform/setmac
CVSS 9.8
CVE-2021-31472 HIGH
Foxitsoftware 3D < 9.7.4.29600 - Out-of-Bounds Write
CVSS 7.8
CVE-2021-31465 HIGH
Foxitsoftware 3D < 9.7.4.29600 - Out-of-Bounds Write
CVSS 7.8
CVE-2021-31452 HIGH
Foxit Reader < 10.1.3.37598 and PhantomPDF < 9.7.5.29616 - Remote Code Execution via XFA Form Handling
CVSS 7.8
CVE-2021-31442 HIGH
Foxit Reader < 10.1.3.37598 and PhantomPDF < 9.7.5.29616 - Remote Code Execution via U3D Object Handling
CVSS 7.8
CVE-2021-22673 HIGH
SimpleLink Wi-Fi <v4.20.00.12 - Buffer Overflow
CVSS 8.0
CVE-2021-31916 MEDIUM
Linux Kernel < 5.12 - Authenticated Out-of-bounds Write in Multi-device Driver
CVSS 6.7
CVE-2021-3507 MEDIUM
QEMU <= 6.0.0 - Heap Buffer Overflow in Floppy Disk Emulator
CVSS 6.1
CVE-2021-3501 HIGH
Linux kernel <5.12 - Memory Corruption
CVSS 7.1
CVE-2021-31616 HIGH
KeepKey Firmware >=7.0.3 <7.1.0 - Stack Buffer Overflow via Ethereum Thorchain Swap Data Extraction
CVSS 8.8
CVE-2021-21540 MEDIUM
Dell EMC iDRAC9 < 4.40.00.00 - Authenticated Stack-based Buffer Overflow
CVSS 5.9
CVE-2021-21233 HIGH
Google Chrome <90.0.4430.93 - Buffer Overflow
CVSS 8.8
Details
Vulnerabilities 14,279
Exploit Likelihood High