CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,288 vulnerabilities with CWE-787
CVE-2019-7965 CRITICAL
Adobe Acrobat and Reader <2019.012.20035 - RCE
CVSS 9.8
CVE-2019-2134 HIGH
Android 7.0-9 - Local Privilege Escalation via Integer Overflow in phFriNfc_ExtnsTransceive
CVSS 7.8
CVE-2019-2133 HIGH
Android 7.0-9 - Out-of-bounds Write in phNxpExtns_MifareStd.cpp
CVSS 7.8
CVE-2019-2128 HIGH
Android 7.0-9 - Out-of-bounds Write in ACELP_4t64_fx
CVSS 7.8
CVE-2019-2127 HIGH
Android - Use-After-Free in AudioInputDescriptor::setClientActive
CVSS 7.8
CVE-2019-13520 HIGH
Fujielectric Alpha5 Smart Loader Firmware < 4.2 - Stack-based Buffer Overflow via Crafted Project File
CVSS 7.8
CVE-2019-15148 MEDIUM
GoPro GPMF-parser 1.2.2 - Out-of-bounds Write in OpenMP4Source
CVSS 6.5
CVE-2019-10081 HIGH
Apache HTTP Server 2.4.20-2.4.39 - Out-of-bounds Write via H2PushResource
CVSS 7.5
CVE-2019-13221 HIGH
stb_vorbis < 2019-03-04 - Stack Buffer Overflow in compute_codewords Function
CVSS 7.8
CVE-2019-13217 HIGH
stb_vorbis < 2019-03-04 - Heap Buffer Overflow in start_decoder
CVSS 7.8
CVE-2019-1213 CRITICAL
Windows Server 2008 - Remote Code Execution via DHCP Packet Handling
CVSS 9.8
CVE-2019-1212 CRITICAL
Windows DHCP Server - Denial of Service via Crafted Network Packet
CVSS 9.8
CVE-2019-1206 HIGH
Windows Server 2012, 2016, 2019 - Denial of Service via DHCP Failover Packet Handling
CVSS 7.5
CVE-2019-1199 HIGH
Microsoft Office - Remote Code Execution via Specially Crafted File
CVSS 7.8
CVE-2019-1197 MEDIUM
Microsoft Edge - Remote Code Execution via Chakra Scripting Engine Memory Corruption
CVSS 4.2
CVE-2019-1196 MEDIUM
Microsoft Edge - Remote Code Execution via Chakra Scripting Engine Memory Corruption
CVSS 4.2
CVE-2019-1195 MEDIUM
Microsoft Edge - Remote Code Execution via Chakra Scripting Engine Memory Corruption
CVSS 4.2
CVE-2019-1194 HIGH
Internet Explorer - Remote Code Execution via Scripting Engine Memory Corruption
CVSS 7.5
CVE-2019-1193 MEDIUM
Internet Explorer - Remote Code Execution via Memory Corruption
CVSS 6.4
CVE-2019-1152 HIGH
Windows - Remote Code Execution via Embedded Font Handling
CVSS 8.8
CVE-2019-1151 HIGH
Microsoft Office - Remote Code Execution via Malicious Embedded Font
CVSS 8.8
CVE-2019-1150 HIGH
Windows - Remote Code Execution via Crafted Embedded Fonts
CVSS 8.8
CVE-2019-1149 HIGH
Microsoft Office - Remote Code Execution via Crafted Embedded Fonts
CVSS 8.8
CVE-2019-1141 MEDIUM
Microsoft Edge - Remote Code Execution via Chakra Scripting Engine Memory Corruption
CVSS 4.2
CVE-2019-1140 HIGH
Microsoft Edge - Remote Code Execution via Chakra Scripting Engine Memory Corruption
CVSS 8.8
Details
Vulnerabilities 14,288
Exploit Likelihood High