CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,284 vulnerabilities with CWE-787
CVE-2020-5234 MEDIUM
MessagePack for C# and Unity < 1.9.11 and < 2.1.90 - Denial of Service via Hash Collision Stack Overflow
CVSS 4.8
CVE-2020-8443 CRITICAL
OSSEC-HIDS 2.7-3.5.0 - Buffer Overflow
CVSS 9.8
CVE-2020-8442 HIGH
OSSEC-HIDS <3.5.0 - Buffer Overflow
CVSS 8.8
CVE-2020-8432 CRITICAL
Das U-Boot <2020.01 - Code Injection
CVSS 9.8
CVE-2020-3714 HIGH
Adobe Illustrator CC <24.0 - Memory Corruption
CVSS 7.8
CVE-2020-3713 HIGH
Adobe Illustrator CC <24.0 - Memory Corruption
CVSS 7.8
CVE-2020-3712 HIGH
Adobe Illustrator CC <24.0 - Memory Corruption
CVSS 7.8
CVE-2020-3711 HIGH
Adobe Illustrator CC <24.0 - Memory Corruption
CVSS 7.8
CVE-2020-3710 HIGH
Adobe Illustrator CC <24.0 - Memory Corruption
CVSS 7.8
CVE-2020-8112 HIGH
OpenJPEG <2020-01-28 - Buffer Overflow
CVSS 8.8
CVE-2020-7951 HIGH
Dota 2 < 7.23e - Remote Code Execution via Crafted Map
CVSS 7.8
CVE-2020-6007 HIGH
Philips Hue Bridge 2.X <1935144020 - RCE
CVSS 7.9
CVE-2020-7039 MEDIUM
libslirp 4.1.0 - Heap-Based Buffer Overflow in tcp_emu via IRC DCC Commands
CVSS 5.6
CVE-2020-2701 HIGH
Oracle VM VirtualBox < 5.2.36 - Authenticated Out-of-bounds Write
CVSS 7.5
CVE-2020-0652 HIGH
Microsoft Excel - Remote Code Execution via Memory Corruption
CVSS 7.8
CVE-2020-0640 HIGH
Internet Explorer - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2020-0603 HIGH
ASP.NET Core - Remote Code Execution via Memory Object Handling
CVSS 8.8
CVE-2020-7054 HIGH
libiec61850 < 1.4.0 - Heap-Based Buffer Overflow in MMS_BIT_STRING Parsing
CVSS 8.8
CVE-2020-6860 HIGH
libmysofa 0.9.1 - Stack-based Buffer Overflow in readDataVar
CVSS 8.8
CVE-2020-6851 HIGH
OpenJPEG < 2.3.1 - Heap-Based Buffer Overflow in opj_t1_clbl_decode_processor
CVSS 7.5
CVE-2020-6839 CRITICAL
mruby 2.1.0 - Stack-based Buffer Overflow in mrb_str_len_to_dbl
CVSS 9.8
CVE-2020-0002 HIGH
Android -<8.0,8.1,9,10 - Use After Free
CVSS 8.8
CVE-2020-5183 HIGH
FTPGetter Professional 5.97.0.223 - Denial of Service via Crafted String
CVSS 7.5
CVE-2020-5496 HIGH
FontForge 20190801 - Buffer Overflow
CVSS 8.8
CVE-2019-25712 MEDIUM
BlueAuditor 1.7.2.0 Buffer Overflow Denial of Service via Registration Key
CVSS 6.2
Details
Vulnerabilities 14,284
Exploit Likelihood High