VYPR

CWE-787

Out-of-bounds Write

BaseDraftLikelihood: High

Description

The product writes data past the end, or before the beginning, of the intended buffer.

Hierarchy (View 1000)

CVEs mapped to this weakness (2,513)

page 37 of 126
  • CVE-2020-7563HigNov 18, 2020
    risk 0.57cvss 8.8epss 0.01

    A CWE-787: Out-of-bounds Write vulnerability exists in the Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules (see notification for details) which could cause corruption of data, a crash, or code execution when uploading…

  • CVE-2019-20140HigDec 30, 2019
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in libsixel 1.8.4. There is a heap-based buffer overflow in the function gif_out_code at fromgif.c.

  • CVE-2019-20094HigDec 30, 2019
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in libsixel 1.8.4. There is a heap-based buffer overflow in the function gif_init_frame at fromgif.c.

  • CVE-2019-13721HigNov 25, 2019
    risk 0.57cvss 8.8epss 0.01

    Use after free in PDFium in Google Chrome prior to 78.0.3904.87 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2018-14550HigJul 10, 2019
    risk 0.57cvss 8.8epss 0.04

    An issue has been found in third-party PNM decoding associated with libpng 1.6.35. It is a stack-based buffer overflow in the function get_token in pnm2png.c in pnm2png.

  • CVE-2018-10610HigOct 9, 2018
    risk 0.57cvss 8.8epss 0.01

    An out-of-bounds vulnerability in LeviStudioU, Versions 1.8.29 and 1.8.44 can be exploited when the application processes specially crafted project files.

  • CVE-2018-14810HigOct 8, 2018
    risk 0.57cvss 8.8epss 0.02

    WECON Technology Co., Ltd. PI Studio HMI versions 4.1.9 and prior and PI Studio versions 4.2.34 and prior parse files and pass invalidated user data to an unsafe method call, which may allow code to be executed in the context of an administrator.

  • CVE-2018-9504HigOct 2, 2018
    risk 0.57cvss 8.8epss 0.01

    In sdp_copy_raw_data of sdp_discovery.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution over bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation. Product:…

  • CVE-2018-3978HigOct 1, 2018
    risk 0.57cvss 8.8epss 0.01

    An exploitable out-of-bounds write vulnerability exists in the Word Document parser of the Atlantis Word Processor 3.0.2.3, 3.0.2.5. A specially crafted document can cause Atlantis to write a value outside the bounds of a heap allocation, resulting in a buffer overflow. An…

  • CVE-2018-10606HigSep 26, 2018
    risk 0.57cvss 8.8epss 0.02

    WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple heap-based buffer overflow vulnerabilities that can be exploited when the application processes specially crafted project files.

  • CVE-2018-10602HigSep 26, 2018
    risk 0.57cvss 8.8epss 0.02

    WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple stack-based buffer overflow vulnerabilities that can be exploited when the application processes specially crafted project files.

  • CVE-2018-17101HigSep 16, 2018
    risk 0.57cvss 8.8epss 0.03

    An issue was discovered in LibTIFF 4.0.9. There are two out-of-bounds writes in cpTags in tools/tiff2bw.c and tools/pal2rgb.c, which can cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image file.

  • CVE-2018-17098HigSep 16, 2018
    risk 0.57cvss 8.8epss 0.03

    The WavFileBase class in WavFile.cpp in Olli Parviainen SoundTouch 2.0 allows remote attackers to cause a denial of service (heap corruption from size inconsistency) or possibly have unspecified other impact, as demonstrated by SoundStretch.

  • CVE-2018-16981HigSep 12, 2018
    risk 0.57cvss 8.8epss 0.02

    stb stb_image.h 2.19, as used in catimg, Emscripten, and other products, has a heap-based buffer overflow in the stbi__out_gif_code function.

  • CVE-2018-10907HigSep 4, 2018
    risk 0.57cvss 8.8epss 0.03

    It was found that glusterfs server is vulnerable to multiple stack based buffer overflows due to functions in server-rpc-fopc.c allocating fixed size buffers using 'alloca(3)'. An authenticated attacker could exploit this by mounting a gluster volume and sending a string longer…

  • CVE-2018-16376HigSep 3, 2018
    risk 0.57cvss 8.8epss 0.03

    An issue was discovered in OpenJPEG 2.3.0. A heap-based buffer overflow was discovered in the function t2_encode_packet in lib/openmj2/t2.c. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly unspecified other impact.

  • CVE-2018-16375HigSep 3, 2018
    risk 0.57cvss 8.8epss 0.02

    An issue was discovered in OpenJPEG 2.3.0. Missing checks for header_info.height and header_info.width in the function pnmtoimage in bin/jpwl/convert.c can lead to a heap-based buffer overflow.

  • CVE-2018-16335HigSep 2, 2018
    risk 0.57cvss 8.8epss 0.03

    newoffsets handling in ChopUpSingleUncompressedStrip in tif_dirread.c in LibTIFF 4.0.9 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file, as demonstrated by…

  • CVE-2017-15407HigAug 28, 2018
    risk 0.57cvss 8.8epss 0.02

    Out-of-bounds Write in the QUIC networking stack in Google Chrome prior to 63.0.3239.84 allowed a remote attacker to gain code execution via a malicious server.

  • CVE-2018-3893HigAug 27, 2018
    risk 0.57cvss 8.8epss 0.02

    An exploitable buffer overflow vulnerability exists in the /cameras/XXXX/clips handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17. The video-core process incorrectly extracts fields from a user-controlled JSON payload, leading…