CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,328 vulnerabilities with CWE-787
CVE-2017-7862 CRITICAL
FFmpeg < 2.8.10 - Out-of-bounds Write in decode_frame Function
CVSS 9.8
CVE-2017-7861 CRITICAL
grpc < 1.1.2 - Out-of-bounds Write in gpr_free
CVSS 9.8
CVE-2017-7860 CRITICAL
gRPC < 1.1.2 - Out-of-bounds Write via parse_unix Function
CVSS 9.8
CVE-2017-7859 CRITICAL
FFmpeg < 3.2.4 - Out-of-bounds Write in H.264 Slice Context Initialization
CVSS 9.8
CVE-2017-7858 CRITICAL
FreeType < 2.7.1 - Out-of-bounds Write in TT_Get_MM_Var and sfnt_init_face
CVSS 9.8
CVE-2017-7857 CRITICAL
FreeType 2.7-2.8 - Out-of-bounds Write in TT_Get_MM_Var and sfnt_init_face
CVSS 9.8
CVE-2017-7856 CRITICAL
LibreOffice < 5.2.6.1 - Out-of-bounds Write in SVMConverter
CVSS 9.8
CVE-2017-3050 HIGH
Adobe Acrobat Reader <= 11.0.19, <= 15.006.30280, <= 15.023.20070 - Out-of-bounds Write in GIF Image Parser
CVSS 7.8
CVE-2017-3044 HIGH
Adobe Acrobat Reader <= 11.0.19, <= 15.006.30280, <= 15.023.20070 - Memory Corruption in JPEG 2000 Engine
CVSS 7.8
CVE-2017-3036 HIGH
Adobe Acrobat and Reader < 11.0.19, < 15.006.30280, < 15.023.20070 - Out-of-bounds Write in PCX Image Conversion
CVSS 7.8
CVE-2017-0561 CRITICAL
Linux Kernel - Remote Code Execution via Broadcom Wi-Fi Firmware
CVSS 9.8
CVE-2017-0332 HIGH
Linux Kernel - Out-of-bounds Write in NVIDIA Crypto Driver
CVSS 7.0
CVE-2017-0325 HIGH
Linux Kernel 3.10 and 3.18 - Out-of-bounds Write in NVIDIA I2C HID Driver
CVSS 7.0
CVE-2017-5949 CRITICAL
Safari - Out-of-bounds Write via JavaScript Red-Zone Memory Access
CVSS 9.8
CVE-2017-7308 HIGH
AF_PACKET packet_set_ring Privilege Escalation
CVSS 7.8
CVE-2017-7294 HIGH
Linux kernel <4.10.6 - Privilege Escalation
CVSS 7.8
CVE-2017-6451 HIGH
NTP < 4.2.8p10 and 4.3.x < 4.3.94 - Out-of-bounds Write in MX4200 Refclock
CVSS 7.8
CVE-2017-5510 HIGH
ImageMagick < 6.9.7-4 - Out-of-bounds Write via Crafted PSD File
CVSS 7.8
CVE-2017-5509 HIGH
ImageMagick < 6.9.7-4 - Out-of-bounds Write via PSD File
CVSS 7.8
CVE-2017-7224 MEDIUM
GNU Binutils 2.28 - Memory Corruption
CVSS 5.5
CVE-2017-0149 HIGH KEV
Internet Explorer 9-11 - Remote Code Execution via Memory Corruption
CVSS 8.8
CVE-2017-5849 MEDIUM
Fedora - Out-of-Bounds Write
CVSS 5.5
CVE-2017-6440 MEDIUM
libplist 1.12 - Denial of Service via Crafted Plist File
CVSS 5.0
CVE-2017-6439 MEDIUM
libplist 1.12 - Heap-Based Buffer Overflow in bplist.c parse_string_node
CVSS 5.0
CVE-2017-6438 HIGH
libplist 1.12 - Heap-Based Buffer Overflow in parse_unicode_node
CVSS 7.3
Details
Vulnerabilities 14,328
Exploit Likelihood High