CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,283 vulnerabilities with CWE-787
CVE-2020-9871 HIGH
iCloud < 7.20 - Out-of-bounds Write via Maliciously Crafted Image
CVSS 7.8
CVE-2020-9869 HIGH
macOS < 10.15.6 - Remote Denial of Service via Memory Corruption
CVSS 7.5
CVE-2020-9853 HIGH
macOS < 10.15.4 - Kernel Memory Layout Exposure via Improper Input Validation
CVSS 7.8
CVE-2020-3898 HIGH
macOS Catalina <10.15.4 - Privilege Escalation
CVSS 7.8
CVE-2020-9748 HIGH
Adobe Animate < 20.5 - Stack-based Buffer Overflow via Crafted .fla File
CVSS 7.8
CVE-2020-14871 CRITICAL KEV
Oracle Solaris 10-11 - Privilege Escalation
CVSS 10.0
CVE-2020-24415 HIGH
Adobe Illustrator <24.1.2 - Memory Corruption
CVSS 7.8
CVE-2020-24414 HIGH
Adobe Illustrator <24.1.2 - Memory Corruption
CVSS 7.8
CVE-2020-24413 HIGH
Adobe Illustrator <24.1.2 - Memory Corruption
CVSS 7.8
CVE-2020-24412 HIGH
Adobe Illustrator <24.1.2 - Memory Corruption
CVSS 7.8
CVE-2020-24411 HIGH
Adobe Illustrator <24.2 - Buffer Overflow
CVSS 7.8
CVE-2020-3982 HIGH
VMware ESXi 7.0 < 7.0.1-0.0.16850804, 6.7 < 6.7-202008101, 6.5 < 6.5-202007101 - Out-of-Bounds Write via ACPI Device
CVSS 7.7
CVE-2020-24388 HIGH
yubihsm-shell < 2.0.2 - Denial of Service via Unvalidated Message Length Field
CVSS 7.5
CVE-2020-24387 HIGH
yubihsm-shell < 2.0.2 - Out-of-bounds Read and Write via Invalid Session ID
CVSS 7.5
CVE-2020-24646 CRITICAL
HPE Intelligent Management Center <7.3 - RCE
CVSS 9.8
CVE-2020-16158 HIGH
gopro/gpmf-parser < 1.5 - Stack Out-of-Bounds Write in GPMF_ExpandComplexTYPE()
CVSS 8.8
CVE-2020-24266 HIGH
tcpreplay tcpprep <4.3.3 - Buffer Overflow
CVSS 7.5
CVE-2020-24265 HIGH
tcpreplay tcpprep <4.3.3 - Buffer Overflow
CVSS 7.5
CVE-2020-1167 HIGH
Windows 10 and Windows Server 2016/2019 - Remote Code Execution via Malicious File
CVSS 7.8
CVE-2020-16968 HIGH
Windows 10 - Remote Code Execution via Specially Crafted File
CVSS 7.8
CVE-2020-16947 HIGH
Microsoft Outlook - Remote Code Execution via Crafted File
CVSS 7.5
CVE-2020-16930 HIGH
Microsoft 365 Apps - Remote Code Execution via Crafted Excel File
CVSS 7.8
CVE-2020-16918 HIGH
Microsoft 365 Apps - Remote Code Execution in Base3D Rendering Engine
CVSS 7.8
CVE-2020-16915 HIGH
Windows 10 and Windows Server 2016/2019 - Out-of-bounds Write in Windows Media Foundation
CVSS 7.8
CVE-2020-1664 HIGH
Juniper Junos OS 17.3-20.2 - Stack-based Buffer Overflow in Device Control Daemon
CVSS 7.8
Details
Vulnerabilities 14,283
Exploit Likelihood High