CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,284 vulnerabilities with CWE-787
CVE-2020-10832 HIGH
Samsung P(9.0) Exynos - Buffer Overflow
CVSS 7.8
CVE-2020-10829 HIGH
Samsung O-P-Q - Kernel Driver Heap Overflow
CVSS 7.8
CVE-2020-10938 CRITICAL
GraphicsMagick <1.3.35 - Buffer Overflow
CVSS 9.8
CVE-2020-8875 HIGH
Parallels Desktop 15.1.2-47123 - Privilege Escalation
CVSS 8.8
CVE-2020-8871 MEDIUM
Parallels Desktop 15.1.0-47107 - Privilege Escalation
CVSS 6.7
CVE-2020-6429 HIGH
Google Chrome < 80.0.3987.149 - Use-After-Free in Audio Component
CVSS 8.8
CVE-2020-6428 HIGH
Google Chrome < 80.0.3987.149 - Use-After-Free in Audio Component
CVSS 8.8
CVE-2020-6427 HIGH
Google Chrome < 80.0.3987.149 - Use-After-Free in Audio Component
CVSS 8.8
CVE-2020-6426 MEDIUM
Google Chrome < 80.0.3987.149 - Remote Code Execution via V8 Heap Corruption
CVSS 6.5
CVE-2020-6422 HIGH
Google Chrome <80.0.3987.149 - Use After Free
CVSS 8.8
CVE-2020-10809 MEDIUM
HDF5 < 1.12.0 - Heap-Based Buffer Overflow in Decompress Function
CVSS 5.5
CVE-2020-8878 HIGH
Foxit Studio Photo < 3.6.6.918 - Remote Code Execution via PSD File Handling
CVSS 8.8
CVE-2020-7002 HIGH
Delta Industrial Automation CNCSoft ScreenEditor < 1.00.96 - Stack-based Buffer Overflow via Malicious Input File
CVSS 7.8
CVE-2020-3951 LOW
VMware Workstation <15.5.2 & Horizon Client for Windows <5.4.0 - DoS
CVSS 3.8
CVE-2020-7248 HIGH
OpenWrt < 18.06.7 and 19.x < 19.07.1 - Stack-Based Buffer Overflow in libubox JSON Serialization
CVSS 7.5
CVE-2020-6582 HIGH
Nagios NRPE 3.2.1 - Heap-Based Buffer Overflow via Incorrect Numeric Conversion
CVSS 7.5
CVE-2020-0086 CRITICAL
Android 10 - Integer Overflow to Arbitrary Code Execution in Parcel.cpp
CVSS 9.8
CVE-2020-0517 MEDIUM
Intel Graphics Driver < 15.36.38.5117 - Authenticated Out-of-bounds Write via Local Access
CVSS 5.3
CVE-2020-10531 HIGH
International Components for Unicode < 66.1 - Heap-Based Buffer Overflow via UnicodeString::doAppend() Integer Overflow
CVSS 8.8
CVE-2020-0869 HIGH
Windows 10 and Windows Server 2016/2019 - Out-of-bounds Write in Media Foundation
CVSS 8.8
CVE-2020-0848 HIGH
ChakraCore < 1.11.17 - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2020-0833 HIGH
Internet Explorer - Remote Code Execution via Scripting Engine Memory Corruption
CVSS 7.5
CVE-2020-0832 HIGH
Internet Explorer - Remote Code Execution via Scripting Engine Memory Corruption
CVSS 7.5
CVE-2020-0831 HIGH
ChakraCore < 1.11.17 - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2020-0830 HIGH
Microsoft Internet Explorer and Edge - Remote Code Execution via Scripting Engine Memory Corruption
CVSS 7.5
Details
Vulnerabilities 14,284
Exploit Likelihood High