VYPR

CWE-125

Out-of-bounds Read

BaseDraft

Description

The product reads data past the end, or before the beginning, of the intended buffer.

Hierarchy (View 1000)

Parents

Related attack patterns (CAPEC)

CAPEC-540

CVEs mapped to this weakness (2,466)

page 5 of 124
  • CVE-2017-13689CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The IKEv1 parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c:ikev1_id_print().

  • CVE-2017-13688CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The OLSR parser in tcpdump before 4.9.2 has a buffer over-read in print-olsr.c:olsr_print().

  • CVE-2017-13687CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The Cisco HDLC parser in tcpdump before 4.9.2 has a buffer over-read in print-chdlc.c:chdlc_print().

  • CVE-2017-13055CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print_is_reach_subtlv().

  • CVE-2017-13054CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in print-lldp.c:lldp_private_8023_print().

  • CVE-2017-13053CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:decode_rt_routing_info().

  • CVE-2017-13052CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The CFM parser in tcpdump before 4.9.2 has a buffer over-read in print-cfm.c:cfm_print().

  • CVE-2017-13051CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.04

    The RSVP parser in tcpdump before 4.9.2 has a buffer over-read in print-rsvp.c:rsvp_obj_print().

  • CVE-2017-13050CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.05

    The RPKI-Router parser in tcpdump before 4.9.2 has a buffer over-read in print-rpki-rtr.c:rpki_rtr_pdu_print().

  • CVE-2017-13049CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The Rx protocol parser in tcpdump before 4.9.2 has a buffer over-read in print-rx.c:ubik_print().

  • CVE-2017-13048CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The RSVP parser in tcpdump before 4.9.2 has a buffer over-read in print-rsvp.c:rsvp_obj_print().

  • CVE-2017-13047CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The ISO ES-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:esis_print().

  • CVE-2017-13046CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:bgp_attr_print().

  • CVE-2017-13045CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The VQP parser in tcpdump before 4.9.2 has a buffer over-read in print-vqp.c:vqp_print().

  • CVE-2017-13044CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The HNCP parser in tcpdump before 4.9.2 has a buffer over-read in print-hncp.c:dhcpv4_print().

  • CVE-2017-13043CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:decode_multicast_vpn().

  • CVE-2017-13042CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The HNCP parser in tcpdump before 4.9.2 has a buffer over-read in print-hncp.c:dhcpv6_print().

  • CVE-2017-13041CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.05

    The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp6.c:icmp6_nodeinfo_print().

  • CVE-2017-13040CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.05

    The MPTCP parser in tcpdump before 4.9.2 has a buffer over-read in print-mptcp.c, several functions.

  • CVE-2017-13039CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.03

    The ISAKMP parser in tcpdump before 4.9.2 has a buffer over-read in print-isakmp.c, several functions.