CWE-125: Out-of-bounds Read

This vulnerability allows attackers with privileged access on Linux non-secure operating systems to bypass memory length checks and leak sensitive dat...

CVE-2021-41556 is a critical out-of-bounds read vulnerability in Squirrel scripting language that allows sandbox escape and arbitrary code execution. ...

CVE-2021-21777 is a critical out-of-bounds read vulnerability in the Ethernet/IP UDP handler of OpENer EtherNet/IP stack. Attackers can send specially...

A memory corruption vulnerability in Wasmtime's Cranelift code generator allows WebAssembly modules to read/write memory beyond their allocated bounds...

This vulnerability in NetXDuo's DHCPv6 client allows attackers to cause out-of-bounds memory reads by sending specially crafted DHCPv6 packets. It aff...

cJSON versions 1.5.0 through 1.7.18 contain an out-of-bounds access vulnerability in the decode_array_index_from_pointer function. This allows remote ...

This vulnerability allows an attacker to perform out-of-bounds memory operations on JavaScript Promise objects, potentially leading to arbitrary code ...

This CVE describes an out-of-bounds read vulnerability in macOS that could allow a malicious application to cause a system crash or unexpected termina...

This is a macOS kernel memory disclosure vulnerability caused by insufficient bounds checking. An application could potentially read sensitive kernel ...

This CVE describes an out-of-bounds read vulnerability in Apple's audio file processing that could allow unexpected app termination. Attackers could e...

A critical heap buffer overflow vulnerability in CryptoLib versions 1.3.3 and prior allows attackers to cause denial of service or potentially execute...

This critical vulnerability in macOS DCP firmware allows attackers to execute arbitrary code or cause system crashes through out-of-bounds memory acce...

This vulnerability in LibJXL allows attackers to trigger out-of-bounds memory operations when processing untrusted JPEG files during JPEG XL recompres...

This is a memory corruption vulnerability in the Linux kernel's tracing subsystem caused by an incorrect length check in the ftrace buffer. It allows ...

FreeRDP clients prior to version 3.5.1 contain an out-of-bounds read vulnerability when processing remote desktop connections with zero width and heig...

CVE-2024-32658 is an out-of-bounds read vulnerability in FreeRDP clients prior to version 3.5.1. This vulnerability could allow attackers to read sens...

FreeRDP clients and servers running versions before 3.5.0 or 2.11.6 contain an out-of-bounds read vulnerability that could allow attackers to read sen...

FreeRDP clients using versions before 3.5.0 or 2.11.6 contain an out-of-bounds read vulnerability in the graphics pipeline. This could allow attackers...

FreeRDP clients prior to versions 3.5.0 or 2.11.6 contain an out-of-bounds read vulnerability (CWE-125) that could allow remote attackers to read sens...

This vulnerability allows remote attackers to execute arbitrary code on Tenda W30E routers via a stack overflow in the fromVirtualSer function. Attack...

This CVE describes a stack overflow vulnerability in Tenda AC7V1.0 routers via the PPW parameter in the fromWizardHandle function. Attackers can explo...

CVE-2024-23086 is a disputed vulnerability in Apfloat v1.10.1 where a stack overflow in the DoubleModMath::modPow method could potentially allow arbit...

This CVE describes a buffer overflow vulnerability in the CSAPP Lab3 educational software component buflab-update.pl. A remote attacker can exploit th...

CVE-2024-30630 is a critical stack overflow vulnerability in Tenda FH1205 routers that allows remote attackers to execute arbitrary code by sending sp...

CVE-2024-30587 is a critical stack overflow vulnerability in Tenda FH1202 routers that allows remote code execution. Attackers can exploit the 'urls' ...

This CVE describes a stack overflow vulnerability in Tenda FH1202 routers that allows remote code execution by sending specially crafted data to the d...

This vulnerability allows an attacker to perform out-of-bounds memory reads or writes on JavaScript objects by exploiting a flaw in Firefox's range-ba...

This CVE describes a stack overflow vulnerability in Tenda AC18 routers that allows remote attackers to execute arbitrary code or cause denial of serv...

This vulnerability allows remote attackers to execute arbitrary code on affected HP printers by sending specially crafted PDF files containing malicio...

CVE-2023-46569 is an out-of-bounds read vulnerability in radare2's ND32 disassembler that could allow attackers to read sensitive memory contents or c...

This CVE describes an out-of-bounds read vulnerability in Android's baseband firmware that could allow remote information disclosure. Attackers with b...

CVE-2023-41910 is a critical heap memory out-of-bounds read vulnerability in lldpd network discovery daemon. Attackers can exploit this by sending spe...

This CVE describes a critical kernel-level out-of-bounds read vulnerability in Apple operating systems. An attacker could exploit this to execute arbi...

This is a critical buffer overflow vulnerability in Android's Bluetooth Low Energy (BLE) stack that allows remote code execution without user interact...

This vulnerability allows attackers to read memory outside the intended bounds in the facial recognition Trusted Application (TA) of certain HarmonyOS...

An off-by-one buffer overflow vulnerability in Contiki-NG's Antelope database system allows memory corruption when merging strings in storage function...

CVE-2022-23123 is a critical out-of-bounds read vulnerability in Netatalk's getdirparams method that allows unauthenticated remote attackers to read s...

This vulnerability is a read access violation in the III_dequantize_sample function of mp3gain's mpglibDBL library. It allows remote attackers to caus...

CVE-2022-1276 is an out-of-bounds read vulnerability in mruby's mrb_get_args function that could allow attackers to read sensitive memory contents. If...

A heap-based buffer overflow vulnerability in JerryScript 2.4.0 and earlier allows attackers to execute arbitrary code or cause denial of service via ...

This is a critical out-of-bounds memory access vulnerability in Huawei smartphones that allows attackers to cause process exceptions or potentially ex...

This critical Android vulnerability allows attackers to remotely execute code and gain elevated privileges on affected devices without user interactio...

CVE-2021-33590 is a stack-based buffer over-read vulnerability in GattLib's get_device_path_from_mac function that allows reading beyond allocated mem...

CVE-2021-1794 is a critical out-of-bounds read vulnerability in iOS/iPadOS that allows remote attackers to potentially execute arbitrary code on affec...

This vulnerability allows remote attackers to execute arbitrary code on Synology DiskStation Manager (DSM) systems by sending specially crafted web re...

This vulnerability is a critical memory corruption flaw in the WPG plugin for IrfanView image viewer. Attackers can exploit it by tricking users into ...

This vulnerability in the xcb Rust crate allows out-of-bounds memory reads when using the change_property() function, potentially exposing sensitive d...

CVE-2020-11212 is a critical out-of-bounds read vulnerability in Qualcomm Snapdragon chipsets that allows attackers to read memory beyond allocated bo...

This CVE describes a buffer over-read vulnerability in Qualcomm audio drivers affecting numerous Snapdragon platforms. It allows attackers to read bey...

This vulnerability in Ethernut's DNS implementation lacks proper null-termination checks for domain names, allowing attackers to trigger buffer overfl...