CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,319 vulnerabilities with CWE-787
CVE-2018-20376 MEDIUM
Tinycc - Out-of-Bounds Write
CVSS 5.5
CVE-2018-20375 MEDIUM
Tinycc - Out-of-Bounds Write
CVSS 5.5
CVE-2018-20374 MEDIUM
Tinycc - Out-of-Bounds Write
CVSS 5.5
CVE-2018-20365 MEDIUM
LibRaw < 0.19.1 - Heap-Based Buffer Overflow in raw2image()
CVSS 6.5
CVE-2018-5201 MEDIUM
Hancom Office <10.0.0.8214 - Buffer Overflow
CVSS 5.5
CVE-2018-5196 HIGH
ALZip < 10.76.0.0 - Remote Code Execution via Crafted LZH Archive
CVSS 8.8
CVE-2018-20337 HIGH
LibRaw 0.19.1 - Stack-based Buffer Overflow in parse_makernote
CVSS 8.8
CVE-2018-20330 HIGH
libjpeg-turbo 2.0.1 - Buffer Overflow
CVSS 8.8
CVE-2018-1160 CRITICAL
netatalk < 3.1.12 - Unauthenticated Out-of-bounds Write in dsi_opensess.c
CVSS 9.8
CVE-2018-1000876 HIGH
binutils < 2.32 - Integer Overflow in objdump
CVSS 7.8
CVE-2018-8653 HIGH KEV
Internet Explorer < - Memory Corruption
CVSS 7.5
CVE-2018-20305 CRITICAL
D-Link DIR-816 A2 1.10 B05 - Unauthenticated Remote Code Execution via Newpass Parameter
CVSS 9.8
CVE-2018-18999 HIGH
Advantech WebAccess/SCADA - Stack-Based Buffer Overflow via Improper Input Validation
CVSS 7.3
CVE-2018-20020 CRITICAL
LibVNC <7b1ef0ffc4815cab9a96c7278394152bdc89dc4d - RCE
CVSS 9.8
CVE-2018-20019 CRITICAL
LibVNC <a83439b9fbe0f03c48eb94ed05729cb016f8b72f - RCE
CVSS 9.8
CVE-2018-15127 CRITICAL
LibVNC <502821828ed00b4a2c4bef90683d0fd88ce495de - RCE
CVSS 9.8
CVE-2018-20230 HIGH
PSPP 1.2.0 - Heap-Based Buffer Overflow in read_bytes_internal
CVSS 7.8
CVE-2018-20197 HIGH
Freeware Advanced Audio Decoder 2 <2.8.8 - Buffer Overflow
CVSS 7.8
CVE-2018-20196 HIGH
Freeware Advanced Audio Decoder 2 <2.8.8 - Buffer Overflow
CVSS 7.8
CVE-2018-20194 HIGH
Freeware Advanced Audio Decoder 2 <2.8.8 - Buffer Overflow
CVSS 7.8
CVE-2018-20184 MEDIUM
GraphicsMagick 1.4 - Buffer Overflow
CVSS 6.5
CVE-2018-16596 HIGH
Swisscom Internet-Box Standard, Light, Plus, and 2 Firmware - Stack-based Buffer Overflow via LAN UPnP Service
CVSS 7.5
CVE-2018-19118 HIGH
ManageEngine ADAudit Plus < 5.1 - Denial of Service via Domain Name Field Buffer Overflow
CVSS 7.5
CVE-2018-8643 HIGH
Internet Explorer < - Memory Corruption
CVSS 7.5
CVE-2018-8631 HIGH
Internet Explorer < - Memory Corruption
CVSS 7.5
Details
Vulnerabilities 14,319
Exploit Likelihood High