CWE-125
Out-of-bounds Read
BaseDraft
Description
The product reads data past the end, or before the beginning, of the intended buffer.
Hierarchy (View 1000)
Related attack patterns (CAPEC)
CAPEC-540
CVEs mapped to this weakness (1,460)
page 4 of 73| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-13029 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:print_ccp_config_options(). | |
| CVE-2017-13028 | Cri | 0.64 | 9.8 | 0.02 | Sep 14, 2017 | The BOOTP parser in tcpdump before 4.9.2 has a buffer over-read in print-bootp.c:bootp_print(). | |
| CVE-2017-13027 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in print-lldp.c:lldp_mgmt_addr_tlv_print(). | |
| CVE-2017-13026 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c, several functions. | |
| CVE-2017-13025 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print(). | |
| CVE-2017-13024 | Cri | 0.64 | 9.8 | 0.02 | Sep 14, 2017 | The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print(). | |
| CVE-2017-13023 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print(). | |
| CVE-2017-13022 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The IP parser in tcpdump before 4.9.2 has a buffer over-read in print-ip.c:ip_printroute(). | |
| CVE-2017-13021 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp6.c:icmp6_print(). | |
| CVE-2017-13020 | Cri | 0.64 | 9.8 | 0.02 | Sep 14, 2017 | The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print(). | |
| CVE-2017-13019 | Cri | 0.64 | 9.8 | 0.03 | Sep 14, 2017 | The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print(). | |
| CVE-2017-13018 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print(). | |
| CVE-2017-13017 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The DHCPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-dhcp6.c:dhcp6opt_print(). | |
| CVE-2017-13016 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The ISO ES-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:esis_print(). | |
| CVE-2017-13015 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The EAP parser in tcpdump before 4.9.2 has a buffer over-read in print-eap.c:eap_print(). | |
| CVE-2017-13014 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The White Board protocol parser in tcpdump before 4.9.2 has a buffer over-read in print-wb.c:wb_prep(), several functions. | |
| CVE-2017-13013 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The ARP parser in tcpdump before 4.9.2 has a buffer over-read in print-arp.c, several functions. | |
| CVE-2017-13012 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The ICMP parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp.c:icmp_print(). | |
| CVE-2017-13010 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The BEEP parser in tcpdump before 4.9.2 has a buffer over-read in print-beep.c:l_strnstart(). | |
| CVE-2017-13009 | Cri | 0.64 | 9.8 | 0.02 | Sep 14, 2017 | The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_print(). |