CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,287 vulnerabilities with CWE-787
CVE-2019-18296 CRITICAL
SPPA-T3000 MS3000 Migration Server - Denial of Service and Remote Code Execution via Crafted Packets to Port 5010/tcp
CVSS 9.8
CVE-2019-18295 CRITICAL
SPPA-T3000 MS3000 Migration Server - Denial of Service and Remote Code Execution via Crafted Packets to Port 5010/tcp
CVSS 9.8
CVE-2019-18294 HIGH
SPPA-T3000 MS3000 Migration Server - Denial of Service via Crafted Packets to Port 5010/tcp
CVSS 7.5
CVE-2019-18293 CRITICAL
SPPA-T3000 MS3000 Migration Server - Denial of Service and Remote Code Execution via Crafted Packets to Port 5010/tcp
CVSS 9.8
CVE-2019-18292 HIGH
SPPA-T3000 MS3000 Migration Server - Denial of Service via Crafted Packets to Port 5010/tcp
CVSS 7.5
CVE-2019-18291 HIGH
SPPA-T3000 MS3000 Migration Server - Denial of Service via Crafted Packets to Port 5010/tcp
CVSS 7.5
CVE-2019-18290 HIGH
SPPA-T3000 MS3000 Migration Server - Denial of Service via Crafted Packets to Port 5010/tcp
CVSS 7.5
CVE-2019-18289 CRITICAL
SPPA-T3000 MS3000 Migration Server - Denial of Service and Remote Code Execution via Crafted Packets to Port 5010/tcp
CVSS 9.8
CVE-2019-18288 HIGH
SPPA-T3000 Application Server < R8.2 SP2 - Authenticated Remote Code Execution via Unsecured File Upload
CVSS 8.8
CVE-2019-17358 HIGH
Cacti <= 1.2.7 - Authenticated Unsafe Deserialization in lib/functions.php
CVSS 8.1
CVE-2019-2320 CRITICAL
Snapdragon Auto- Snapdragon Compute - Memory Corruption
CVSS 9.8
CVE-2019-2319 HIGH
Qualcomm Multiple Chipsets Firmware - Out-of-bounds Write
CVSS 7.8
CVE-2019-10559 CRITICAL
Qualcomm Snapdragon Firmware - Out-of-bounds Read in Ogg Clip Parser
CVSS 9.8
CVE-2019-10494 HIGH
Qualcomm Snapdragon Firmware - Use-After-Free via Camera Resource Race Condition
CVSS 8.1
CVE-2019-19746 MEDIUM
fig2dev 3.2.7b - Integer Overflow and Out-of-Bounds Write in make_arrow
CVSS 5.5
CVE-2019-5154 HIGH
LEADTOOLS 20.0.2019.3.15 - Buffer Overflow
CVSS 8.8
CVE-2019-5093 CRITICAL
LEADTOOLS libltdic.so <20.0.2019.3.15 - RCE
CVSS 9.8
CVE-2019-5092 HIGH
LEADTOOLS 20.0.2019.3.15 - Code Injection
CVSS 8.8
CVE-2019-5085 CRITICAL
LEADTOOLS libltdic.so 20.0.2019.3.15 - Remote Code Execution via DICOM Packet Parsing Integer Overflow
CVSS 9.8
CVE-2019-19720 HIGH
yabasic 2.86.1 - Heap-Based Buffer Overflow in yylex Function
CVSS 8.8
CVE-2019-5815 HIGH
libxslt < 1.1.33 - Type Confusion in xsltNumberFormatGetMultipleLevel
CVSS 7.5
CVE-2019-1485 HIGH
Internet Explorer - Remote Code Execution via VBScript Engine Memory Handling
CVSS 7.5
CVE-2019-1468 HIGH
Windows - Remote Code Execution via Embedded Font Handling
CVSS 8.8
CVE-2019-13747 HIGH
Google Chrome <79.0.3945.79 - Memory Corruption
CVSS 8.8
CVE-2019-13736 HIGH
Google Chrome <79.0.3945.79 - Heap Corruption
CVSS 8.8
Details
Vulnerabilities 14,287
Exploit Likelihood High