CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,302 vulnerabilities with CWE-787
CVE-2019-10914 CRITICAL
MatrixSSL < 4.0.2 - Stack-Based Buffer Overflow in X.509 Certificate Verification
CVSS 9.8
CVE-2019-6550 CRITICAL
Advantech WebAccess < 8.3.5 - Stack-based Buffer Overflow
CVSS 9.8
CVE-2019-10878 CRITICAL
Teeworlds 0.7.2 - Out-of-bounds Write in CDataFileReader
CVSS 9.8
CVE-2019-6553 CRITICAL
Rockwell Automation RSLinx Classic < 4.10.00 - Stack-based Buffer Overflow via Forward Open Service Request
CVSS 9.8
CVE-2019-5524 HIGH
VMware Fusion 10.0.0-10.1.5 and Workstation 14.0.0-14.1.5 - Out-of-bounds Write in e1000 Virtual Network Adapter
CVSS 8.8
CVE-2019-5515 HIGH
VMware Fusion 10.0.0-10.1.5 and Workstation 14.0.0-14.1.5 - Out-of-bounds Write in e1000/e1000e Virtual Network Adapters
CVSS 8.8
CVE-2019-5518 MEDIUM
VMware Fusion 10.0.0-10.1.5 - Out-of-bounds Read/Write in Virtual USB 1.1 UHCI
CVSS 6.8
CVE-2019-8956 HIGH
Linux Kernel 4.17-4.19.20 - Use-After-Free in SCTP Sendmsg Function
CVSS 7.8
CVE-2019-10269 CRITICAL
Burrow-wheeler Aligner < 2019-01-23 - Out-of-Bounds Write
CVSS 9.8
CVE-2019-0161 MEDIUM
EDK II - Unauthenticated Denial of Service via XHCI Stack Overflow
CVSS 5.5
CVE-2019-0160 CRITICAL
EDK II - Unauthenticated Buffer Overflow via Network Access
CVSS 9.8
CVE-2019-6536 HIGH
LCDS LAquis SCADA < 4.3.1.71 - Remote Code Execution via Crafted ELS File
CVSS 7.8
CVE-2019-8981 CRITICAL
axtls < 2.1.5 - Out-of-bounds Write via TLS Packet Sequence
CVSS 9.8
CVE-2019-7714 CRITICAL
Green Hills INTEGRITY RTOS 5.0.4 - Stack-based Buffer Overflow in HTTP Authentication Header Parsing
CVSS 9.8
CVE-2019-7713 CRITICAL
Green Hills INTEGRITY RTOS 5.0.4 - Buffer Overflow
CVSS 9.8
CVE-2019-3857 HIGH
libssh2 < 1.8.1 - Remote Code Execution via SSH_MSG_CHANNEL_REQUEST Packet Parsing
CVSS 8.8
CVE-2019-3856 HIGH
libssh2 < 1.8.1 - Remote Code Execution via Keyboard Prompt Request Parsing
CVSS 8.8
CVE-2019-3863 HIGH
libssh2 < 1.8.1 - Integer Overflow via Keyboard Interactive Response
CVSS 7.5
CVE-2019-9956 HIGH
ImageMagick <7.0.8-35 - Buffer Overflow
CVSS 8.8
CVE-2019-3855 HIGH
libssh2 < 1.8.1 - Remote Code Execution via Integer Overflow in Packet Handling
CVSS 8.8
CVE-2019-9903 MEDIUM
Poppler 0.74.0 - Stack Consumption via Crafted PDF File
CVSS 6.5
CVE-2019-9877 HIGH
Xpdf 4.01 - Out-of-bounds Read in TextPage::findGaps()
CVSS 7.8
CVE-2019-6778 HIGH
QEMU 3.0.0 - Heap-Based Buffer Overflow in slirp/tcp_subr.c tcp_emu
CVSS 7.8
CVE-2019-6501 MEDIUM
QEMU 3.1 - Out-of-bounds Read and Write in SCSI Inquiry Reply Handler
CVSS 5.5
CVE-2019-6454 MEDIUM
systemd - Denial of Service via Crafted D-Bus Message
CVSS 5.5
Details
Vulnerabilities 14,302
Exploit Likelihood High