CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,327 vulnerabilities with CWE-787
CVE-2017-6293 HIGH
Android - Out-of-bounds Write in Widevine TA
CVSS 7.8
CVE-2017-2924 HIGH
FreeXL 1.0.3 - Heap-Based Buffer Overflow via Crafted XLS File
CVSS 8.8
CVE-2017-2923 HIGH
FreeXL 1.0.3 - Heap-Based Buffer Overflow in read_biff_next_record Function
CVSS 8.8
CVE-2017-2885 CRITICAL
libsoup 2.58 - Stack-based Buffer Overflow via HTTP Request
CVSS 9.8
CVE-2017-2835 HIGH
FreeRDP 2.0.0-beta1+android11 - Remote Code Execution via RDP Receive Functionality
CVSS 8.1
CVE-2017-2834 HIGH
FreeRDP 2.0.0-beta1+android11 - Out-of-bounds Write in Authentication
CVSS 7.0
CVE-2017-2812 HIGH
Kakadu SDK 7.9 - Out-of-bounds Write in kdu_buffered_expand
CVSS 8.8
CVE-2017-2811 HIGH
Kakadu SDK 7.9 - Remote Code Execution via JPEG 2000 Image Parsing
CVSS 8.8
CVE-2017-2804 HIGH
Core PHOTO-PAINT X8 18.1.0.661 - Out-of-bounds Write in TIFF Parser
CVSS 8.8
CVE-2017-2803 HIGH
Core PHOTO-PAINT X8 18.1.0.661 - Out-of-bounds Write in TIFF Parser
CVSS 8.8
CVE-2017-14448 HIGH
SDL_image - Heap Overflow via XCF Image Rendering
CVSS 8.8
CVE-2017-14440 HIGH
SDL_image - Stack Overflow via Crafted ILBM Image
CVSS 8.8
CVE-2017-12122 HIGH
SDL_image - Heap Overflow via Crafted ILBM Image
CVSS 8.8
CVE-2017-9634 CRITICAL
Mitsubishi E-Designer <7.52 Build 344 - Memory Corruption
CVSS 9.8
CVE-2017-2869 CRITICAL
Natus Xltek NeuroWorks 8 - Remote Code Execution via OpenProducer Network Packet
CVSS 9.8
CVE-2017-2868 CRITICAL
Natus Xltek NeuroWorks 8 - Remote Code Execution via NewProducerStream Network Packet
CVSS 9.8
CVE-2017-2867 CRITICAL
Natus Xltek NeuroWorks 8 - Remote Code Execution via SavePatientMontage Network Packet
CVSS 9.8
CVE-2017-2853 CRITICAL
Natus Xltek NeuroWorks 8 - Remote Code Execution via RequestForPatientInfoEEGfile
CVSS 9.8
CVE-2017-13256 HIGH
Android 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1 - Remote Code Execution via Out-of-bounds Write in sdp_server.cc
CVSS 8.8
CVE-2017-13255 HIGH
Android 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0, 8.1 - Remote Code Execution via Out-of-bounds Write in sdp_server.c
CVSS 8.8
CVE-2017-13253 HIGH
Android 8.0 8.1 - Out-of-bounds Write in CryptoPlugin::decrypt
CVSS 7.8
CVE-2017-13252 HIGH
Android 8.0-8.1 - Out-of-bounds Write in CryptoHal::decrypt
CVSS 7.8
CVE-2017-13251 HIGH
Android 6.0-8.1 - Out-of-bounds Write in impeg2d_dec_pic_data_thread
CVSS 7.8
CVE-2017-13250 HIGH
Android 6.0-8.1 - Out-of-bounds Write in ih264d_fmt_conv_420sp_to_420p
CVSS 7.8
CVE-2017-13249 HIGH
Android 6.0-8.1 - Out-of-bounds Write in impeg2d_api_set_display_frame
CVSS 7.8
Details
Vulnerabilities 14,327
Exploit Likelihood High