CWE-119: Buffer Overflow

This is a memory corruption vulnerability in Apple's WebKit browser engine, allowing arbitrary code execution when processing malicious web content. I...

This memory handling vulnerability in Apple's WebKit browser engine allows processing malicious web content to execute arbitrary code on affected devi...

This vulnerability in Chrome's V8 JavaScript engine allows remote attackers to corrupt memory objects via malicious HTML pages, potentially leading to...

This vulnerability allows remote attackers to perform arbitrary memory read/write operations through a crafted HTML page due to out-of-bounds memory a...

A stack-based buffer overflow vulnerability in Delta Electronics DOPSoft allows remote code execution when users open malicious DPS files. Attackers c...

A stack-based buffer overflow vulnerability in Delta Electronics DOPSoft allows remote code execution when a user opens a malicious DPS file. This aff...

A stack-based buffer overflow vulnerability in Delta Electronics DOPSoft allows remote code execution when a user opens a malicious DPS file. This aff...

This vulnerability in Intel i915 Graphics drivers for Linux allows an authenticated local user to perform memory buffer operations beyond intended bou...

CVE-2019-8720 is a memory corruption vulnerability in WebKit that allows arbitrary code execution when processing malicious web content. This affects ...

CVE-2022-0204 is a heap overflow vulnerability in BlueZ Bluetooth stack versions before 5.63. An attacker on the local network can send specially craf...

This vulnerability in Apache PLC4X's C implementation (PLC4C) allows unsigned integer underflow in the TCP transport layer. Attackers could exploit th...

This vulnerability allows remote code execution through a specially crafted DWG file in LibreCAD's libdxfrw library. Attackers can exploit an out-of-b...

This vulnerability in Parallels Desktop allows local attackers with high-privileged code execution on a guest system to escalate privileges to hypervi...

CVE-2021-34859 is a remote code execution vulnerability in TeamViewer 15.16.8.0 that allows attackers to execute arbitrary code by tricking users into...

A buffer overflow vulnerability in the ptp4l program of the linuxptp package allows remote attackers to leak information, crash systems, or potentiall...

CVE-2020-11256 is a memory corruption vulnerability in Qualcomm Snapdragon chipsets where improper validation of pointers passed to the TrustZone secu...

This vulnerability allows memory corruption in Qualcomm Snapdragon TrustZone due to insufficient pointer validation. Attackers could potentially execu...

This vulnerability allows remote attackers to perform out-of-bounds memory access in Chrome's WebAudio component via a crafted HTML page. Attackers co...

CVE-2020-25690 is a heap-based out-of-bounds write vulnerability in FontForge that allows attackers to crash applications or execute arbitrary code by...

An out-of-bounds write vulnerability in the TIFF parser of Accusoft ImageGear 19.8 allows remote code execution via specially crafted TIFF files. This...

CVE-2021-21453 is a vulnerability in SAP 3D Visual Enterprise Viewer version 9 that allows attackers to crash the application by tricking users into o...

CVE-2021-21457 is a memory corruption vulnerability in SAP 3D Visual Enterprise Viewer version 9 caused by improper input validation when processing I...

CVE-2021-21449 is a memory corruption vulnerability in SAP 3D Visual Enterprise Viewer version 9 caused by improper input validation when processing I...

CVE-2021-21451 is a vulnerability in SAP 3D Visual Enterprise Viewer version 9 that allows attackers to crash the application by tricking users into o...

CVE-2017-5225 is a heap buffer overflow vulnerability in LibTIFF's tiffcp tool that allows attackers to cause denial of service or potentially execute...

This CVE describes a memory buffer vulnerability in Honeywell Experion PKS and OneWireless WDM's Control Data Access component. An attacker could expl...

A signed vs. unsigned integer overflow vulnerability in llama.cpp's tokenizer allows heap overflow when processing manipulated text input during token...

A denial-of-service vulnerability in Rockwell Automation ControlLogix and GuardLogix controllers allows attackers to cause a major nonrecoverable faul...

A buffer overflow vulnerability in Panasonic KW Watcher versions 1.00 through 2.82 allows attackers to execute arbitrary code on affected systems. Thi...

A buffer overflow vulnerability in Cloudflare's cfnts NTP server allows remote attackers to trigger a denial-of-service panic by sending specially cra...

This vulnerability in Cisco Firepower Threat Defense (FTD) Software allows unauthenticated remote attackers to cause denial of service by flooding SSH...

This vulnerability in Windows Hyper-V allows an authenticated attacker on a guest virtual machine to send specially crafted requests to the host, caus...

This vulnerability in Hilscher rcX RTOS allows attackers to send malformed UDP packets where the actual packet length doesn't match the length indicat...

An unauthenticated remote attacker can send crafted SSL/TLS messages through Cisco Firepower Threat Defense devices performing software-based SSL decr...

Multiple vulnerabilities in Cisco SD-WAN products allow unauthenticated remote attackers to execute denial-of-service attacks against affected devices...

Multiple vulnerabilities in Cisco SD-WAN products allow unauthenticated remote attackers to execute denial-of-service (DoS) attacks against affected d...

Multiple vulnerabilities in Cisco SD-WAN products allow unauthenticated remote attackers to execute denial-of-service attacks against affected devices...

An improper array index validation vulnerability in OFFIS DCMTK's determineMinMax function allows out-of-bounds writes when processing specially craft...

An improper array index validation vulnerability in OFFIS DCMTK's nowindow functionality allows out-of-bounds writes when processing specially crafted...

GhostWrite is a hardware vulnerability in T-Head XuanTie C910 and C920 CPUs that allows unprivileged attackers to write to arbitrary physical memory l...

This vulnerability allows memory corruption through improper input validation in FastRPC's IOCTL handler. Attackers could potentially execute arbitrar...

CVE-2024-37676 is a memory corruption vulnerability in htop-dev htop version 2.20 that allows local attackers to trigger out-of-bounds memory access. ...

This vulnerability allows a non-privileged local user on IBM AIX and VIOS systems to exploit the invscout command to execute arbitrary commands with e...

This CVE describes a buffer overflow vulnerability in IBM Db2's db2set utility across multiple versions. An attacker could exploit this to execute arb...

This vulnerability allows memory corruption in Qualcomm's WLAN Hardware Abstraction Layer (HAL) when processing specific wireless commands. Attackers ...

This buffer overflow vulnerability in IBM Aspera Connect and Cargo allows attackers to execute arbitrary code on affected systems by sending specially...

This CVE describes a buffer overflow vulnerability in IBM Aspera Cargo and Connect 4.2.5 that allows attackers to execute arbitrary code on affected s...

A buffer overflow vulnerability in EDK2's Network Package allows attackers to execute arbitrary code by sending malicious DHCPv6 Advertise messages. T...

EDK2's Network Package has a buffer overflow vulnerability in the DHCPv6 client when processing long server ID options. Attackers on the same network ...

This CVE describes a buffer overflow vulnerability in rAthena MMORPG server software where missing bounds checking in the character slot movement func...