CWE-125: Out-of-bounds Read

This vulnerability allows remote attackers to read memory beyond intended boundaries in Android's cell broadcast message processing. It could disclose...

This vulnerability allows remote attackers to read memory beyond intended boundaries in Android's LPP_LcsManagement component, potentially disclosing ...

This vulnerability in Rockwell Automation's ThinManager ThinServer allows unauthenticated remote attackers to trigger a heap-based buffer over-read by...

An out-of-bounds read vulnerability in OpenBMC firmware for certain Intel platforms allows unauthenticated attackers to potentially cause denial of se...

This vulnerability in Microsoft's Protected Extensible Authentication Protocol (PEAP) allows an attacker to disclose sensitive information from memory...

CVE-2023-25567 is an out-of-bounds read vulnerability in GSS-NTLMSSP, a plugin for GSSAPI that handles NTLM authentication. Attackers can trigger this...

This CVE describes an out-of-bounds read vulnerability in Apache InLong that could allow attackers to read sensitive information from memory. It affec...

CVE-2022-34037 is an out-of-bounds read vulnerability in Caddy web server's rewrite module that can cause denial of service. Attackers can crash the s...

This vulnerability in Android's Bluetooth stack allows remote attackers to read memory beyond intended boundaries without user interaction. It affects...

CVE-2022-34742 is an out-of-bounds read vulnerability in Huawei system modules that allows attackers to read sensitive memory data. This affects Huawe...

CVE-2021-33649 is an out-of-bounds read vulnerability in MindSpore's Transpose operator that occurs when the perm parameter exceeds input shape bounds...

This vulnerability is an out-of-bounds read in the WLAN HOST component of Qualcomm Snapdragon chipsets due to improper length checking. It affects mul...

This CVE describes a buffer over-read vulnerability in Qualcomm Snapdragon chipsets when processing NR system information messages. Attackers could po...

This vulnerability is a buffer over-read in Qualcomm Snapdragon chipsets when parsing ID3 tags in media files. It allows attackers to read memory beyo...

CVE-2021-46814 is an out-of-bounds memory read/write vulnerability in Huawei's video framework that could allow attackers to crash systems or potentia...

CVE-2022-31001 is an out-of-bounds read vulnerability in Sofia-SIP library that can cause crashes when processing malicious SDP messages. Attackers ca...

CVE-2021-42870 is an out-of-bounds read vulnerability in ACCEL-PPP 1.12.0 that occurs when processing call_clear_request messages. This allows attacke...

This vulnerability is a buffer over-read in Ruby's String-to-Float conversion functions (Kernel#Float and String#to_f). It allows attackers to read me...

CVE-2022-27406 is a memory corruption vulnerability in FreeType's FT_Request_Size function that can cause segmentation faults or potentially allow arb...

This vulnerability allows remote attackers to read memory beyond intended boundaries in Android's Bluetooth AVRCP (Audio/Video Remote Control Profile)...

This vulnerability affects Siemens SCALANCE industrial network switches. It allows attackers to trigger device reboots by sending specially crafted SN...

A lack of validation in the Splunk-to-Splunk protocol allows attackers to cause denial-of-service in vulnerable Splunk Enterprise instances. This affe...

This CVE describes an out-of-bounds read vulnerability in the Android kernel's cd_ParseMsg function. It allows remote attackers to read memory beyond ...

This heap-based buffer overflow vulnerability in ImageMagick's TIFF image processing allows attackers to crash applications or potentially execute arb...

This vulnerability allows attackers to read memory outside the allocated buffer when the camera buffer size is zero, potentially exposing sensitive in...

CVE-2022-24314 is an out-of-bounds read vulnerability in Schneider Electric's Interactive Graphical SCADA System Data Server that could cause memory l...

CVE-2021-41040 is an out-of-bounds read vulnerability in Eclipse Wakaama's CoAP parsing code that allows attackers to read sensitive memory contents. ...

CVE-2020-19861 is a heap-based buffer overflow vulnerability in ldns 1.7.1's zone file parsing function. When processing malicious DNS zone files, the...

CVE-2022-21688 is a denial-of-service vulnerability in OnionShare desktop application where specially crafted images cause excessive memory consumptio...

This vulnerability in Huawei's idap module allows attackers to read memory outside intended boundaries, potentially causing denial of service. It affe...

This CVE describes an out-of-bounds read vulnerability in Android's WT_Interpolate function that could allow remote attackers to read sensitive memory...

This vulnerability allows remote attackers to read memory beyond intended boundaries in Android's NFC Type 4 Tag processing code. It could lead to inf...

This CVE describes an out-of-bounds read vulnerability in Huawei smartphones running HarmonyOS. Successful exploitation could allow an attacker to cau...

CVE-2021-37066 is an out-of-bounds read vulnerability in Huawei smartphones running HarmonyOS. Successful exploitation can cause process crashes, pote...

This vulnerability in Zoom clients and servers allows attackers to read arbitrary memory contents, potentially exposing sensitive information like ses...

This is an out-of-bounds read vulnerability in Huawei smartphone kernels that allows attackers to read memory beyond allocated buffers. Successful exp...

This vulnerability is a buffer over-read in Qualcomm Snapdragon chipsets due to improper size checking of Bearer capability information elements in MT...

This vulnerability allows attackers to read beyond allocated memory boundaries during AEAD decryption in Qualcomm Snapdragon chipsets. It affects devi...

ACCEL-PPP 1.12.0 contains an out-of-bounds read vulnerability in the triton_context_schedule function that occurs when a client disconnects after auth...

CVE-2021-36160 is an out-of-bounds read vulnerability in Apache HTTP Server's mod_proxy_uwsgi module. A specially crafted URI path can cause the serve...

This vulnerability allows a malicious application to read kernel memory beyond intended boundaries, potentially exposing sensitive system information....

CVE-2021-40516 is an out-of-bounds read vulnerability in WeeChat's Relay plugin that allows remote attackers to crash the application via specially cr...

This vulnerability in Pillow (Python Imaging Library) allows attackers to cause Denial of Service (DoS) through a Regular Expression Denial of Service...

This vulnerability in Arm Mbed TLS allows attackers to read one byte beyond the allocated buffer when parsing Certificate Revocation Lists (CRLs) in D...

This vulnerability allows remote attackers to read memory beyond intended boundaries via NFC communication, potentially disclosing sensitive informati...

This vulnerability allows attackers to read memory beyond allocated buffer boundaries in Qualcomm Snapdragon chipsets when parsing beacon responses. I...

This vulnerability in Android's Bluetooth stack allows remote attackers to read memory they shouldn't access via a use-after-free bug in SDP callback ...

This vulnerability allows attackers to read memory beyond intended boundaries in Welch Allyn medical device management tools, potentially leaking sens...

CVE-2021-27597 is a denial-of-service vulnerability in SAP NetWeaver AS for ABAP RFC Gateway caused by improper input validation in the memmove() meth...

This vulnerability allows an attacker to trigger an out-of-bounds read in Qualcomm Snapdragon chipsets when processing EAPOL keys with insufficient le...