CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,322 vulnerabilities with CWE-787
CVE-2018-12293 HIGH
WebKit <2.20.3-2.20.1 - Buffer Overflow
CVSS 8.8
CVE-2018-11726 HIGH
libmobi 0.3 - Heap-Based Buffer Overflow in mobi_decode_font_resource
CVSS 8.8
CVE-2018-12578 CRITICAL
sam2p 0.49.4 - Heap-Based Buffer Overflow in bmp_compress1_row
CVSS 9.8
CVE-2018-11218 CRITICAL
Redis < 3.2.12, 4.x < 4.0.10, 5.x < 5.0 RC2 - Memory Corruption via Lua cmsgpack Library
CVSS 9.8
CVE-2018-12035 HIGH
YARA < 3.7.1 - Out-of-bounds Write in yr_execute_code
CVSS 7.8
CVE-2018-5854 HIGH
Android - Stack-Based Buffer Overflow in Fastboot
CVSS 7.8
CVE-2018-12447 HIGH
libbpg 0.9.8 - Remote Code Execution via Integer Overflow in restore_tqb_pixels
CVSS 8.8
CVE-2018-8267 HIGH
Internet Explorer < - Memory Corruption
CVSS 7.5
CVE-2018-8251 HIGH
Windows Media Foundation - Memory Corruption
CVSS 7.5
CVE-2018-8249 HIGH
Internet Explorer 11 - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2018-8243 HIGH
ChakraCore < 1.8.5 - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2018-8236 HIGH
Microsoft Edge - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2018-8227 HIGH
Microsoft Edge and ChakraCore - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2018-8111 HIGH
Microsoft Edge - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2018-8110 HIGH
Microsoft Edge - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2018-0978 HIGH
Internet Explorer 9-11 - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2018-11806 HIGH
Qemu < 2.12.1 - Heap-Based Buffer Overflow via Fragmented Datagram Handling
CVSS 8.2
CVE-2018-5159 CRITICAL
Skia - Buffer Overflow
CVSS 9.8
CVE-2018-5147 CRITICAL
libtremor - Info Disclosure
CVSS 9.8
CVE-2018-5146 HIGH
Firefox <5.9.01- Thunderbird <5.27.02 - Memory Corruption
CVSS 8.8
CVE-2018-5129 HIGH
Redhat Enterprise Linux Server < 59.0 - Out-of-Bounds Write
CVSS 8.6
CVE-2018-5122 CRITICAL
Firefox < 58 - Integer Overflow in WebCrypto DoCrypt Function
CVSS 9.8
CVE-2018-12109 HIGH
Free Lossless Image Format 0.3 - DoS
CVSS 7.8
CVE-2018-12085 HIGH
Liblouis 3.6.0 - Stack-based Buffer Overflow in parseChars
CVSS 8.8
CVE-2018-4249 HIGH
Apple tvOS < 11.4 - Remote Code Execution via Integer Overflow in pktmnglr_ipfilter_input
CVSS 7.8
Details
Vulnerabilities 14,322
Exploit Likelihood High