CWE-125: Out-of-bounds Read

This vulnerability in uhttpd (OpenWrt's web server) allows attackers to cause a heap buffer overflow by sending specially crafted HTTP POST requests w...

This Bluetooth vulnerability in Android 10 allows attackers to read memory beyond intended boundaries without user interaction, potentially exposing s...

This CVE describes an out-of-bounds read vulnerability in Huawei USG6000V firewall software due to a logical flaw in JSON parsing. Remote, unauthentic...

This vulnerability in Android's NFC stack allows attackers to read uninitialized memory data remotely without user interaction. It affects Android dev...

This CVE describes an out-of-bounds read vulnerability in Android's VP8 video decoder. An attacker could remotely disclose information from affected d...

CVE-2020-1893 is an out-of-bounds read vulnerability in HHVM's JSON parsing that occurs due to insufficient boundary checks. When exploited, it can ca...

CVE-2020-1888 is an out-of-bounds memory read vulnerability in HHVM's JSON decoder that occurs when processing backslash characters. This can cause de...

An out-of-bounds read vulnerability in ASR Lapwing_Linux affects ASR1903 and ASR3901 devices running the nr_fw module. This allows attackers to read m...

An out-of-bounds read vulnerability in Intel PROSet/Wireless WiFi Software for Windows allows unprivileged attackers on the same network to cause deni...

This CVE describes an out-of-bounds memory access vulnerability in the LZMA compression library used in ASR180x and ASR190x LTE telephony modules. Att...

This vulnerability in RTI Connext Professional Recording Service allows attackers to read or write data outside intended memory buffers, potentially l...

CVE-2025-32914 is an out-of-bounds read vulnerability in libsoup's soup_multipart_new_from_message() function. It allows malicious HTTP clients to cau...

This CVE-2024-11614 is an out-of-bounds read vulnerability in DPDK's Vhost library checksum offload feature. It allows a malicious virtual machine usi...

This vulnerability in Hw64.sys driver allows unprivileged user-mode processes to read arbitrary kernel memory through specific IOCTL calls, potentiall...

This OpenSSL vulnerability allows attackers to cause buffer overruns when applications directly construct ASN.1 strings without proper NUL termination...

This vulnerability allows a remote attacker who has already compromised Chrome's renderer process to perform an out-of-bounds read in IPC (Inter-Proce...

This vulnerability in Contiki-NG OS allows attackers to trigger out-of-bounds memory reads by sending specially crafted truncated ICMP DAO packets. Io...

This CVE describes a buffer overflow vulnerability in Contiki-NG's TCP MSS option parsing for IPv6 packets. Attackers can trigger out-of-bounds memory...

This vulnerability in Samsung modem interface drivers allows out-of-bounds memory read and arbitrary code execution through invalid function pointer d...

This vulnerability in TensorFlow allows attackers to trigger crashes or read data outside allocated memory bounds via the ResourceGather API. It affec...

This vulnerability in TensorFlow allows attackers to trigger out-of-bounds memory accesses during sparse reduction operations, potentially leading to ...

CVE-2024-38028 is a remote code execution vulnerability in Microsoft Windows Performance Data Helper Library. Attackers can exploit this vulnerability...

CVE-2024-32631 is an out-of-bounds read vulnerability in the ciCCIOTOPT component of ASR180X chipsets that can cause incorrect computations. This affe...

A heap buffer overflow vulnerability in iccDEV allows reading past allocated memory boundaries when parsing ICC profile XML text description tags. Thi...

This CVE describes an out-of-bounds memory access vulnerability in Apple's media file processing across multiple operating systems. Attackers can craf...

This CVE describes an out-of-bounds read vulnerability in the Linux kernel's libceph component within the handle_auth_done() function. Attackers could...

CVE-2025-64893 is an out-of-bounds read vulnerability in Adobe DNG SDK versions 1.7.0 and earlier. Attackers can exploit this by tricking users into o...

CVE-2025-66293 is an out-of-bounds read vulnerability in libpng's simplified API that allows reading up to 1012 bytes beyond allocated memory when pro...

This CVE describes an out-of-bounds read vulnerability in LIBPNG library versions 1.6.0 through 1.6.50. When processing palette images with PNG_FLAG_O...

An out-of-bounds read vulnerability in Microsoft Office Excel allows an attacker to read memory contents beyond intended boundaries, potentially expos...

This vulnerability is an out-of-bounds read flaw in Microsoft Excel that allows an attacker to read memory contents they shouldn't have access to. Att...

This CVE-2023-53675 is an out-of-bounds read vulnerability in the Linux kernel's SCSI Enclosure Services (SES) driver. It allows attackers to read ker...

This CVE describes a denial-of-service vulnerability in the Linux kernel's ring buffer tracing subsystem. When reading from trace_pipe, a race conditi...

This vulnerability in the Linux kernel's iavf driver allows an out-of-bounds memory access when setting network channels during device removal. Attack...

This CVE describes a shift-out-of-bounds vulnerability in the brcmfmac WiFi driver in the Linux kernel. An attacker could potentially cause a kernel p...

A memory corruption vulnerability in the Linux kernel's tunneling code allows attackers to trigger a kernel panic (denial of service) when the kernel ...

This CVE describes an array out-of-bounds access vulnerability in the iwlwifi driver in the Linux kernel. An attacker could potentially exploit this t...

This vulnerability is an out-of-bounds memory access flaw in the MediaTek MT76 Wi-Fi driver for Linux kernel. It allows attackers with local access to...

A race condition vulnerability in the Linux kernel's BPF subsystem allows improper error handling during hash table operations. When htab_lock_bucket(...

A memory corruption vulnerability in the Linux kernel's ksmbd SMB server component allows attackers to trigger out-of-bounds memory access by sending ...

A slab-out-of-bounds read vulnerability in the Linux kernel's SCSI Enclosure Services (SES) driver allows reading kernel memory beyond allocated bound...

CVE-2023-53486 is an out-of-bounds read vulnerability in the Linux kernel's NTFS3 filesystem driver. It allows attackers to read kernel memory beyond ...

This CVE describes an out-of-bounds write vulnerability in the Linux kernel's Qualcomm SoundWire driver. An attacker could exploit this to corrupt ker...

CVE-2022-50442 is an out-of-bounds read vulnerability in the Linux kernel's NTFS3 filesystem driver. It occurs when parsing index buffers during direc...

This CVE describes an undefined behavior shift operation vulnerability in the AMD GPU kernel driver (drm/amdkfd) in the Linux kernel. When certain que...

A memory corruption vulnerability in the Linux kernel's ixgbe network driver allows incorrect memory access when handling Energy Efficient Ethernet (E...

This CVE describes a vulnerability in the Linux kernel's i40e network driver where debugfs files have insecure read handlers that could allow reading ...

This CVE describes a memory access vulnerability in the Linux kernel's i40e network driver. When the MAC address list is empty, the driver uses list_f...

This vulnerability in the Linux kernel's batman-adv network coding module allows out-of-bounds memory read/write operations. Attackers could potential...

A memory corruption vulnerability in the Linux kernel's NTFS3 filesystem driver allows attackers to trigger a kernel panic or potentially execute arbi...