CWE-125: Out-of-bounds Read

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious LI files or visiting malicious web pages...

Substance3D Stager versions 3.1.3 and earlier contain an out-of-bounds read vulnerability when parsing malicious files. This could allow an attacker t...

Substance3D Modeler versions 1.22.2 and earlier contain an out-of-bounds read vulnerability when parsing malicious files. This could allow an attacker...

An out-of-bounds read vulnerability in Microsoft Office Excel allows attackers to execute arbitrary code on affected systems by tricking users into op...

This vulnerability allows an attacker to execute arbitrary code on a victim's system by exploiting an out-of-bounds read in Microsoft Excel. Attackers...

This vulnerability in Foxit PDF Reader allows remote attackers to execute arbitrary code by tricking users into opening malicious PRC files. The flaw ...

This vulnerability in Foxit PDF Reader allows remote attackers to execute arbitrary code by tricking users into opening malicious PRC files. The flaw ...

This vulnerability allows attackers to execute arbitrary code by exploiting an out-of-bounds read when parsing AR files in Ashlar-Vellum CAD software....

This vulnerability allows attackers to exploit an out-of-bounds read in Autodesk AutoCAD when processing malicious DGN files. Attackers could crash th...

CVE-2025-6635 is an out-of-bounds read vulnerability in certain Autodesk products that allows attackers to crash applications, read sensitive memory, ...

This vulnerability in the Linux kernel's virtio-net driver allows an out-of-bound read when processing XDP (eXpress Data Path) packets. Attackers coul...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious DXF files with IrfanView's CADImage plug...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious DWG files with IrfanView's CADImage plug...

This vulnerability in IrfanView's CADImage plugin allows remote attackers to execute arbitrary code when users open malicious DWG files. Attackers can...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious DXF files with IrfanView's CADImage plug...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious DXF files with IrfanView's CADImage plug...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious DWG files with IrfanView's CADImage plug...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious CGM files with IrfanView's CADImage plug...

This vulnerability allows remote attackers to execute arbitrary code on systems running vulnerable versions of IrfanView with the CADImage plugin. Att...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious DWG files with IrfanView's CADImage plug...

This vulnerability allows remote attackers to execute arbitrary code on systems running vulnerable versions of IrfanView with the CADImage plugin. Att...

An out-of-bounds read vulnerability in SOLIDWORKS eDrawings 2025 allows attackers to execute arbitrary code by tricking users into opening malicious J...

An integer overflow vulnerability in Virtual Hard Disk (VHDX) handling allows local attackers to escalate privileges on affected systems. This affects...

An integer overflow vulnerability in the HID class driver allows authenticated attackers to execute arbitrary code with elevated privileges on affecte...

An integer underflow vulnerability in the Windows MBT Transport driver allows authenticated attackers to execute arbitrary code with elevated SYSTEM p...

This vulnerability in Solid Edge SE2025 allows attackers to execute arbitrary code by exploiting an out-of-bounds read when parsing malicious PAR file...

This vulnerability in PDF-XChange Editor allows remote attackers to execute arbitrary code by tricking users into opening malicious U3D files or visit...

Fuji Electric Smart Editor contains an out-of-bounds read vulnerability (CWE-125) that could allow an attacker to execute arbitrary code on affected s...

CVE-2025-32716 is an out-of-bounds read vulnerability in Windows Media components that allows authenticated attackers to elevate privileges locally. T...

Santesoft Sante DICOM Viewer Pro contains a memory corruption vulnerability (CWE-125) that allows a local attacker to potentially disclose sensitive i...

This vulnerability in V-SFT v6.2.5.0 and earlier allows attackers to trigger an out-of-bounds read when opening specially crafted V7 or V8 files. Succ...

V-SFT v6.2.5.0 and earlier contain an out-of-bounds read vulnerability in the Conv_Macro_Data function. Attackers can exploit this by tricking users i...

A memory corruption vulnerability in NI Circuit Design Suite's SymbolEditor allows attackers to execute arbitrary code or disclose sensitive informati...

This vulnerability allows a malicious guest virtual machine to perform out-of-bounds memory reads within the crosvm sandboxed process on ChromeOS. Att...

This vulnerability is an out-of-bounds read in Windows NTFS that allows a local attacker to read memory they shouldn't access. Attackers can exploit t...

CVE-2025-27728 is an out-of-bounds read vulnerability in Windows Kernel-Mode Drivers that allows authenticated local attackers to read kernel memory a...

This vulnerability is an out-of-bounds read in Windows NTFS that allows a local attacker to read sensitive memory contents and potentially elevate pri...

This vulnerability allows an authorized attacker with local access to exploit an out-of-bounds read in Windows Subsystem for Linux to elevate privileg...

This vulnerability allows memory corruption when a user-space application makes a specific IOCTL call to read board data on Qualcomm chipsets. Attacke...

This vulnerability in Autodesk Navisworks allows attackers to exploit an out-of-bounds read by tricking users into opening a malicious DWFX file, pote...

A buffer overflow vulnerability in macOS allows malicious applications to execute arbitrary code with kernel privileges. This affects macOS Ventura, S...

This vulnerability in PDF-XChange Editor allows remote attackers to execute arbitrary code by tricking users into opening malicious RTF files. The fla...

This CVE describes an out-of-bounds read vulnerability in Autodesk AutoCAD when parsing malicious MODEL files. Attackers can exploit this to crash the...

This vulnerability allows attackers to exploit an out-of-bounds read in Autodesk AutoCAD when processing malicious SLDPRT files. Successful exploitati...

CVE-2025-1433 is an out-of-bounds read vulnerability in Autodesk AutoCAD that allows attackers to craft malicious MODEL files to cause crashes, read s...

This vulnerability allows attackers to craft malicious CATPART files that trigger an out-of-bounds read when opened in Autodesk AutoCAD. Successful ex...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious VS files in Ashlar-Vellum Cobalt softwar...

This vulnerability in Windows Common Log File System Driver involves incorrect numeric type conversion that allows authenticated attackers to escalate...

This vulnerability allows remote code execution through specially crafted WRL files in Siemens Teamcenter Visualization and Tecnomatix Plant Simulatio...

This vulnerability allows remote code execution through specially crafted WRL files in Siemens Teamcenter Visualization and Tecnomatix Plant Simulatio...