CWE-125: Out-of-bounds Read

This CVE describes a speculative execution vulnerability in the Linux kernel's KVM hypervisor where a malicious guest VM could potentially read host k...

This CVE describes an out-of-bounds memory write vulnerability in the Linux kernel's ngene driver, which handles digital TV tuner cards. An attacker c...

A buffer read vulnerability in the Linux kernel's CAKE (Common Applications Kept Enhanced) queuing discipline allows reading one byte out of bounds wh...

This CVE describes an out-of-bounds read vulnerability in the Linux kernel's netfilter synproxy module when parsing TCP options. Attackers could poten...

This CVE-2024-35967 is a Linux kernel Bluetooth SCO socket vulnerability where the kernel fails to validate user input length in setsockopt calls, all...

This CVE describes an out-of-bounds read vulnerability in the Linux kernel's WiFi subsystem (cfg80211) when processing A-MSDU frames. Attackers could ...

This CVE describes a kernel memory corruption vulnerability in the Linux netfilter subsystem where setsockopt() fails to validate user input length be...

This CVE describes a race condition vulnerability in the Linux kernel's F2FS filesystem where garbage collection (GC) operations can overwrite newly w...

This CVE describes an out-of-bounds read vulnerability in the Linux kernel's USB audio subsystem. When parsing interface descriptors from malicious US...

This vulnerability in Foxit PDF Reader allows attackers to read memory beyond allocated buffers when processing malicious PDF files containing XFA Doc...

This CVE describes an out-of-bounds memory access vulnerability in the AMD GPU driver (drm/amdgpu) in the Linux kernel. An attacker could potentially ...

This CVE describes an out-of-bounds read vulnerability in the Linux kernel's scsi_debug driver. An attacker can cause kernel memory corruption by pass...

This is a stack-based buffer overflow vulnerability in the Linux kernel's scsi_debug driver. It allows attackers with local access to cause kernel mem...

This vulnerability in the Linux kernel's ARM64 cryptographic implementation allows out-of-bounds memory access when processing short AES-CTR inputs. I...

This CVE-2024-26791 is an out-of-bounds read vulnerability in the Linux kernel's Btrfs filesystem device replace functionality. Attackers could potent...

This vulnerability in Foxit PDF Reader allows attackers to read memory beyond allocated buffers when processing malicious PDF files with AcroForm anno...

A precedence bug in the Linux kernel's mlx5e network driver causes an out-of-bounds read during port timestamping operations. This vulnerability could...

This is an out-of-bounds memory access vulnerability in the Linux kernel's fq_pie network scheduler. It allows attackers with local access to cause ke...

A vulnerability in the Linux kernel's i2c-i801 driver allows an out-of-bounds memory access when the driver attempts to recover from a timed-out trans...

A race condition vulnerability in the Linux kernel's s390/ptrace interface allows a traced process to corrupt the floating point control (fPC) registe...

This is a stack buffer overflow vulnerability in the Linux kernel's Elantech touchpad driver. Attackers with local access can trigger memory corruptio...

This CVE describes an out-of-bounds memory access vulnerability in the MediaTek pinctrl driver in the Linux kernel. When the virtual external interrup...

A reference count overflow vulnerability in the Linux kernel's Intel ISH HID driver could allow local attackers to cause denial of service or potentia...

This CVE describes an out-of-bounds read vulnerability in the Linux kernel's UVC video driver. An attacker with local access can trigger this vulnerab...

A race condition vulnerability in the Linux kernel's ring buffer subsystem allows a malicious process to corrupt kernel memory when reading trace even...

This CVE-2023-52507 is an out-of-bounds read vulnerability in the Linux kernel's NFC (Near Field Communication) subsystem. It allows attackers to pote...

This CVE describes an out-of-bounds read vulnerability in the Linux kernel's ataflop driver. An attacker could potentially read kernel memory beyond a...

This CVE describes an out-of-bounds memory access vulnerability in the Linux kernel's physmap-bt1-rom driver. The bug allows attackers to read kernel ...

This vulnerability in the Linux kernel's NFS implementation allows an attacker to trigger a shift out-of-bounds error by passing a maliciously large '...

This is a stack out-of-bounds read vulnerability in the Linux kernel's network scheduler when fragmenting IPv4 packets. It allows attackers to read ke...

This CVE-2019-25160 is an out-of-bounds memory access vulnerability in the Linux kernel's netlabel subsystem, specifically in cipso_v4_map_lvl_valid()...

A global out-of-bounds read vulnerability in the Linux kernel's RMNET driver allows attackers to read kernel memory beyond allocated bounds when parsi...

This vulnerability in the Linux kernel's ksmbd SMB server allows attackers to send invalid authentication mechanism tokens during session setup, poten...

A vulnerability in the Linux kernel's i2c-i801 driver allows improper memory access during block process call transactions. Attackers could read sensi...

Vba32 Antivirus v3.36.0 contains a driver vulnerability that allows attackers to read arbitrary kernel memory. This affects all systems running the vu...

An out-of-bounds read vulnerability in the Linux kernel's SMB client implementation allows local attackers to read kernel memory. This could lead to s...

This vulnerability allows an attacker with local administrative privileges on a VMware virtual machine to read privileged information from hypervisor ...

This vulnerability is an out-of-bounds read in the GPAC multimedia framework that could allow attackers to read sensitive memory contents. It affects ...

CVE-2020-23909 is a heap-based buffer over-read vulnerability in the png_convert_4 function of AdvanceMAME's pngex.cc file. This vulnerability allows ...

This vulnerability is an out-of-bounds read in the GPAC multimedia framework that could allow attackers to read sensitive memory contents. It affects ...

This CVE describes an authorization vulnerability in Apple operating systems where applications can retain access to system configuration files even a...

Multiple buffer overflow vulnerabilities in Silicon Labs Z/IP Gateway SDK versions 7.18.01 and earlier allow attackers with physical access to Z-Wave ...

This vulnerability in NVIDIA GPU Display Driver for Linux allows attackers to exploit a kernel mode layer handler, potentially causing denial of servi...

This CVE describes an out-of-bounds read vulnerability in the Broadcom brcmfmac WiFi driver in the Linux kernel. When processing association request d...

CVE-2021-32847 is an out-of-bounds read vulnerability in HyperKit's virtio block driver that allows a malicious guest VM to read host memory. This can...

Trend Micro Security 2021 and 2022 (Consumer) contains an out-of-bounds read vulnerability that could allow an attacker to read sensitive information ...

This vulnerability allows attackers to read memory outside intended boundaries when processing malicious AppleScript binary files. It affects macOS Ca...

CVE-2022-30976 is a heap-based buffer over-read vulnerability in GPAC's Unicode handling function. Attackers can exploit this by crafting malicious MP...

CVE-2022-1714 is an out-of-bounds read vulnerability in radare2 reverse engineering framework versions prior to 5.7.0. This allows attackers to read s...

CVE-2022-29458 is an out-of-bounds read vulnerability in ncurses' terminfo library that can cause segmentation faults and potentially lead to informat...