VYPR

CWE-126

Buffer Over-read

VariantDraft

Description

The product reads from a buffer using buffer access mechanisms such as indexes or pointers that reference memory locations after the targeted buffer.

Hierarchy (View 1000)

Children

none

CVEs mapped to this weakness (65)

page 1 of 4
  • CVE-2017-7679CriJun 20, 2017
    risk 0.67cvss 9.8epss 0.39

    In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, mod_mime can read one byte past the end of a buffer when sending a malicious Content-Type response header.

  • CVE-2018-14790CriOct 1, 2018
    risk 0.64cvss 9.8epss 0.05

    Fuji Electric FRENIC LOADER v3.3 v7.3.4.1a of FRENIC-Mini (C1), FRENIC-Mini (C2), FRENIC-Eco, FRENIC-Multi, FRENIC-MEGA, FRENIC-Ace. A buffer over-read vulnerability may allow remote code execution on the device.

  • CVE-2026-41898CriApr 24, 2026
    risk 0.57cvss 9.8epss 0.00

    rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.9.24 to before 0.10.78, the FFI trampolines behind SslContextBuilder::set_psk_client_callback, set_psk_server_callback, set_cookie_generate_cb, and set_stateless_cookie_generate_cb forwarded the…

  • CVE-2025-36855HigSep 8, 2025
    risk 0.57cvss 8.8epss 0.01

    A vulnerability ( CVE-2025-21176 https://www.cve.org/CVERecord ) exists in DiaSymReader.dll due to buffer over-read. Per CWE-126: Buffer Over-read https://cwe.mitre.org/data/definitions/126.html , Buffer Over-read is when a product reads from a buffer using buffer access…

  • CVE-2024-27280CriMay 14, 2024
    risk 0.57cvss 9.8epss 0.02

    A buffer-overread issue was discovered in StringIO 3.0.1, as distributed in Ruby 3.0.x through 3.0.6 and 3.1.x through 3.1.4. The ungetbyte and ungetc methods on a StringIO can read past the end of a string, and a subsequent call to StringIO.gets may return the memory value.…

  • CVE-2017-7668HigJun 20, 2017
    risk 0.53cvss 7.5epss 0.57

    The HTTP strict parsing changes added in Apache httpd 2.2.32 and 2.4.24 introduced a bug in token list parsing, which allows ap_find_token() to search past the end of its input string. By maliciously crafting a sequence of request headers, an attacker may be able to cause a…

  • CVE-2026-42828HigJun 9, 2026
    risk 0.51cvss 7.8epss 0.00

    Buffer over-read in Windows Projected File System Filter Driver allows an authorized attacker to elevate privileges locally.

  • CVE-2026-34336HigMay 12, 2026
    risk 0.51cvss 7.8epss 0.00

    Integer overflow or wraparound in Windows DWM Core Library allows an authorized attacker to elevate privileges locally.

  • CVE-2026-26184HigApr 14, 2026
    risk 0.51cvss 7.8epss 0.00

    Buffer over-read in Windows Projected File System allows an authorized attacker to elevate privileges locally.

  • CVE-2026-21378HigApr 6, 2026
    risk 0.51cvss 7.8epss 0.00

    Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.

  • CVE-2026-21376HigApr 6, 2026
    risk 0.51cvss 7.8epss 0.00

    Memory Corruption when accessing an output buffer without validating its size during IOCTL processing in a camera sensor driver.

  • CVE-2026-21375HigApr 6, 2026
    risk 0.51cvss 7.8epss 0.00

    Memory Corruption when accessing an output buffer without validating its size during IOCTL processing.

  • CVE-2026-21374HigApr 6, 2026
    risk 0.51cvss 7.8epss 0.00

    Memory Corruption when processing auxiliary sensor input/output control commands with insufficient buffer size validation.

  • CVE-2026-21373HigApr 6, 2026
    risk 0.51cvss 7.8epss 0.00

    Memory Corruption when accessing an output buffer without validating its size during IOCTL processing.

  • CVE-2026-21371HigApr 6, 2026
    risk 0.51cvss 7.8epss 0.00

    Memory Corruption when retrieving output buffer with insufficient size validation.

  • CVE-2025-47390HigApr 6, 2026
    risk 0.51cvss 7.8epss 0.00

    Memory corruption while preprocessing IOCTL request in JPEG driver.

  • CVE-2024-38250HigSep 10, 2024
    risk 0.51cvss 7.8epss 0.01

    Windows Graphics Component Elevation of Privilege Vulnerability

  • CVE-2026-21381HigApr 6, 2026
    risk 0.49cvss 7.6epss 0.00

    Transient DOS when receiving a service data frame with excessive length during device matching over a neighborhood awareness network protocol connection.

  • CVE-2026-21367HigApr 6, 2026
    risk 0.49cvss 7.6epss 0.00

    Transient DOS when processing nonstandard FILS Discovery Frames with out-of-range action sizes during initial scans.

  • CVE-2024-12011HigFeb 13, 2025
    risk 0.49cvss 7.6epss 0.00

    A CWE-126 “Buffer Over-read” was discovered affecting the 130.8005 TCP/IP Gateway running firmware version 12h. The information disclosure can be triggered by leveraging a memory leak affecting the web server. A remote unauthenticated attacker can exploit this vulnerability…