CWE-787
High likelihoodOut-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.
14,287 vulnerabilities with CWE-787
CVE-2019-18296
CRITICAL
SPPA-T3000 MS3000 Migration Server - Denial of Service and Remote Code Execution via Crafted Packets to Port 5010/tcp
CVSS 9.8
CVE-2019-18295
CRITICAL
SPPA-T3000 MS3000 Migration Server - Denial of Service and Remote Code Execution via Crafted Packets to Port 5010/tcp
CVSS 9.8
CVE-2019-18294
HIGH
SPPA-T3000 MS3000 Migration Server - Denial of Service via Crafted Packets to Port 5010/tcp
CVSS 7.5
CVE-2019-18293
CRITICAL
SPPA-T3000 MS3000 Migration Server - Denial of Service and Remote Code Execution via Crafted Packets to Port 5010/tcp
CVSS 9.8
CVE-2019-18292
HIGH
SPPA-T3000 MS3000 Migration Server - Denial of Service via Crafted Packets to Port 5010/tcp
CVSS 7.5
CVE-2019-18291
HIGH
SPPA-T3000 MS3000 Migration Server - Denial of Service via Crafted Packets to Port 5010/tcp
CVSS 7.5
CVE-2019-18290
HIGH
SPPA-T3000 MS3000 Migration Server - Denial of Service via Crafted Packets to Port 5010/tcp
CVSS 7.5
CVE-2019-18289
CRITICAL
SPPA-T3000 MS3000 Migration Server - Denial of Service and Remote Code Execution via Crafted Packets to Port 5010/tcp
CVSS 9.8
CVE-2019-18288
HIGH
SPPA-T3000 Application Server < R8.2 SP2 - Authenticated Remote Code Execution via Unsecured File Upload
CVSS 8.8
CVE-2019-17358
HIGH
Cacti <= 1.2.7 - Authenticated Unsafe Deserialization in lib/functions.php
CVSS 8.1
CVE-2019-2320
CRITICAL
Snapdragon Auto- Snapdragon Compute - Memory Corruption
CVSS 9.8
CVE-2019-2319
HIGH
Qualcomm Multiple Chipsets Firmware - Out-of-bounds Write
CVSS 7.8
CVE-2019-10559
CRITICAL
Qualcomm Snapdragon Firmware - Out-of-bounds Read in Ogg Clip Parser
CVSS 9.8
CVE-2019-10494
HIGH
Qualcomm Snapdragon Firmware - Use-After-Free via Camera Resource Race Condition
CVSS 8.1
CVE-2019-19746
MEDIUM
fig2dev 3.2.7b - Integer Overflow and Out-of-Bounds Write in make_arrow
CVSS 5.5
CVE-2019-5154
HIGH
LEADTOOLS 20.0.2019.3.15 - Buffer Overflow
CVSS 8.8
CVE-2019-5093
CRITICAL
LEADTOOLS libltdic.so <20.0.2019.3.15 - RCE
CVSS 9.8
CVE-2019-5092
HIGH
LEADTOOLS 20.0.2019.3.15 - Code Injection
CVSS 8.8
CVE-2019-5085
CRITICAL
LEADTOOLS libltdic.so 20.0.2019.3.15 - Remote Code Execution via DICOM Packet Parsing Integer Overflow
CVSS 9.8
CVE-2019-19720
HIGH
yabasic 2.86.1 - Heap-Based Buffer Overflow in yylex Function
CVSS 8.8
CVE-2019-5815
HIGH
libxslt < 1.1.33 - Type Confusion in xsltNumberFormatGetMultipleLevel
CVSS 7.5
CVE-2019-1485
HIGH
Internet Explorer - Remote Code Execution via VBScript Engine Memory Handling
CVSS 7.5
CVE-2019-1468
HIGH
Windows - Remote Code Execution via Embedded Font Handling
CVSS 8.8
CVE-2019-13747
HIGH
Google Chrome <79.0.3945.79 - Memory Corruption
CVSS 8.8
CVE-2019-13736
HIGH
Google Chrome <79.0.3945.79 - Heap Corruption
CVSS 8.8
Details
Vulnerabilities
14,287
Exploit Likelihood
High