CWE-125: Out-of-bounds Read

This vulnerability in Kofax Power PDF allows remote attackers to execute arbitrary code by tricking users into opening malicious PNG files. The flaw e...

This vulnerability in Foxit PDF Reader allows remote attackers to execute arbitrary code by tricking users into opening malicious PDF files containing...

This vulnerability in Foxit PDF Reader allows remote attackers to execute arbitrary code by tricking users into opening malicious PDF files. The flaw ...

This vulnerability in Foxit PDF Reader allows remote attackers to execute arbitrary code by tricking users into opening malicious PDF files. The flaw ...

This vulnerability in NVIDIA GPU Display Driver for Windows allows an unprivileged user to perform an out-of-bounds write, potentially leading to code...

CVE-2024-25992 is an out-of-bounds read vulnerability in the tmu_tz_control function of tmu.c that allows local privilege escalation without user inte...

CVE-2024-26608 is a global out-of-bounds read vulnerability in the Linux kernel's ksmbd (SMB server) component. It allows attackers to read kernel mem...

This vulnerability allows attackers to execute arbitrary code by exploiting an out-of-bounds read when processing malicious images. It affects Apple v...

This vulnerability in Sante DICOM Viewer Pro allows attackers to execute arbitrary code or disclose information by tricking users into opening malicio...

CVE-2024-20750 is an out-of-bounds read vulnerability in Substance3D Designer that could allow arbitrary code execution when a user opens a malicious ...

CVE-2024-20742 is an out-of-bounds read vulnerability in Substance3D Painter that could allow arbitrary code execution when a user opens a malicious f...

This vulnerability allows remote code execution through specially crafted Catia MODEL files in Simcenter Femap. Attackers can exploit an out-of-bounds...

This vulnerability allows remote code execution through specially crafted SPP files in Tecnomatix Plant Simulation software. Attackers can exploit an ...

This vulnerability allows attackers to execute arbitrary code by exploiting an out-of-bounds read in Parasolid and Solid Edge when processing maliciou...

This vulnerability allows attackers to achieve out-of-bounds memory access by creating netfilter tables with invalid protocol family values. It affect...

This vulnerability allows an authenticated attacker to gain SYSTEM privileges by exploiting a flaw in Microsoft's Virtual Hard Disk driver. It affects...

Adobe Illustrator versions 28.0 and earlier (and 27.9 and earlier) contain an out-of-bounds read vulnerability when parsing malicious files. This coul...

This CVE-2023-42886 is an out-of-bounds read vulnerability in macOS that could allow a user to cause unexpected app termination or arbitrary code exec...

Adobe After Effects versions 24.0.2 and earlier, and 23.6 and earlier, contain an out-of-bounds read vulnerability when parsing malicious files. This ...

Adobe After Effects has an out-of-bounds read vulnerability that could allow arbitrary code execution when a user opens a malicious file. Attackers co...

Adobe Premiere Pro versions 24.0 and earlier, and 23.6 and earlier, contain an out-of-bounds read vulnerability when parsing malicious files. An attac...

Adobe InCopy has an out-of-bounds read vulnerability that could allow arbitrary code execution when a user opens a malicious file. Attackers could exp...

Adobe Media Encoder versions 24.0.2 and earlier, and 23.6 and earlier, contain an out-of-bounds read vulnerability when parsing malicious files. An at...

Adobe Acrobat Reader versions 23.006.20360 and earlier, and 20.005.30524 and earlier, contain an out-of-bounds read vulnerability when parsing malicio...

This vulnerability in the Windows Common Log File System (CLFS) driver allows an authenticated attacker to gain SYSTEM-level privileges through a loca...

CVE-2023-21372 is an out-of-bounds read vulnerability in Android's libdexfile component that allows local privilege escalation without user interactio...

A memory buffer overflow vulnerability in Rockwell Automation Arena Simulation software allows arbitrary code execution when a user opens a malicious ...

Ashlar-Vellum Graphite v13.0.48 has an out-of-bounds read vulnerability when parsing VC6 files due to improper input validation. This allows attackers...

This vulnerability allows an authenticated attacker to gain SYSTEM-level privileges on Windows systems using Microsoft's Resilient File System (ReFS)....

This vulnerability allows remote code execution through specially crafted SPP files in Tecnomatix Plant Simulation. Attackers can exploit an out-of-bo...

This vulnerability allows remote code execution through specially crafted SPP files in Tecnomatix Plant Simulation software. Attackers can exploit an ...

CVE-2023-36766 is a Microsoft Excel information disclosure vulnerability that allows an attacker to read memory contents from the Excel process. This ...

This vulnerability allows attackers to execute arbitrary code by tricking users into processing a malicious font file. It affects macOS systems before...

This vulnerability in Solid Edge SE2023 allows attackers to execute arbitrary code by exploiting an out-of-bounds read when parsing malicious DFT file...

An out-of-bounds read vulnerability in Solid Edge SE2023 allows attackers to execute arbitrary code by tricking users into opening malicious PAR files...

This vulnerability in Solid Edge SE2023 allows attackers to execute arbitrary code by exploiting an out-of-bounds read when parsing malicious PSM file...

This vulnerability allows attackers to execute arbitrary code by exploiting an out-of-bounds read vulnerability in Parasolid and Teamcenter Visualizat...

This vulnerability allows remote code execution through specially crafted X_T files in Siemens Parasolid and Teamcenter Visualization software. An att...

This vulnerability allows remote code execution through specially crafted TIFF files in Siemens JT2Go and Teamcenter Visualization software. An attack...

This vulnerability allows remote code execution through specially crafted JT files in Siemens JT Open and JT Utilities software. Attackers can exploit...

This vulnerability allows attackers to execute arbitrary code by exploiting an out-of-bounds read vulnerability when parsing specially crafted X_T fil...

This vulnerability allows remote code execution through specially crafted X_T files in Siemens Parasolid and Teamcenter Visualization software. An att...

This Windows kernel vulnerability allows attackers to gain elevated system privileges by exploiting improper memory handling. It affects Windows syste...

This vulnerability in the Windows Common Log File System (CLFS) driver allows an authenticated attacker to gain SYSTEM-level privileges through a loca...

CVE-2023-26085 is an out-of-bounds read/write vulnerability in Arm NN Android-NN-Driver due to improper shared memory length validation. This allows a...

This vulnerability in Autodesk AutoCAD 2023 and Maya 2022 allows attackers to execute arbitrary code by exploiting out-of-bounds read/write vulnerabil...

A stack-based buffer overflow vulnerability in Fuji Electric V-Server and V-Server Lite SCADA software allows remote code execution when a user opens ...

This vulnerability allows remote code execution through the Microsoft PostScript Printer Driver. Attackers can exploit it by sending specially crafted...

CVE-2023-32029 is a remote code execution vulnerability in Microsoft Excel that allows attackers to execute arbitrary code by tricking users into open...

This vulnerability allows remote code execution through specially crafted CGM files in Siemens JT2Go and Teamcenter Visualization software. An attacke...