CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,289 vulnerabilities with CWE-787
CVE-2019-3953 CRITICAL
Advantech WebAccess/SCADA 8.4.0 - Unauthenticated Remote Code Execution via IOCTL 10012 RPC Call
CVSS 9.8
CVE-2019-12835 CRITICAL
Leanify 0.4.3 - Out-of-bounds Write via XML Character Escaping
CVSS 9.8
CVE-2019-12829 HIGH
radare2 < 3.5.1 - Out-of-bounds Write in RParse API
CVSS 7.5
CVE-2019-10126 CRITICAL
Linux Kernel 4.2-4.4.185 - Heap-based Buffer Overflow in mwifiex_uap_parse_tail_ies
CVSS 9.8
CVE-2019-7321 CRITICAL
Artifex MuPDF <1.14 - Buffer Overflow
CVSS 9.8
CVE-2019-11129 MEDIUM
Intel NUC Kit Firmware - Out-of-bounds Read and Write via Local Access
CVSS 6.7
CVE-2019-11124 MEDIUM
Intel NUC Kit Firmware - Out-of-bounds Read and Write via Local Access
CVSS 6.7
CVE-2019-1080 HIGH
Internet Explorer - Remote Code Execution via Scripting Engine Memory Corruption
CVSS 7.5
CVE-2019-1055 HIGH
Internet Explorer - Remote Code Execution via Scripting Engine Memory Corruption
CVSS 7.5
CVE-2019-1052 MEDIUM
ChakraCore < 1.11.10 - Remote Code Execution via Memory Corruption
CVSS 4.2
CVE-2019-1051 MEDIUM
ChakraCore < 1.11.10 - Remote Code Execution via Memory Corruption
CVSS 4.2
CVE-2019-1038 HIGH
Internet Explorer - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2019-1024 MEDIUM
ChakraCore < 1.11.10 - Remote Code Execution via Memory Corruption
CVSS 4.2
CVE-2019-1005 HIGH
Internet Explorer - Remote Code Execution via Scripting Engine Memory Corruption
CVSS 7.5
CVE-2019-1003 MEDIUM
ChakraCore < 1.11.10 - Remote Code Execution via Memory Corruption
CVSS 4.2
CVE-2019-1002 MEDIUM
Microsoft Edge - Remote Code Execution via Chakra Scripting Engine Memory Corruption
CVSS 4.2
CVE-2019-0993 MEDIUM
ChakraCore < 1.11.10 - Remote Code Execution via Memory Corruption
CVSS 4.2
CVE-2019-0992 MEDIUM
Microsoft Edge - Remote Code Execution via Chakra Scripting Engine Memory Corruption
CVSS 4.2
CVE-2019-0991 MEDIUM
ChakraCore < 1.11.10 - Remote Code Execution via Memory Corruption
CVSS 4.2
CVE-2019-0989 MEDIUM
ChakraCore < 1.11.10 - Remote Code Execution via Memory Corruption
CVSS 4.2
CVE-2019-0988 HIGH
Internet Explorer - Remote Code Execution via Scripting Engine Type Confusion
CVSS 7.5
CVE-2019-0985 HIGH
Windows 7 and Windows Server 2008 - Remote Code Execution via Microsoft Speech API TTS Input
CVSS 7.8
CVE-2019-0920 MEDIUM
Internet Explorer - Remote Code Execution via Scripting Engine Type Confusion
CVSS 4.3
CVE-2019-12788 HIGH
Photodex ProShow Producer 9.0.3797 - Out-of-bounds Write via Crafted File
CVSS 7.8
CVE-2019-3955 HIGH
Dameware Remote Mini Control < 12.1.0.34 - Unauthenticated Heap Overflow via RsaPubKeyLen
CVSS 7.5
Details
Vulnerabilities 14,289
Exploit Likelihood High