CWE-125: Out-of-bounds Read

CVE-2021-32847 is an out-of-bounds read vulnerability in HyperKit's virtio block driver that allows a malicious guest VM to read host memory. This can...

Trend Micro Security 2021 and 2022 (Consumer) contains an out-of-bounds read vulnerability that could allow an attacker to read sensitive information ...

This vulnerability allows attackers to read memory outside intended boundaries when processing malicious AppleScript binary files. It affects macOS Ca...

CVE-2022-30976 is a heap-based buffer over-read vulnerability in GPAC's Unicode handling function. Attackers can exploit this by crafting malicious MP...

CVE-2022-1714 is an out-of-bounds read vulnerability in radare2 reverse engineering framework versions prior to 5.7.0. This allows attackers to read s...

CVE-2022-29458 is an out-of-bounds read vulnerability in ncurses' terminfo library that can cause segmentation faults and potentially lead to informat...

A buffer over-read vulnerability in Autodesk TrueView 2022 allows attackers to expose sensitive information or cause application crashes by tricking u...

An out-of-bounds read vulnerability in libsndfile's FLAC codec allows attackers to crash applications or potentially leak memory information by submit...

This vulnerability allows attackers to cause AppleScript binaries to read memory outside intended bounds, potentially leading to application crashes o...

This vulnerability allows attackers to read memory outside intended boundaries when processing malicious AppleScript binaries. It affects macOS Catali...

CVE-2022-0630 is an out-of-bounds read vulnerability in mruby, a lightweight Ruby implementation. This vulnerability allows attackers to read memory b...

CVE-2022-21711 is an out-of-bounds read vulnerability in elfspirit versions prior to 1.1 that allows attackers to cause application crashes or leak me...

CVE-2021-4166 is an out-of-bounds read vulnerability in Vim text editor that allows attackers to read memory contents beyond allocated buffers. This a...

CVE-2021-29328 is a buffer over-read vulnerability in Moddable's fxDebugThrow function that could allow attackers to read sensitive memory contents. T...

This vulnerability in Siemens Capital Embedded AR Classic products allows attackers to cause denial-of-service conditions by sending specially crafted...

This vulnerability in TensorFlow allows attackers to trigger a heap out-of-bounds memory access by providing mismatched sizes for indices and values a...

This CVE describes an out-of-bounds read vulnerability in TensorFlow's QuantizeAndDequantizeV* operations that could allow attackers to read sensitive...

This vulnerability in TensorFlow allows attackers to trigger an out-of-bounds read in the tf.ragged.cross function, potentially leading to memory disc...

CVE-2021-22469 is an out-of-bounds read vulnerability in HarmonyOS kernel components that allows local attackers to read kernel memory beyond allocate...

This macOS vulnerability allows local users to read kernel memory or cause system crashes through an out-of-bounds read. It affects macOS systems prio...

This vulnerability allows attackers to read memory outside intended boundaries when processing malicious AppleScript binary files. It affects macOS sy...

CVE-2021-30876 is an out-of-bounds read vulnerability in AppleScript binary processing on macOS. Attackers can craft malicious AppleScript binaries to...

CVE-2021-35940 is an out-of-bounds read vulnerability in Apache Portable Runtime (APR) 1.7.x branch that allows reading memory beyond allocated array ...

A buffer overflow vulnerability in VLC Media Player's subtitle parsing component allows attackers to trigger out-of-bounds memory reads via specially ...

This vulnerability in LibreSSL allows attackers to read beyond allocated heap memory boundaries when processing ASN.1 data structures. It affects syst...

This vulnerability allows a malicious program already running on a Windows system to send specially crafted WM_COPYDATA messages to Firefox, causing a...

This vulnerability allows attackers to cause denial-of-service or read sensitive memory information by exploiting an out-of-bounds read issue in the D...

This vulnerability in Drawings SDK allows attackers to read sensitive information from memory or cause denial-of-service by exploiting improper valida...

This vulnerability allows out-of-bounds memory access in Qualcomm Snapdragon chipsets when processing negative width values from external components. ...

This is an out-of-bounds read vulnerability in dmg2img versions through 20170502. An attacker can trigger a buffer overflow by providing a specially c...

CVE-2021-3548 is a buffer overflow vulnerability in dmg2img versions through 20170502 where improper validation of read buffer size during memcpy() ca...

CVE-2020-24119 is a heap buffer overflow vulnerability in UPX 4.0.0's ELF file parser that allows reading beyond allocated memory boundaries. This aff...

CVE-2020-23921 is a heap-based buffer over-read vulnerability in fast_ber's ASN.1 compiler. This allows attackers to read memory beyond allocated buff...

CVE-2020-23928 is a heap-based buffer over-read vulnerability in GPAC's abst_box_read function that allows reading beyond allocated memory boundaries....

CVE-2020-23931 is a heap-based buffer over-read vulnerability in GPAC's abst_box_read function that allows reading beyond allocated memory boundaries....

CVE-2020-27936 is an out-of-bounds read vulnerability in macOS kernel memory that allows local users to read kernel memory or cause system crashes. Th...

CVE-2021-21072 is an out-of-bounds read vulnerability in Adobe Animate that allows an attacker to read sensitive memory contents. Users who open malic...

Adobe Animate versions 21.0.3 and earlier contain an out-of-bounds read vulnerability that could allow attackers to access sensitive information from ...

Adobe Animate versions 21.0.3 and earlier contain an out-of-bounds read vulnerability that could allow an attacker to read sensitive memory contents. ...

CVE-2021-27364 is a Linux kernel vulnerability in the iSCSI subsystem that allows unprivileged local users to cause a denial of service or potentially...

CVE-2021-26926 is an out-of-bounds read vulnerability in Jasper's jp2_decode function that could allow attackers to read sensitive memory contents or ...

This is an out-of-bounds read vulnerability in certain Huawei smartphones where a module fails to properly validate input. Attackers can exploit this ...

This vulnerability in Pillow's PCX file decoder allows attackers to read beyond allocated memory buffers when processing malicious PCX files. It affec...

CVE-2020-9779 is an out-of-bounds read vulnerability in macOS kernel memory handling that allows a local user to read kernel memory or cause system cr...

This vulnerability in DPDK allows an attacker in a virtual machine to read significant amounts of host memory due to a buffer over-read. The flaw exis...

CVE-2020-24344 is a buffer over-read vulnerability in JerryScript's JavaScript engine affecting versions through 2.3.0. This allows reading memory bey...

This vulnerability in ImageMagick allows attackers to read heap memory beyond allocated buffers when processing specially crafted TIFF images. It affe...

This vulnerability allows an attacker to read memory outside the intended buffer in the fingerprint application on Qualcomm Snapdragon chipsets. It af...

This vulnerability affects Huawei Honor V10 smartphones where certain driver programs fail to properly validate parameters, leading to out-of-bounds r...

This vulnerability in Huawei Honor V10 smartphones allows out-of-bounds read in a driver program due to insufficient parameter validation. Successful ...