CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

13,852 vulnerabilities with CWE-787
CVE-2026-20446 MEDIUM
Mediatek, Inc. MediaTek Chipset < MT6813 - Denial of Service
CVSS 4.3
CVE-2026-20433 HIGH
Mediatek, Inc. MediaTek Chipset < MT2735 - Out-of-Bounds Access
CVSS 8.8
CVE-2026-20432 HIGH
Mediatek, Inc. MediaTek Chipset < MT2735 - Out-of-Bounds Access
CVSS 8.0
CVE-2026-34589 MEDIUM
OpenEXR: DWA Lossy Decoder Heap Out-of-Bounds Write
CVSS 5.0
CVE-2026-34588 HIGH
OpenEXR has a signed 32-bit Overflow in PIZ Decoder Leads to OOB Read/Write
CVSS 7.8
CVE-2026-34380 MEDIUM
OpenEXR has a signed integer overflow (undefined behavior) in undo_pxr24_impl may allow bounds-check bypass in PXR24 decompression
CVSS 5.9
CVE-2026-34379 HIGH
OpenEXR has a misaligned write in LossyDctDecoder_execute leading to undefined behavior (DWA/DWAB decompression)
CVSS 7.1
CVE-2026-35559 MEDIUM
Out-of-bounds write in query processing components in Amazon Athena ODBC driver
CVSS 6.5
CVE-2026-5318 MEDIUM
LibRaw JPEG DHT losslessjpeg.cpp initval out-of-bounds write
CVSS 4.3
CVE-2026-5317 MEDIUM
Nothings stb stb_vorbis.c start_decoder out-of-bounds write
CVSS 6.3
CVE-2026-34544 HIGH
OpenEXR: integer overflow to OOB write in uncompress_b44_impl()
CVSS 7.3
CVE-2026-20097 MEDIUM
Cisco Integrated Management Controller Remote Code Execution Vulnerability
CVSS 6.5
CVE-2026-5214 HIGH
D-Link DNS-1550-04 account_mgr.cgi cgi_addgroup_get_group_quota_minsize stack-based overflow
CVSS 8.8
CVE-2026-5213 HIGH
D-Link DNS-1550-04 account_mgr.cgi cgi_adduser_to_session stack-based overflow
CVSS 8.8
CVE-2026-5212 HIGH
D-Link DNS-1550-04 webdav_mgr.cgi Webdav_Upload_File stack-based overflow
CVSS 8.8
CVE-2026-5211 HIGH
D-Link DNS-1550-04 app_mgr.cgi UPnP_AV_Server_Path_Del stack-based overflow
CVSS 8.8
CVE-2026-5190 HIGH
AWS C Event Stream Streaming Decoder Stack Buffer Overflow
CVSS 7.5
CVE-2026-5204 HIGH
Tenda CH22 Parameter webtypelibrary formWebTypeLibrary stack-based overflow
CVSS 8.8
CVE-2026-27853 MEDIUM
Out-of-bounds write when rewriting large DNS packets
CVSS 5.9
CVE-2026-5156 HIGH
Tenda CH22 Parameter QuickIndex formQuickIndex stack-based overflow
CVSS 8.8
CVE-2026-5155 HIGH
Tenda CH22 Parameter AdvSetWan fromAdvSetWan stack-based overflow
CVSS 8.8
CVE-2026-5152 HIGH
Tenda CH22 createFileName formCreateFileName stack-based overflow
CVSS 8.8
CVE-2026-4415 HIGH
GIGABYTE|Gigabyte Control Center - Arbitrary File Write
CVSS 8.1
CVE-2026-5044 HIGH
Belkin F9K1122 Setting formSetSystemSettings stack-based overflow
CVSS 8.8
CVE-2026-5043 HIGH
Belkin F9K1122 Parameter formSetPassword stack-based overflow
CVSS 8.8
Details
Vulnerabilities 13,852
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits