CWE-125
Out-of-bounds Read
Description
The product reads data past the end, or before the beginning, of the intended buffer.
Hierarchy (View 1000)
Related attack patterns (CAPEC)
CAPEC-540
CVEs mapped to this weakness (2,466)
page 6 of 124| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-13038 | Cri | 0.64 | 9.8 | 0.04 | Sep 14, 2017 | The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:handle_mlppp(). | ||
| CVE-2017-13037 | Cri | 0.64 | 9.8 | 0.03 | Sep 14, 2017 | The IP parser in tcpdump before 4.9.2 has a buffer over-read in print-ip.c:ip_printts(). | ||
| CVE-2017-13036 | Cri | 0.64 | 9.8 | 0.03 | Sep 14, 2017 | The OSPFv3 parser in tcpdump before 4.9.2 has a buffer over-read in print-ospf6.c:ospf6_decode_v3(). | ||
| CVE-2017-13035 | Cri | 0.64 | 9.8 | 0.03 | Sep 14, 2017 | The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print_id(). | ||
| CVE-2017-13034 | Cri | 0.64 | 9.8 | 0.03 | Sep 14, 2017 | The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print(). | ||
| CVE-2017-13033 | Cri | 0.64 | 9.8 | 0.04 | Sep 14, 2017 | The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print(). | ||
| CVE-2017-13032 | Cri | 0.64 | 9.8 | 0.03 | Sep 14, 2017 | The RADIUS parser in tcpdump before 4.9.2 has a buffer over-read in print-radius.c:print_attr_string(). | ||
| CVE-2017-13031 | Cri | 0.64 | 9.8 | 0.03 | Sep 14, 2017 | The IPv6 fragmentation header parser in tcpdump before 4.9.2 has a buffer over-read in print-frag6.c:frag6_print(). | ||
| CVE-2017-13030 | Cri | 0.64 | 9.8 | 0.03 | Sep 14, 2017 | The PIM parser in tcpdump before 4.9.2 has a buffer over-read in print-pim.c, several functions. | ||
| CVE-2017-13029 | Cri | 0.64 | 9.8 | 0.03 | Sep 14, 2017 | The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:print_ccp_config_options(). | ||
| CVE-2017-13028 | Cri | 0.64 | 9.8 | 0.04 | Sep 14, 2017 | The BOOTP parser in tcpdump before 4.9.2 has a buffer over-read in print-bootp.c:bootp_print(). | ||
| CVE-2017-13027 | Cri | 0.64 | 9.8 | 0.03 | Sep 14, 2017 | The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in print-lldp.c:lldp_mgmt_addr_tlv_print(). | ||
| CVE-2017-13026 | Cri | 0.64 | 9.8 | 0.03 | Sep 14, 2017 | The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c, several functions. | ||
| CVE-2017-13025 | Cri | 0.64 | 9.8 | 0.03 | Sep 14, 2017 | The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print(). | ||
| CVE-2017-13024 | Cri | 0.64 | 9.8 | 0.03 | Sep 14, 2017 | The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print(). | ||
| CVE-2017-13023 | Cri | 0.64 | 9.8 | 0.03 | Sep 14, 2017 | The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print(). | ||
| CVE-2017-13022 | Cri | 0.64 | 9.8 | 0.03 | Sep 14, 2017 | The IP parser in tcpdump before 4.9.2 has a buffer over-read in print-ip.c:ip_printroute(). | ||
| CVE-2017-13021 | Cri | 0.64 | 9.8 | 0.03 | Sep 14, 2017 | The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp6.c:icmp6_print(). | ||
| CVE-2017-13020 | Cri | 0.64 | 9.8 | 0.03 | Sep 14, 2017 | The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print(). | ||
| CVE-2017-13019 | Cri | 0.64 | 9.8 | 0.04 | Sep 14, 2017 | The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print(). |
- risk 0.64cvss 9.8epss 0.04
The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:handle_mlppp().
- risk 0.64cvss 9.8epss 0.03
The IP parser in tcpdump before 4.9.2 has a buffer over-read in print-ip.c:ip_printts().
- risk 0.64cvss 9.8epss 0.03
The OSPFv3 parser in tcpdump before 4.9.2 has a buffer over-read in print-ospf6.c:ospf6_decode_v3().
- risk 0.64cvss 9.8epss 0.03
The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print_id().
- risk 0.64cvss 9.8epss 0.03
The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print().
- risk 0.64cvss 9.8epss 0.04
The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print().
- risk 0.64cvss 9.8epss 0.03
The RADIUS parser in tcpdump before 4.9.2 has a buffer over-read in print-radius.c:print_attr_string().
- risk 0.64cvss 9.8epss 0.03
The IPv6 fragmentation header parser in tcpdump before 4.9.2 has a buffer over-read in print-frag6.c:frag6_print().
- risk 0.64cvss 9.8epss 0.03
The PIM parser in tcpdump before 4.9.2 has a buffer over-read in print-pim.c, several functions.
- risk 0.64cvss 9.8epss 0.03
The PPP parser in tcpdump before 4.9.2 has a buffer over-read in print-ppp.c:print_ccp_config_options().
- risk 0.64cvss 9.8epss 0.04
The BOOTP parser in tcpdump before 4.9.2 has a buffer over-read in print-bootp.c:bootp_print().
- risk 0.64cvss 9.8epss 0.03
The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in print-lldp.c:lldp_mgmt_addr_tlv_print().
- risk 0.64cvss 9.8epss 0.03
The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c, several functions.
- risk 0.64cvss 9.8epss 0.03
The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print().
- risk 0.64cvss 9.8epss 0.03
The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print().
- risk 0.64cvss 9.8epss 0.03
The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print().
- risk 0.64cvss 9.8epss 0.03
The IP parser in tcpdump before 4.9.2 has a buffer over-read in print-ip.c:ip_printroute().
- risk 0.64cvss 9.8epss 0.03
The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp6.c:icmp6_print().
- risk 0.64cvss 9.8epss 0.03
The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print().
- risk 0.64cvss 9.8epss 0.04
The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print().