CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,327 vulnerabilities with CWE-787
CVE-2017-4911 HIGH
VMware Workstation <12.5.3 - Memory Corruption
CVSS 7.8
CVE-2017-9432 CRITICAL
libstaroffice <2017-04-07 - Buffer Overflow
CVSS 9.8
CVE-2017-9431 CRITICAL
Google gRPC <2017-04-05 - Buffer Overflow
CVSS 9.8
CVE-2017-8540 HIGH KEV
Microsoft Malware Protection Engine 1.1.13701.0-1.1.13704.0 - Remote Code Execution via Crafted File Scan
CVSS 7.8
CVE-2017-9228 CRITICAL
Oniguruma 6.2.0 - Memory Corruption
CVSS 9.8
CVE-2017-9226 CRITICAL
Oniguruma <6.2.0 - Memory Corruption
CVSS 9.8
CVE-2017-9225 CRITICAL
Oniguruma <6.2.0 - Memory Corruption
CVSS 9.8
CVE-2017-9203 MEDIUM
ImageWorsener 1.3.1 - Denial of Service via Crafted BMP Image
CVSS 6.5
CVE-2017-9181 HIGH
AutoTrace 0.31.1 - Denial of Service via ReadImage Function in input-bmp.c
CVSS 7.5
CVE-2017-9178 HIGH
AutoTrace 0.31.1 - Out-of-bounds Write in ReadImage Function
CVSS 7.5
CVE-2017-9176 HIGH
AutoTrace 0.31.1 - Out-of-bounds Write in ReadImage Function
CVSS 7.5
CVE-2017-9175 HIGH
AutoTrace 0.31.1 - Out-of-bounds Write in ReadImage Function
CVSS 7.5
CVE-2017-9159 HIGH
AutoTrace 0.31.1 - Denial of Service via pnm_load_rawpbm Function
CVSS 7.5
CVE-2017-9158 HIGH
AutoTrace 0.31.1 - Denial of Service via pnm_load_raw Function
CVSS 7.5
CVE-2017-9157 HIGH
AutoTrace 0.31.1 - Out-of-bounds Write in pnm_load_ascii Function
CVSS 7.5
CVE-2017-9156 HIGH
AutoTrace 0.31.1 - Out-of-bounds Write in pnm_load_ascii Function
CVSS 7.5
CVE-2017-6891 HIGH
GnuTLS libtasn1 <4.10 - Buffer Overflow
CVSS 8.8
CVE-2017-2520 CRITICAL
iPhone OS < 10.3.2, macOS < 10.12.5, tvOS < 10.2.1, watchOS < 3.2.2 - Remote Code Execution via Crafted SQL Statement
CVSS 9.8
CVE-2017-8923 CRITICAL
PHP < 7.4.24 - Out-of-bounds Write via zend_string_extend
CVSS 9.8
CVE-2017-0608 HIGH
Linux Kernel - Out-of-bounds Write in Qualcomm Sound Driver
CVSS 7.0
CVE-2017-0222 HIGH KEV
Internet Explorer - Remote Code Execution via Memory Corruption
CVSS 8.8
CVE-2017-6867 MEDIUM
Siemens SIMATIC WinCC <7.3 Upd 11 & <7.4 SP1 - DoS
CVSS 4.9
CVE-2017-5461 CRITICAL
Mozilla Network Security Services < 3.21.4 - Out-of-bounds Write via Base64 Operations
CVSS 9.8
CVE-2017-3074 HIGH
Adobe Flash Player < 25.0.0.148 - Out-of-bounds Write in Graphics Class
CVSS 8.8
CVE-2017-3072 HIGH
Adobe Flash Player < 25.0.0.148 - Memory Corruption in BitmapData Class
CVSS 8.8
Details
Vulnerabilities 14,327
Exploit Likelihood High