CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,280 vulnerabilities with CWE-787
CVE-2020-27249 HIGH
SoftMaker Office PlanMaker 2021 < Revision 1014 - Buffer Overflow
CVSS 7.8
CVE-2020-27248 HIGH
SoftMaker Office PlanMaker 2021 - Buffer Overflow
CVSS 7.8
CVE-2020-27247 HIGH
SoftMaker Office PlanMaker 2021 < Revision 1014 - Buffer Overflow
CVSS 7.8
CVE-2020-13586 HIGH
SoftMaker Office PlanMaker 2021 Revision 1014 - Heap-based Buffer Overflow in Excel Document SST Record
CVSS 7.8
CVE-2020-13580 HIGH
SoftMaker Office 2021 PlanMaker - Heap-Based Buffer Overflow in Document Parser
CVSS 7.8
CVE-2020-13579 HIGH
SoftMaker Office 2021 PlanMaker - Integer Overflow to Heap-Based Buffer Overflow in Document Parser
CVSS 7.8
CVE-2020-25857 HIGH
Realtek RTL8195A Firmware < 2.08 - Denial of Service via WPA2 Handshake Packet Injection
CVSS 7.5
CVE-2020-25856 HIGH
Realtek RTL8195A Wi-Fi Module < 2.08 - Stack-based Buffer Overflow in DecWPA2KeyData
CVSS 8.1
CVE-2020-25855 HIGH
Realtek RTL8195A Wi-Fi Module < 2.08 - Stack-based Buffer Overflow in AES_UnWRAP
CVSS 8.1
CVE-2020-25854 HIGH
Realtek RTL8195A Firmware < 2.08 - Stack-based Buffer Overflow in DecWPA2KeyData
CVSS 8.1
CVE-2020-28895 HIGH
Wind River VxWorks 6.9-6.9.4.11 - Integer Overflow in Memory Allocator via calloc()
CVSS 7.3
CVE-2020-1910 HIGH
WhatsApp and WhatsApp Business < 2.21.1.13 - Out-of-bounds Write via Image Filter Processing
CVSS 7.8
CVE-2020-1896 CRITICAL
Facebook Hermes <86543ac47e59 - Code Injection
CVSS 9.8
CVE-2020-17380 MEDIUM
QEMU < 5.0.0 - Heap-Based Buffer Overflow in SDHCI Device Emulation
CVSS 6.3
CVE-2020-25785 CRITICAL
Accfly 720p_firmware 3.10.73-4.15.77 - Unauthenticated Stack-based Buffer Overflow in CFtpProtocol::FtpLogin
CVSS 9.8
CVE-2020-25784 CRITICAL
Accfly 720p_firmware 3.10.73-4.15.77 - Unauthenticated Stack-based Buffer Overflow in CNetClientGuard::SubOprMsg
CVSS 9.8
CVE-2020-25783 CRITICAL
Accfly 720p_firmware 3.10.73-4.15.77 - Unauthenticated Heap-Based Buffer Overflow in CNetClientTalk::OprMsg
CVSS 9.8
CVE-2020-25782 CRITICAL
Accfly 720p_firmware 3.10.73-4.15.77 - Stack-Based Buffer Overflow in CNetClientManage::ServerIP_Proto_Set
CVSS 9.8
CVE-2020-27297 CRITICAL
OPC UA Tunneller <6.3.0.8233 - Buffer Overflow
CVSS 9.8
CVE-2020-36220 MEDIUM
Va-ts < 0.0.4 - Out-of-Bounds Write
CVSS 5.9
CVE-2020-36217 MEDIUM
may_queue < 2020-11-10 - Memory Corruption via Improper Synchronization
CVSS 5.9
CVE-2020-36216 MEDIUM
eventio < 0.5.1 - Data Race and Memory Corruption via Non-Send Type
CVSS 5.9
CVE-2020-36215 HIGH
hashconsing < 1.1.0 - Memory Corruption via Improper Synchronization
CVSS 7.5
CVE-2020-36211 HIGH
gfwx < 0.3.0 - Data Race and Memory Corruption via ImageChunkMut
CVSS 7.0
CVE-2020-36210 HIGH
autorand < 0.2.3 - Memory Corruption via Uninitialized Memory Drop on Panic
CVSS 7.8
Details
Vulnerabilities 14,280
Exploit Likelihood High