CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,284 vulnerabilities with CWE-787
CVE-2020-14931 CRITICAL
DMitry 1.3a - Remote Code Execution via WHOIS Response Buffer Overflow
CVSS 9.8
CVE-2020-11503 CRITICAL
Sophos SFOS < 17.5 - Remote Code Execution via Heap Overflow in awarrensmtp
CVSS 9.8
CVE-2020-3296 HIGH
Cisco Small Business RV320-0 - Authenticated RCE
CVSS 7.2
CVE-2020-3295 HIGH
Cisco RV016, RV042, RV042G, RV082, RV320, and RV325 Firmware - Authenticated Stack Overflow via Web Management Interface
CVSS 7.2
CVE-2020-3294 HIGH
Cisco Small Business RV320-0 - Authenticated RCE
CVSS 7.2
CVE-2020-3293 HIGH
Cisco RV016, RV042, RV042G, RV082, RV320, and RV325 Firmware - Authenticated Stack Overflow via Web Management Interface
CVSS 7.2
CVE-2020-3292 HIGH
Cisco Small Business RV320-0 - Authenticated RCE
CVSS 7.2
CVE-2020-3291 HIGH
Cisco RV016, RV042, RV042G, RV082, RV320, and RV325 Firmware - Authenticated Stack Overflow via Web Management Interface
CVSS 7.2
CVE-2020-3290 HIGH
Cisco Small Business RV320-0 - Authenticated RCE
CVSS 7.2
CVE-2020-3289 HIGH
Cisco RV016, RV042, RV042G, RV082, RV320, and RV325 Firmware - Authenticated Stack Overflow via Web Management Interface
CVSS 7.2
CVE-2020-3288 HIGH
Cisco Small Business RV320-0 - Authenticated RCE
CVSS 7.2
CVE-2020-3287 HIGH
Cisco RV016, RV042, RV042G, RV082, RV320, and RV325 Firmware - Authenticated Stack Overflow via Web Management Interface
CVSS 7.2
CVE-2020-3286 HIGH
Cisco RV016, RV042, RV042G, RV082, RV320, and RV325 Firmware - Authenticated Stack Overflow via Web Management Interface
CVSS 7.2
CVE-2020-3269 HIGH
Cisco RV110W-215W - Command Injection
CVSS 7.2
CVE-2020-14404 MEDIUM
libvncserver < 0.9.13 - Out-of-bounds Write in RRE Encoding
CVSS 5.4
CVE-2020-14403 MEDIUM
LibVNCServer < 0.9.13 - Out-of-bounds Write via Hextile Encoding
CVSS 5.4
CVE-2020-14402 MEDIUM
LibVNCServer < 0.9.13 - Out-of-bounds Write via Encodings
CVSS 5.4
CVE-2020-11904 HIGH
Treck TCP/IP < 6.0.1.66 - Integer Overflow to Out-of-Bounds Write
CVSS 7.3
CVE-2020-11901 CRITICAL
Treck TCP/IP < 6.0.1.66 - Remote Code Execution via Invalid DNS Response
CVSS 9.0
CVE-2020-11897 CRITICAL
Treck TCP/IP < 5.0.1.35 - Out-of-Bounds Write via Malformed IPv6 Packets
CVSS 10.0
CVE-2020-11896 CRITICAL
Treck TCP/IP < 6.0.1.66 - Remote Code Execution via IPv4 Tunneling
CVSS 10.0
CVE-2020-14212 HIGH
FFmpeg 4.3 - Heap-Based Buffer Overflow in avio_get_str
CVSS 8.8
CVE-2020-7502 HIGH
Modicon M218 Firmware < 4.3 - Denial of Service via Crafted TCP/IP Packets
CVSS 7.5
CVE-2020-0235 CRITICAL
Android - Out-of-bounds Write in crus_sp_shared_ioctl
CVSS 9.8
CVE-2020-0234 HIGH
Android - Out-of-bounds Write in msm-cirrus-playback.c crus_afe_get_param
CVSS 7.8
Details
Vulnerabilities 14,284
Exploit Likelihood High