CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,325 vulnerabilities with CWE-787
CVE-2018-0937 HIGH
Microsoft Edge and ChakraCore - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2018-0936 HIGH
Microsoft Edge and ChakraCore - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2018-0935 HIGH
Internet Explorer - Remote Code Execution via Scripting Engine Memory Corruption
CVSS 7.5
CVE-2018-0934 HIGH
Microsoft Edge and ChakraCore - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2018-0933 HIGH
Microsoft Edge and ChakraCore < 1.8.2 - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2018-0931 HIGH
Microsoft Edge - Remote Code Execution via Chakra Scripting Engine Memory Corruption
CVSS 7.5
CVE-2018-0930 HIGH
Microsoft Edge and ChakraCore - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2018-0925 HIGH
ChakraCore < 1.8.2 - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2018-0922 HIGH
Microsoft Office - Remote Code Execution via Memory Corruption
CVSS 7.8
CVE-2018-0893 HIGH
Microsoft Edge - Remote Code Execution via Scripting Engine Memory Corruption
CVSS 7.5
CVE-2018-0889 HIGH
Internet Explorer - Remote Code Execution via Scripting Engine Memory Corruption
CVSS 7.5
CVE-2018-0876 HIGH
Microsoft Edge - Remote Code Execution via Scripting Engine Memory Corruption
CVSS 7.5
CVE-2018-0874 HIGH
Microsoft Edge and ChakraCore - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2018-0873 HIGH
Microsoft Edge and ChakraCore - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2018-0872 HIGH
Microsoft Edge and ChakraCore - Remote Code Execution via Memory Corruption
CVSS 7.5
CVE-2018-8100 HIGH
xpdf 4.00 - Heap-Based Buffer Overflow in JPXStream::readTilePart
CVSS 7.8
CVE-2018-6304 HIGH
Gemalto Sentinel LDK RTE < 7.65 - Denial of Service via Custom XML Parser
CVSS 7.5
CVE-2018-8000 HIGH
PoDoFo 0.9.5 - Heap-Based Buffer Overflow in PdfTokenizer
CVSS 8.8
CVE-2018-1071 MEDIUM
zsh <= 5.4.2 - Stack-based Buffer Overflow in hashcmd()
CVSS 5.5
CVE-2018-7183 CRITICAL
ntp 4.2.8p6-4.2.8p10 - Remote Code Execution via Crafted ntpq Response Array
CVSS 9.8
CVE-2018-7877 MEDIUM
libming 0.4.8 - Heap-Based Buffer Overflow in getString Function
CVSS 6.5
CVE-2018-7873 MEDIUM
libming 0.4.8 - Heap-Based Buffer Overflow in getString Function
CVSS 6.5
CVE-2018-7867 MEDIUM
libming 0.4.8 - Heap-Based Buffer Overflow in getString Function
CVSS 6.5
CVE-2018-5452 HIGH
Emerson Process Management ControlWave Micro - Buffer Overflow
CVSS 7.5
CVE-2018-1000116 CRITICAL
NET-SNMP <5.7.2 - Command Injection
CVSS 9.8
Details
Vulnerabilities 14,325
Exploit Likelihood High