CWE-823
Use of Out-of-range Pointer Offset
The product performs pointer arithmetic on a valid pointer, but it uses an offset that can point outside of the intended range of valid memory locations for the resulting pointer.
94 vulnerabilities with CWE-823
CVE-2022-21147
MEDIUM
ESTsoft Alyac 2.5.7.7 - Out-of-bounds Read in Malware Scan Functionality
CVSS 5.5
CVE-2022-1420
MEDIUM
vim < 8.2.4774 - Use-After-Free via Out-of-range Pointer Offset
CVSS 5.5
CVE-2022-0729
HIGH
vim < 8.2.4440 - Use-After-Free via Out-of-range Pointer Offset
CVSS 8.8
CVE-2022-0685
HIGH
vim/vim <8.2.4418 - Memory Corruption
CVSS 7.8
CVE-2022-0614
MEDIUM
Homebrew mruby <3.2 - Buffer Overflow
CVSS 5.5
CVE-2022-0554
HIGH
vim < 8.2.4327 - Use-After-Free via Out-of-range Pointer Offset
CVSS 7.8
CVE-2021-34595
HIGH
Wago 750-823 Firmware < fw10 - Out-of-Bounds Access
CVSS 8.1
CVE-2021-3889
HIGH
libmobi < 0.8 - Use of Out-of-range Pointer Offset
CVSS 8.1
CVE-2021-3888
HIGH
libmobi < 0.8 - Use of Out-of-range Pointer Offset
CVSS 8.1
CVE-2021-22550
MEDIUM
Google Asylo <0.6.3 - Memory Corruption
CVSS 6.5
CVE-2021-22549
MEDIUM
Google Asylo < 0.6.2 - Arbitrary Trusted Memory Overwrite via Out-of-range Pointer Offset
CVSS 6.5
CVE-2021-1352
HIGH
Cisco IOS XE - Unauthenticated Denial of Service via DECnet Traffic Processing
CVSS 7.4
CVE-2020-27009
HIGH
Nucleus NET < 5.2 - Use-After-Free in DNS Domain Name Record Decompression
CVSS 8.1
CVE-2020-13573
HIGH
Rockwell Automation RSLinx Classic 2.57.00.14 CPR 9 SR 3 - Denial of Service via Ethernet/IP Server
CVSS 7.5
CVE-2020-6112
HIGH
Nitro Pro 13.13.2.242 - Code Injection
CVSS 7.8
CVE-2020-8904
MEDIUM
Asylo < 0.6.0 - Arbitrary Memory Overwrite via ecall_restore Output Length Validation
CVSS 6.4
CVE-2017-20211
HIGH
UCanCode E-XD++ Visualization Enterprise Suite - RCE
CVE-2017-11076
CRITICAL
Hardware Revision - Memory Corruption
CVSS 9.8
CVE-2016-2161
HIGH
Apache HTTP Server 2.4.0-2.4.23 - Denial of Service via mod_auth_digest Input
CVSS 7.5
Details
Vulnerabilities
94