CWE-125: Out-of-bounds Read

CVE-2024-44460 is an out-of-bounds read vulnerability in Nanomq v0.21.9 that allows attackers to trigger a Denial of Service (DoS) by causing the MQTT...

CVE-2024-5991 is an out-of-bounds read vulnerability in wolfSSL's X509 certificate hostname validation. Attackers can cause the library to read beyond...

This vulnerability in Windows Secure Channel allows attackers to cause a denial of service by sending specially crafted packets to vulnerable systems....

This vulnerability in Windows Network Address Translation (NAT) allows attackers to cause a denial of service condition by sending specially crafted n...

A buffer overflow vulnerability in Waxlab wax versions 0.9-3 and earlier allows attackers to cause denial of service through the Lua library component...

This CVE describes a stack-based buffer overflow vulnerability in the SetNetworkTomographySettings module of D-Link DIR-822+ routers. Attackers can ex...

CVE-2024-33781 is a stack buffer overflow vulnerability in MP-SPDZ v0.3.8's octetStream::get_bytes function that allows attackers to cause denial of s...

An out-of-bounds memory read vulnerability in Bytecode Alliance wasm-micro-runtime v2.0.0 allows remote attackers to cause denial of service by exploi...

CVE-2024-34246 is an out-of-bounds memory read vulnerability in wasm3 v0.5.0 that can cause segmentation faults and potential denial of service. This ...

CVE-2024-33763 is a stack-buffer-underflow vulnerability in lunasvg's layoutcontext.cpp that allows reading memory before the start of a buffer. This ...

An out-of-bounds read vulnerability in Ivanti Avalanche's WLAvalancheService component allows unauthenticated remote attackers to read sensitive infor...

An unauthenticated remote attacker can exploit an out-of-bounds read vulnerability in Ivanti Avalanche's WLAvalancheService component to read sensitiv...

An authenticated remote attacker can exploit an out-of-bounds read vulnerability in the WLAvalancheService component of Ivanti Avalanche to cause deni...

A vulnerability in Micrium OS Network HTTP Server allows invalid pointer dereference during HTTP header processing, potentially causing device crashes...

Tenda FH1203 router firmware version 2.0.1.6 contains a stack overflow vulnerability in the fromDhcpListClient function's list1 parameter. This allows...

CVE-2024-26003 is an out-of-bounds read vulnerability in a charging system control agent that allows unauthenticated remote attackers to cause a denia...

CVE-2024-27206 is an out-of-bounds read vulnerability in Android Pixel devices that allows remote attackers to read memory beyond intended boundaries ...

This vulnerability allows remote attackers to read memory outside intended bounds in Android's ss_ProcessRejectComponent function, potentially exposin...

This vulnerability allows attackers to read memory outside the intended buffer boundaries when Firefox, Firefox ESR, or Thunderbird processes network ...

This vulnerability in Microsoft's AllJoyn API allows attackers to cause a denial of service by sending specially crafted packets. It affects systems r...

CVE-2023-49552 is an out-of-bounds write vulnerability in Cesanta mjs 2.20.0's mjs_op_json_stringify function that allows remote attackers to cause de...

CVE-2023-52152 is an out-of-bounds read vulnerability in mUPnP for C's URI parsing component that can cause application crashes. This affects any appl...

CVE-2023-51713 is a one-byte out-of-bounds read vulnerability in ProFTPD's make_ftp_cmd function that can cause the FTP daemon to crash. This affects ...

This vulnerability allows remote attackers to read memory outside intended bounds in Android's ProtocolMiscCarrierConfigSimInfoIndAdapter component, p...

This CVE describes an out-of-bounds read vulnerability in the baseband firmware of certain Android devices. Attackers could potentially read sensitive...

This CVE describes an out-of-bounds write vulnerability in a kernel driver module that could allow attackers to cause process exceptions or potentiall...

CVE-2023-46762 is an out-of-bounds write vulnerability in a kernel driver module that could allow attackers to write data beyond allocated memory boun...

CVE-2023-5998 is an out-of-bounds read vulnerability in the GPAC multimedia framework that could allow attackers to read sensitive memory contents. Th...

This Bluetooth vulnerability allows attackers to read memory beyond intended boundaries without user interaction, potentially exposing sensitive infor...

CVE-2023-21353 is an out-of-bounds read vulnerability in Android's NFC stack (NFA) that allows remote attackers to read memory contents without authen...

An out-of-bounds read vulnerability in the mod_macro module of Apache HTTP Server allows attackers to read memory beyond allocated buffers. This affec...

This vulnerability allows remote attackers to read memory beyond intended boundaries in Android's protocolnetadapter component, potentially exposing s...

A denial-of-service vulnerability in SoftEther VPN's vpnserver component allows attackers to crash the VPN service by sending specially crafted networ...

This CVE describes an out-of-bounds read vulnerability in Android's baseband firmware that could allow remote information disclosure. Attackers could ...

This vulnerability allows remote attackers to read memory beyond intended boundaries in Android's ROHC packet decompression code. It affects Android d...

This vulnerability allows remote unauthenticated attackers to cause a denial-of-service condition on ASUS RT-AX88U routers by sending a specially craf...

This vulnerability allows remote attackers to read memory outside intended bounds in Android's DMPixelLogger component, potentially exposing sensitive...

This vulnerability in Microsoft Message Queuing (MSMQ) allows an unauthenticated attacker to send specially crafted packets to cause a denial of servi...

This vulnerability allows remote attackers to read memory beyond intended boundaries in Android's LPP (LTE Positioning Protocol) component, potentiall...

This vulnerability allows remote attackers to read memory beyond intended bounds in Android's Bluetooth stack, potentially disclosing sensitive inform...

This vulnerability in Android's Bluetooth stack allows remote attackers to cause denial of service via an out-of-bounds read. Attackers can exploit th...

This CVE describes a buffer overflow vulnerability in the coap_send function of libcoap library versions up to 4.3.1-103-g52cfd56. Attackers can explo...

This vulnerability in the Go protobuf library causes a panic when parsing malformed text-format messages containing a minus sign followed by whitespac...

This vulnerability in AMD Secure Processor firmware allows attackers to trigger a data abort through insufficient bounds checking in SMI mailbox check...

CVE-2021-31239 is an out-of-bounds read vulnerability in SQLite's appendvfs.c that allows remote attackers to cause denial of service through applicat...

This vulnerability in Microsoft Message Queuing (MSMQ) allows an unauthenticated attacker to send specially crafted packets to an MSMQ server, causing...

This vulnerability in Nginx NJS v0.7.10 allows attackers to trigger a segmentation violation via the njs_dump_is_recursive function, potentially causi...

CVE-2023-27730 is a memory corruption vulnerability in Nginx NJS JavaScript engine that can cause segmentation faults via the njs_lvlhsh_find function...

An out-of-bounds read vulnerability in OpenImageIO's TGA file parser allows attackers to read memory beyond allocated buffers via specially crafted Ta...

This vulnerability in TensorFlow allows an out-of-bounds read when the DynamicStitch operation receives mismatched indices and data shapes, potentiall...