CWE-787

High likelihood

Out-of-bounds Write

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product writes data past the end, or before the beginning, of the intended buffer.

14,166 vulnerabilities with CWE-787
CVE-2024-12179 HIGH
Autodesk Navisworks 2025-2025.4 - Heap-based Buffer Overflow via DWFX File Parsing
CVSS 7.8
CVE-2024-12178 HIGH
Autodesk Navisworks 2025-2025.4 - Memory Corruption via DWFX File Parsing
CVSS 7.8
CVE-2024-11422 HIGH
Autodesk Navisworks - Buffer Overflow
CVSS 7.8
CVE-2024-12668 HIGH
Velocidex WinPmem <4.1 - Memory Corruption
CVSS 8.2
CVE-2024-8798 HIGH
Zephyr < 3.7.0 - Heap-based Buffer Overflow in OTS Client OLCP Indication Handler
CVSS 7.5
CVE-2024-52066 HIGH
RTI Connext Professional - Buffer Overflow
CVSS 7.8
CVE-2024-52065 HIGH
RTI Connext Professional <7.3.0.2-6.1.2.21-5.3.1.41 - Buffer Overflow
CVSS 7.1
CVE-2024-52064 HIGH
RTI Connext Professional - Buffer Overflow
CVSS 7.1
CVE-2024-52063 HIGH
RTI Connext Professional - Buffer Overflow
CVSS 8.6
CVE-2024-52062 HIGH
RTI Connext Professional - Buffer Overflow
CVSS 7.8
CVE-2024-52061 CRITICAL
RTI Connext Professional - Buffer Overflow
CVSS 9.8
CVE-2024-54534 CRITICAL
Safari < 18.2 - Out-of-bounds Write via Malicious Web Content
CVSS 9.8
CVE-2024-54508 HIGH
Safari < 18.2 - Denial of Service via Malicious Web Content
CVSS 7.5
CVE-2024-44245 HIGH
iPadOS < 17.7.3 - Out-of-bounds Write
CVSS 7.1
CVE-2024-44242 CRITICAL
iPadOS < 18.1 - Out-of-bounds Write in DCP Firmware
CVSS 9.8
CVE-2024-55884 CRITICAL
Mullvad VPN client <2024.8 - Memory Corruption
CVSS 9.0
CVE-2024-47615 CRITICAL
GStreamer < 1.24.10 - Out-of-bounds Write in Vorbis Setup Packet Parsing
CVSS 9.8
CVE-2024-47613 CRITICAL
GStreamer - Null Pointer Dereference
CVSS 9.8
CVE-2024-47607 CRITICAL
GStreamer <1.24.10 - Buffer Overflow
CVSS 9.8
CVE-2024-47541 HIGH
GStreamer < 1.24.10 - Out-of-bounds Write in SSA Override Code Parser
CVSS 7.5
CVE-2024-47539 CRITICAL
GStreamer < 1.24.10 - Out-of-bounds Write in convert_to_s334_1a Function
CVSS 9.8
CVE-2024-47538 CRITICAL
GStreamer < 1.24.10 - Stack-Based Buffer Overflow in vorbis_handle_identification_packet
CVSS 9.8
CVE-2024-47537 CRITICAL
GStreamer < 1.24.10 - Out-of-bounds Write via Integer Overflow in QtDemux Sample Handling
CVSS 9.8
CVE-2024-37377 HIGH
Ivanti Connect Secure < 22.7 - Unauthenticated Denial of Service via IPsec Heap-Based Buffer Overflow
CVSS 7.5
CVE-2024-53959 HIGH
Adobe Framemaker <2020.7, 2022.5 - RCE
CVSS 7.8
Details
Vulnerabilities 14,166
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits