CWE-125: Out-of-bounds Read

This vulnerability allows an attacker to trigger an out-of-bounds read in USBX's audio host class implementation when parsing malicious USB descriptor...

This vulnerability allows an attacker to read memory beyond the intended buffer boundaries when parsing USB audio streaming device descriptors. It aff...

This vulnerability allows an attacker to trigger an out-of-bounds read in USBX's audio device parsing function when a malicious USB audio device is co...

An out-of-bounds read vulnerability in Intel PROSet/Wireless WiFi Software for Windows could allow an unauthenticated attacker on the same network to ...

An out-of-bounds read vulnerability in HPE ProLiant RL300 Gen11 Server UEFI firmware could allow attackers to read sensitive memory contents. This aff...

This CVE describes an out-of-bounds read vulnerability in the Linux kernel's ACPI NFIT driver. Attackers could exploit this to read kernel memory, pot...

A heap over-read vulnerability exists in Samsung Exynos mobile processors due to missing input validation in the slsi_send_action_frame_cert() functio...

This vulnerability in Samsung Exynos mobile processors allows attackers to read heap memory beyond allocated boundaries through a missing input valida...

This vulnerability in Samsung Exynos mobile processors allows attackers to read heap memory beyond allocated boundaries due to missing input validatio...

This vulnerability in QEMU's VMWare paravirtual RDMA device allows a malicious guest VM driver to allocate excessive page tables, potentially causing ...

This vulnerability in Fast DDS allows remote attackers to cause a denial of service by triggering an out-of-memory condition through specially crafted...

OpenSSL HTTP client API functions have an out-of-bounds read vulnerability when processing IPv6 addresses in URLs with the 'no_proxy' environment vari...

This CVE describes an out-of-bounds read vulnerability in multiple Canon printer drivers. Attackers could exploit this to read sensitive memory conten...

CVE-2025-23333 is an out-of-bounds read vulnerability in NVIDIA Triton Inference Server's Python backend that allows attackers to read memory beyond a...

CVE-2025-23334 is an out-of-bounds read vulnerability in NVIDIA Triton Inference Server's Python backend that could allow information disclosure. Atta...

This vulnerability in Athonet vEPC MME allows attackers to cause a denial of service to cellular networks by exploiting improper memory handling in E-...

This vulnerability allows attackers to cause a denial of service in Athonet vEPC MME cellular network equipment by sending specially crafted E-RAB Mod...

CVE-2024-24457 is an out-of-bounds read vulnerability in Athonet vEPC MME software that allows attackers to cause denial of service to cellular networ...

This vulnerability allows attackers to cause a denial of service to cellular networks by exploiting an invalid memory access in Athonet vEPC MME when ...

A memory disclosure vulnerability in PHP's MySQL client allows a malicious MySQL server to read heap memory from the client. This could expose sensiti...

This vulnerability in the Linux kernel's ksmbd module allows attackers to read past allocated buffer boundaries when processing SMB2 requests with tra...

The NVIDIA nvJPEG library contains an out-of-bounds read vulnerability when processing specially crafted JPEG files. This could allow attackers to rea...

An integer overflow vulnerability in Windows Hyper-V allows authenticated attackers on adjacent networks to potentially read sensitive memory contents...

An integer underflow vulnerability in the Windows Kernel allows attackers on adjacent networks to read kernel memory and potentially disclose sensitiv...

CVE-2017-13317 is an out-of-bounds read vulnerability in Android's HEIF image decoder that could allow remote attackers to read sensitive memory infor...

CVE-2024-32607 is a memory corruption vulnerability in the HDF5 library that can cause a segmentation fault (SEGV) when closing attributes, potentiall...

This vulnerability in BlueZ's AVRCP protocol allows network-adjacent attackers to read sensitive information from memory via Bluetooth when a user con...

This vulnerability in BlueZ's AVRCP protocol allows attackers to read memory beyond allocated buffers via Bluetooth, potentially disclosing sensitive ...

This vulnerability in the Versionize crate allows out-of-bounds memory accesses during deserialization of FamStructWrapper data structures. It affects...

An out-of-bounds read vulnerability in Intel QAT Windows software before version 2.6.0 allows authenticated local attackers to cause denial of service...

This vulnerability is an out-of-bounds read in Intel TDX module software that could allow an authenticated attacker with local access to read sensitiv...

Adobe Illustrator versions 29.8.4, 30.1 and earlier contain an out-of-bounds read vulnerability that could allow attackers to access sensitive informa...

Substance3D Painter versions 11.1.2 and earlier contain an out-of-bounds read vulnerability that could allow memory exposure. Attackers could potentia...

A segmentation fault vulnerability in iccDEV's CIccCalculatorFunc::ApplySequence() function allows denial of service through invalid pointer reads. Th...

CVE-2026-25180 is an out-of-bounds read vulnerability in Microsoft Graphics Component that allows local attackers to read memory beyond allocated buff...

CVE-2026-24282 is an out-of-bounds read vulnerability in the Push Message Routing Service that allows an authorized attacker to read memory beyond all...

An out-of-bounds read vulnerability in QNAP Media Streaming add-on allows attackers with local network access to read sensitive memory contents. This ...

Substance3D Modeler versions 1.22.5 and earlier contain an out-of-bounds read vulnerability that could allow memory exposure. An attacker could exploi...

Substance3D Designer versions 15.1.0 and earlier contain an out-of-bounds read vulnerability that could allow memory exposure. Attackers could exploit...

Substance3D Designer versions 15.1.0 and earlier contain an out-of-bounds read vulnerability that could allow memory exposure. An attacker could explo...

CVE-2026-21337 is an out-of-bounds read vulnerability in Substance3D Designer that could allow memory exposure when processing malicious files. Attack...

Adobe Audition versions 25.3 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive information from mem...

This vulnerability allows an unauthorized attacker to read memory outside the intended buffer in Microsoft Excel, potentially exposing sensitive infor...

A heap out-of-bounds read vulnerability in SumatraPDF's MOBI HuffDic decompressor allows reading beyond allocated memory bounds when processing malici...

This vulnerability allows attackers to read sensitive memory contents by tricking users into opening malicious Keynote files. It affects macOS, iOS, i...

SumatraPDF contains an off-by-one error when processing specially crafted Mobi files, causing an integer underflow that leads to an out-of-bounds heap...

Substance3D Designer versions 15.0.3 and earlier contain an out-of-bounds read vulnerability that could allow memory disclosure. Attackers could explo...

Adobe InDesign versions 21.0, 19.5.5 and earlier contain an out-of-bounds read vulnerability that could allow attackers to access sensitive informatio...

This vulnerability allows an authorized attacker to perform an out-of-bounds read in the Capability Access Management Service (camsvc), potentially di...

This vulnerability is an out-of-bounds read in Windows TPM (Trusted Platform Module) that allows an authorized attacker to read memory beyond allocate...