CWE-125
Out-of-bounds Read
BaseDraft
Description
The product reads data past the end, or before the beginning, of the intended buffer.
Hierarchy (View 1000)
Related attack patterns (CAPEC)
CAPEC-540
CVEs mapped to this weakness (1,460)
page 5 of 73| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-13008 | Cri | 0.64 | 9.8 | 0.02 | Sep 14, 2017 | The IEEE 802.11 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_11.c:parse_elements(). | |
| CVE-2017-13007 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The Apple PKTAP parser in tcpdump before 4.9.2 has a buffer over-read in print-pktap.c:pktap_if_print(). | |
| CVE-2017-13006 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The L2TP parser in tcpdump before 4.9.2 has a buffer over-read in print-l2tp.c, several functions. | |
| CVE-2017-13005 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The NFS parser in tcpdump before 4.9.2 has a buffer over-read in print-nfs.c:xid_map_enter(). | |
| CVE-2017-13004 | Cri | 0.64 | 9.8 | 0.02 | Sep 14, 2017 | The Juniper protocols parser in tcpdump before 4.9.2 has a buffer over-read in print-juniper.c:juniper_parse_header(). | |
| CVE-2017-13003 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The LMP parser in tcpdump before 4.9.2 has a buffer over-read in print-lmp.c:lmp_print(). | |
| CVE-2017-13002 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The AODV parser in tcpdump before 4.9.2 has a buffer over-read in print-aodv.c:aodv_extension(). | |
| CVE-2017-13001 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The NFS parser in tcpdump before 4.9.2 has a buffer over-read in print-nfs.c:nfs_printfh(). | |
| CVE-2017-13000 | Cri | 0.64 | 9.8 | 0.04 | Sep 14, 2017 | The IEEE 802.15.4 parser in tcpdump before 4.9.2 has a buffer over-read in print-802_15_4.c:ieee802_15_4_if_print(). | |
| CVE-2017-12999 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print(). | |
| CVE-2017-12998 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print_extd_ip_reach(). | |
| CVE-2017-12997 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The LLDP parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-lldp.c:lldp_private_8021_print(). | |
| CVE-2017-12996 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The PIMv2 parser in tcpdump before 4.9.2 has a buffer over-read in print-pim.c:pimv2_print(). | |
| CVE-2017-12995 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The DNS parser in tcpdump before 4.9.2 could enter an infinite loop due to a bug in print-domain.c:ns_print(). | |
| CVE-2017-12994 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print(). | |
| CVE-2017-12993 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The Juniper protocols parser in tcpdump before 4.9.2 has a buffer over-read in print-juniper.c, several functions. | |
| CVE-2017-12992 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The RIPng parser in tcpdump before 4.9.2 has a buffer over-read in print-ripng.c:ripng_print(). | |
| CVE-2017-12991 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print(). | |
| CVE-2017-12990 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The ISAKMP parser in tcpdump before 4.9.2 could enter an infinite loop due to bugs in print-isakmp.c, several functions. | |
| CVE-2017-12988 | Cri | 0.64 | 9.8 | 0.01 | Sep 14, 2017 | The telnet parser in tcpdump before 4.9.2 has a buffer over-read in print-telnet.c:telnet_parse(). |