CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,283 vulnerabilities with CWE-787
CVE-2020-0458 HIGH
Android 8.0-10 - Remote Code Execution via Integer Overflow in SPDIFEncoder
CVSS 7.8
CVE-2020-0457 CRITICAL
Android - Out-of-bounds Write
CVSS 9.8
CVE-2020-0455 CRITICAL
Android - Out-of-bounds Write
CVSS 9.8
CVE-2020-8285 HIGH
libcurl 7.21.0-7.73.0 - Uncontrolled Recursion via FTP Wildcard Match Parsing
CVSS 7.5
CVE-2020-25187 HIGH
Medtronic MyCareLink Smart Model 25000 Firmware - Authenticated Heap-based Buffer Overflow via Debug Command
CVSS 8.8
CVE-2020-14268 CRITICAL
HCL Notes 9-10 - Unauthenticated Stack Buffer Overflow via MIME Message Handling
CVSS 9.8
CVE-2020-14244 CRITICAL
HCL Domino 9.0.0-10.0.0 - Unauthenticated Stack Buffer Overflow via MIME Message Handling
CVSS 9.8
CVE-2020-25112 CRITICAL
Contiki-OS < 3.0 - Denial of Service and Remote Code Execution via ICMPv6 Echo Packet
CVSS 9.8
CVE-2020-25111 CRITICAL
Contiki < 3.0 - Denial of Service and Remote Code Execution via ICMPv6 Echo Packet
CVSS 9.8
CVE-2020-25108 CRITICAL
Ethernut Nut/OS < 5.1 - Out-of-bounds Write in DNS Response Handler
CVSS 9.8
CVE-2020-24338 CRITICAL
picoTCP < 1.7.0 - Out-of-bounds Write in DNS Domain Name Record Decompression
CVSS 9.8
CVE-2020-17443 HIGH
picoTCP < 1.7.0 - Denial of Service via ICMPv6 Echo Request Size Miscount
CVSS 7.5
CVE-2020-17438 CRITICAL
uIP 1.0 - Out-of-bounds Write via IP Fragment Reassembly
CVSS 9.8
CVE-2020-17437 HIGH
uIP < 1.0 - Out-of-bounds Write via TCP Urgent Pointer Handling
CVSS 8.2
CVE-2020-13985 HIGH
Contiki < 3.0 - Memory Corruption via RPL Extension Header Handling
CVSS 7.5
CVE-2020-13556 CRITICAL
EIP Stack Group OpENer 2.3 and development commit 8c73bf3 - Remote Code Execution via Out-of-bounds Write
CVSS 9.8
CVE-2020-13520 HIGH
Pixar OpenUSD 20.05 - Memory Corruption
CVSS 7.8
CVE-2020-17131 MEDIUM
Chakra Scripting Engine - Memory Corruption
CVSS 4.2
CVE-2020-16589 MEDIUM
OpenEXR 2.3.0 - Denial of Service via Crafted EXR File
CVSS 5.5
CVE-2020-16587 MEDIUM
OpenEXR 2.3.0 - Heap-Based Buffer Overflow in Chunk Offset Reconstruction
CVSS 5.5
CVE-2020-25199 HIGH
WECON LeviStudioU < 2019-09-21 - Heap-based Buffer Overflow via Project File Processing
CVSS 7.8
CVE-2020-17529 CRITICAL
Apache NuttX <9.1.0, 10.0.0 - Memory Corruption
CVSS 9.8
CVE-2020-17528 CRITICAL
Apache NuttX <10.0.0 - Memory Corruption
CVSS 9.1
CVE-2020-26970 HIGH
Thunderbird <78.5.1 - Buffer Overflow
CVSS 8.8
CVE-2020-26969 HIGH
Mozilla Firefox <83 - Memory Corruption
CVSS 8.8
Details
Vulnerabilities 14,283
Exploit Likelihood High