VYPR

CWE-124

Buffer Underwrite ('Buffer Underflow')

BaseIncompleteLikelihood: Medium

Description

The product writes to a buffer using an index or pointer that references a memory location prior to the beginning of the buffer.

Hierarchy (View 1000)

Children

none

CVEs mapped to this weakness (14)

  • CVE-2015-2426HigKEVJul 20, 2015
    risk 0.79cvss 8.8epss 0.87

    Buffer underflow in atmfd.dll in the Windows Adobe Type Manager Library in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute…

  • CVE-2026-44631CriJun 8, 2026
    risk 0.57cvss 9.8epss 0.00

    Buffer Underwrite vulnerability in Apache HTTP Server on crafted regular expressions in the configuration. This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue.

  • CVE-2026-34253HigMay 15, 2026
    risk 0.53cvss 8.2epss 0.00

    A buffer underflow vulnerability has been identified in the ogg123 utility from the vorbis-tools 1.4.3 package in function remotethread in remote.c. This vulnerability occurs in the remote control functionality when processing malformed input, leading to a stack buffer underflow…

  • CVE-2026-0966HigMar 26, 2026
    risk 0.53cvss 8.2epss 0.01

    A flaw was found in libssh. The API function `ssh_get_hexa()` is vulnerable to a denial of service when processing zero-length input. This can be exploited remotely by an attacker during GSSAPI (Generic Security Service Application Program Interface) authentication if the…

  • CVE-2025-61690HigOct 2, 2025
    risk 0.51cvss 7.8epss 0.00

    KV STUDIO versions 12.23 and prior contain a buffer underflow vulnerability. If the product uses a specially crafted file, arbitrary code may be executed on the affected product.

  • CVE-2018-5388MedMay 31, 2018
    risk 0.43cvss 6.5epss 0.04

    In stroke_socket.c in strongSwan before 5.6.3, a missing packet length check could allow a buffer underflow, which may lead to resource exhaustion and denial of service while reading from the socket.

  • CVE-2026-5089HigMay 12, 2026
    risk 0.40cvss 7.3epss 0.00

    YAML::Syck versions before 1.38 for Perl has an out-of-bounds read. The base60 (sexagesimal) parsing code in perl_syck.h has a buffer underflow bug in both int#base60 and float#base60 handlers. When processing the leftmost segment of a colon-separated value (e.g., the 1 in…

  • CVE-2026-41499MedApr 29, 2026
    risk 0.35cvss 6.5epss 0.00

    Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 4.0.0 to before version 4.14.4, multiple heap-based out-of-bounds WRITE vulnerabilities exist in parse_uname_string() (remoted_op.c). This function processes OS…

  • CVE-2025-4373MedMay 6, 2025
    risk 0.31cvss 4.8epss 0.00

    A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.

  • CVE-2024-36343MedMay 19, 2026
    risk 0.30cvss epss 0.00

    Improper input validation in the System Management Mode (SMM) communications buffer could allow a privileged attacker to perform an out of bounds read or write to a limited section of the Top of Memory Segment (TSEG) memory region, potentially resulting in loss of…

  • CVE-2024-36310MedFeb 10, 2026
    risk 0.30cvss epss 0.00

    Improper input validation in the SMM communications buffer could allow a privileged attacker to perform an out of bounds read or write to SMRAM potentially resulting in loss of confidentiality or integrity.

  • CVE-2026-26204MedApr 29, 2026
    risk 0.22cvss 4.4epss 0.00

    Wazuh is a free and open source platform used for threat prevention, detection, and response. From version 1.0.0 to before version 4.14.4, a heap-based out-of-bounds WRITE occurs in GetAlertData, resulting in writing a NULL byte exactly 1 byte before the start of the buffer…

  • CVE-2026-1485LowJan 27, 2026
    risk 0.18cvss 2.8epss 0.00

    A flaw was found in Glib's content type parsing logic. This buffer underflow vulnerability occurs because the length of a header line is stored in a signed integer, which can lead to integer wraparound for very large inputs. This results in pointer underflow and out-of-bounds…

  • CVE-2025-53101Jul 14, 2025
    risk 0.00cvss epss 0.01

    ImageMagick is free and open-source software used for editing and manipulating digital images. In versions prior to 7.1.2-0 and 6.9.13-26, in ImageMagick's `magick mogrify` command, specifying multiple consecutive `%d` format specifiers in a filename template causes internal…