CWE-125: Out-of-bounds Read

CVE-2022-27866 is an out-of-bounds read vulnerability in Autodesk Design Review's TIFF file parser. Attackers can craft malicious TIFF files that caus...

This vulnerability allows attackers to craft malicious PRT files that cause Autodesk AutoCAD 2023 to read beyond allocated memory boundaries. When com...

This vulnerability in Adobe Acrobat Reader allows an attacker to execute arbitrary code on a victim's system by tricking them into opening a malicious...

This is a remote code execution vulnerability in Foxit PDF Reader that allows attackers to execute arbitrary code by tricking users into opening malic...

An out-of-bounds read vulnerability in Open Design Alliance Drawings SDK allows attackers to execute arbitrary code when processing malicious DWG file...

Adobe Acrobat Reader versions 22.001.20142 and earlier, 20.005.30334 and earlier, and 17.012.30229 and earlier contain an out-of-bounds read vulnerabi...

This vulnerability in Adobe Acrobat Reader allows an attacker to execute arbitrary code on a victim's system by tricking them into opening a malicious...

CVE-2021-26384 is an AMD CPU vulnerability where a malformed System Management Interface (SMI) command can corrupt SMI Trigger Info data structures, p...

CVE-2022-2206 is an out-of-bounds read vulnerability in Vim text editor versions prior to 8.2. This allows attackers to read sensitive memory contents...

This vulnerability allows a maliciously crafted TIF file to cause Autodesk 3ds Max to read beyond allocated memory boundaries. If exploited in conjunc...

This CVE describes an out-of-bounds read vulnerability in Fuji Electric's V-Server and V-Server Lite software that could allow attackers to read sensi...

This vulnerability allows attackers to read memory beyond intended boundaries in V-SFT graphic editor's simulator module. By tricking a user into open...

CVE-2022-32200 is a heap-based buffer over-read vulnerability in libdwarf 0.4.0's _dwarf_check_string_valid function in dwarf_util.c. This allows atta...

CVE-2022-29488 is an out-of-bounds read vulnerability via uninitialized pointer in industrial control systems software. This could allow attackers to ...

This CVE-2022-26770 is an out-of-bounds read vulnerability in macOS that allows malicious applications to execute arbitrary code with kernel privilege...

CVE-2022-26718 is an out-of-bounds read vulnerability in macOS that could allow an application to read memory beyond allocated boundaries. If exploite...

Adobe Photoshop versions 22.5.6 and earlier and 23.2.2 and earlier contain an out-of-bounds read vulnerability when parsing malicious files. An attack...

CVE-2022-1402 is an out-of-bounds read vulnerability in ASDA-Soft versions 5.4.1.0 and earlier. Attackers can exploit this by tricking users into open...

CVE-2022-1427 is an out-of-bounds read vulnerability in mrb_obj_is_kind_of function in mruby, a lightweight Ruby implementation. This could allow atta...

An out-of-bounds read vulnerability in Autodesk FBX Review version 1.5.2 and earlier allows attackers to execute arbitrary code or disclose informatio...

A remote code execution vulnerability exists in the ark library due to insufficient validation of parameter length in the xheader_decode_path_record f...

This vulnerability allows attackers to read memory beyond intended boundaries in Qualcomm Snapdragon chipsets due to improper WMI message length calcu...

CVE-2022-27940 is a heap-based buffer over-read vulnerability in tcprewrite component of Tcpreplay 4.4.1. This allows attackers to read sensitive memo...

CVE-2022-27942 is a heap-based buffer over-read vulnerability in tcpprep utility of Tcpreplay 4.4.1. This allows attackers to read sensitive memory co...

CVE-2022-22601 is an out-of-bounds read vulnerability in Xcode that could allow arbitrary code execution when opening malicious files. This affects de...

CVE-2022-22603 is an out-of-bounds read vulnerability in Apple's Xcode development environment that could allow arbitrary code execution when opening ...

CVE-2022-22605 is an out-of-bounds read vulnerability in Xcode that could allow arbitrary code execution when opening malicious files. This affects de...

CVE-2022-22607 is an out-of-bounds read vulnerability in Xcode that could allow arbitrary code execution when opening malicious files. This affects de...

Adobe Bridge versions 11.1.1 and earlier contain an out-of-bounds read vulnerability when parsing malicious files. An attacker could exploit this to e...

This vulnerability allows attackers to read memory outside intended boundaries by tricking users into opening malicious CXP files in CX-Programmer. Su...

CVE-2022-21209 is an out-of-bounds read vulnerability in certain industrial control system (ICS) software that processes project files. An attacker ca...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious PDF files in Bentley MicroStation CONNEC...

CVE-2021-46612 is an out-of-bounds read vulnerability in Bentley MicroStation CONNECT's PDF parser that allows remote code execution. Attackers can ex...

This vulnerability in Bentley MicroStation CONNECT allows remote attackers to execute arbitrary code by tricking users into opening malicious J2K imag...

This is a buffer overflow vulnerability in Bentley MicroStation CONNECT that allows remote code execution when users open malicious JT files. Attacker...

CVE-2021-46562 is an out-of-bounds read vulnerability in Bentley MicroStation CONNECT's JT file parser that allows remote code execution. Attackers ca...

A memory corruption vulnerability in Siemens JT2Go, Solid Edge, and Teamcenter Visualization products allows attackers to execute arbitrary code by tr...

This vulnerability allows a malicious JT file to cause Autodesk Inventor and AutoCAD to read beyond allocated memory boundaries. When combined with ot...

This vulnerability allows memory corruption through specially crafted DWF or PCT files when opened in Autodesk Design Review. Attackers could potentia...

This CVE describes an out-of-bounds read vulnerability in Adobe Acrobat Reader DC that could allow an attacker to execute arbitrary code in the contex...

CVE-2021-34927 is a buffer overflow vulnerability in Bentley View's JT file parser that allows remote code execution. Attackers can exploit this by tr...

CVE-2021-34913 is a buffer overflow vulnerability in Bentley View's JT file parser that allows remote code execution. Attackers can exploit it by tric...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious 3DS files in Bentley View. It affects us...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious JT files in Bentley View. The flaw exist...

This vulnerability allows remote attackers to execute arbitrary code on TeamViewer installations by tricking users into opening malicious TVS files. T...

Adobe InCopy versions 16.4 and earlier contain an out-of-bounds read vulnerability when parsing malicious files. An attacker can exploit this to execu...

CVE-2021-40160 is an out-of-bounds read vulnerability in PDFTron PDF parsing libraries prior to version 9.0.7. Attackers can exploit this by crafting ...

This vulnerability allows an attacker to trigger an out-of-bounds memory access in the Linux kernel's F2FS filesystem when processing extended attribu...

An out-of-bounds read vulnerability in Open Design Alliance Drawings SDK allows attackers to execute arbitrary code by providing a malicious TGA file....

This vulnerability allows attackers to read memory beyond allocated buffers when parsing malicious JT files using JT Utilities or JTTK libraries. It a...