CWE-125: Out-of-bounds Read

CVE-2026-24282 is an out-of-bounds read vulnerability in the Push Message Routing Service that allows an authorized attacker to read memory beyond all...

An out-of-bounds read vulnerability in QNAP Media Streaming add-on allows attackers with local network access to read sensitive memory contents. This ...

Substance3D Modeler versions 1.22.5 and earlier contain an out-of-bounds read vulnerability that could allow memory exposure. An attacker could exploi...

Substance3D Designer versions 15.1.0 and earlier contain an out-of-bounds read vulnerability that could allow memory exposure. Attackers could exploit...

Substance3D Designer versions 15.1.0 and earlier contain an out-of-bounds read vulnerability that could allow memory exposure. An attacker could explo...

CVE-2026-21337 is an out-of-bounds read vulnerability in Substance3D Designer that could allow memory exposure when processing malicious files. Attack...

Adobe Audition versions 25.3 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive information from mem...

This vulnerability allows an unauthorized attacker to read memory outside the intended buffer in Microsoft Excel, potentially exposing sensitive infor...

A heap out-of-bounds read vulnerability in SumatraPDF's MOBI HuffDic decompressor allows reading beyond allocated memory bounds when processing malici...

This vulnerability allows attackers to read sensitive memory contents by tricking users into opening malicious Keynote files. It affects macOS, iOS, i...

SumatraPDF contains an off-by-one error when processing specially crafted Mobi files, causing an integer underflow that leads to an out-of-bounds heap...

Substance3D Designer versions 15.0.3 and earlier contain an out-of-bounds read vulnerability that could allow memory disclosure. Attackers could explo...

Adobe InDesign versions 21.0, 19.5.5 and earlier contain an out-of-bounds read vulnerability that could allow attackers to access sensitive informatio...

This vulnerability allows an authorized attacker to perform an out-of-bounds read in the Capability Access Management Service (camsvc), potentially di...

This vulnerability is an out-of-bounds read in Windows TPM (Trusted Platform Module) that allows an authorized attacker to read memory beyond allocate...

This vulnerability in pdfforge PDF Architect allows attackers to read memory beyond allocated bounds when parsing malicious PDF files, potentially dis...

This vulnerability in Soda PDF Desktop allows remote attackers to disclose sensitive information by tricking users into opening malicious PDF files. T...

This vulnerability in Soda PDF Desktop allows attackers to read memory beyond allocated boundaries when parsing malicious PDF files, potentially discl...

This vulnerability allows an attacker to read memory beyond intended boundaries in the baseband firmware's ProtocolPsUnthrottleApn() function. Exploit...

This CVE describes an out-of-bounds read vulnerability in the ProcessArea function of dng_misc_opcodes.cpp within Android's DNG SDK. It allows local i...

Format Plugins versions 1.1.1 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive information from me...

Format Plugins versions 1.1.1 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive information from me...

Format Plugins versions 1.1.1 and earlier contain an out-of-bounds read vulnerability that could allow memory exposure. Attackers could exploit this b...

Format Plugins versions 1.1.1 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive information from me...

Format Plugins versions 1.1.1 and earlier contain an out-of-bounds read vulnerability that could allow attackers to access sensitive memory informatio...

This vulnerability allows an authorized attacker with local access to a Windows Hyper-V host to read memory outside intended boundaries, potentially e...

This vulnerability allows an authorized attacker to read memory outside the intended buffer in Windows Bluetooth RFCOM Protocol Driver, potentially ex...

This CVE describes an out-of-bounds read vulnerability in Apple operating systems that could allow a malicious app to cause a denial-of-service condit...

Adobe Animate versions 23.0.13, 24.0.10 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive informati...

CVE-2025-55695 is an out-of-bounds read vulnerability in Windows WLAN Auto Config Service that allows authenticated local attackers to read memory con...

Substance3D Stager versions 3.1.3 and earlier contain an out-of-bounds read vulnerability that could allow memory exposure when processing malicious f...

This CVE describes an out-of-bounds read vulnerability in macOS that could allow an application to access coprocessor memory. The vulnerability affect...

An out-of-bounds memory access vulnerability in Apple media file processing allows attackers to cause application crashes or corrupt process memory by...

An out-of-bounds read vulnerability in macOS allows applications to access sensitive user data without proper authorization. This affects macOS Sonoma...

CVE-2025-54240 is an out-of-bounds read vulnerability in Adobe After Effects that could expose memory contents and potentially disclose sensitive info...

Adobe After Effects versions 25.3, 24.6.7 and earlier contain an out-of-bounds read vulnerability that could expose memory contents, potentially leaki...

Adobe After Effects versions 25.3, 24.6.7 and earlier contain an out-of-bounds read vulnerability that could allow memory exposure and disclosure of s...

This vulnerability in Foxit PDF Reader allows remote attackers to disclose sensitive information by tricking users into opening malicious JP2 files. T...

Foxit PDF Reader contains an out-of-bounds read vulnerability when parsing PRC files, allowing attackers to disclose sensitive information from affect...

This vulnerability in Foxit PDF Reader allows attackers to read memory beyond allocated bounds when parsing malicious PRC files, potentially disclosin...

CVE-2025-54080 is an out-of-bounds read vulnerability in Exiv2 library versions 0.28.5 and earlier. An attacker can cause denial of service by crashin...

Adobe Dimension versions 4.1.3 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory contents. U...

Adobe InDesign has an out-of-bounds read vulnerability that could allow attackers to read sensitive memory contents by tricking users into opening mal...

Substance3D Modeler versions 1.22.0 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory conten...

This CVE describes an out-of-bounds read vulnerability in Adobe InDesign that could allow attackers to read sensitive memory contents. Affected users ...

Substance3D Modeler versions 1.22.0 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory conten...

Substance3D Modeler versions 1.22.0 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory conten...

Substance3D Sampler versions 5.0.3 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory content...

Substance3D Painter versions 11.0.2 and earlier contain an out-of-bounds read vulnerability that could allow attackers to read sensitive memory conten...

CVE-2025-54197 is an out-of-bounds read vulnerability in Substance3D Modeler that could allow an attacker to read sensitive memory contents. This affe...