CWE-787: Out-of-bounds Write

CVE-2020-28022 is a critical heap-based buffer overflow vulnerability in Exim mail servers that allows remote attackers to execute arbitrary code by s...

CVE-2020-28024 is a critical buffer underwrite vulnerability in Exim mail servers that allows unauthenticated remote attackers to execute arbitrary co...

CVE-2019-25042 is an out-of-bounds write vulnerability in Unbound DNS resolver versions before 1.9.5, triggered by specially crafted compressed DNS na...

This vulnerability in retdec v3.3 allows attackers to trigger a heap buffer overflow via an out-of-bounds read in the canSplitFunctionOn() function. S...

This vulnerability allows remote code execution via malicious NFC packets without requiring user interaction or additional privileges. An out-of-bound...

CVE-2021-29998 is a heap overflow vulnerability in the DHCP client of Wind River VxWorks operating system. This allows remote attackers to execute arb...

CVE-2021-26709 is a critical stack-based buffer overflow vulnerability in D-Link DSL-320B-D1 routers that allows unauthenticated remote attackers to e...

This vulnerability allows remote code execution via WhatsApp voice calls due to a missing bounds check in the audio decoding pipeline. An attacker cou...

This vulnerability allows unauthenticated attackers to execute arbitrary code on D-Link DIR-878 routers via a stack-based buffer overflow in the prog....

CVE-2021-1796 is a critical out-of-bounds write vulnerability in iOS and iPadOS that allows remote attackers to execute arbitrary code on affected dev...

CVE-2021-27804 is a critical memory corruption vulnerability in JPEG XL image processing library versions through 0.3.2. It allows attackers to execut...

A heap buffer overflow vulnerability in BMP image processing within ONLYOFFICE DocumentServer allows remote code execution. Attackers can exploit this...

This vulnerability allows remote attackers to execute arbitrary code on affected devices by exploiting a buffer overflow in MKV video file processing....

ActivePresenter 6.1.6 contains a memory corruption vulnerability (CWE-787) that allows attackers to crash the application or execute arbitrary code by...

CVE-2021-25689 is a critical out-of-bounds write vulnerability in Teradici PCoIP soft client that allows remote code execution. Attackers can exploit ...

This vulnerability allows attackers to start a telnet daemon with root privileges on FiberHome HG6245D devices by using specific CLI commands. This en...

CVE-2020-36244 is a critical heap-based buffer overflow vulnerability in GENIVI diagnostic log and trace (DLT) daemon that allows remote attackers to ...

This vulnerability in the calamine Rust crate allows attackers to write arbitrary data to uninitialized heap memory locations, potentially leading to ...

CVE-2021-25139 is a critical stack-based buffer overflow vulnerability in HPE Moonshot Provisioning Manager v1.20 that allows unauthenticated remote a...

This vulnerability allows unauthenticated remote attackers to execute arbitrary code on affected Accfly wireless security cameras via a stack-based bu...

CVE-2020-25784 is an unauthenticated stack-based buffer overflow vulnerability in Accfly Wireless Security IR Camera System 720P. Attackers can remote...

A heap-based buffer overflow vulnerability in the smallvec Rust crate allows attackers to write beyond allocated memory boundaries when using the inse...

This vulnerability is a heap buffer overflow in the custom HTTP parser of the AgentUpdater service in Rostelecom CS-C2SHW IP cameras. It allows remote...

CVE-2020-11140 is a critical memory corruption vulnerability in Qualcomm Snapdragon chipsets that allows out-of-bounds memory access during ALAC (Appl...

CVE-2020-9144 is a critical heap overflow vulnerability in certain Huawei smartphones that allows attackers to execute arbitrary code by exploiting im...

This vulnerability allows remote code execution via Bluetooth without user interaction. An attacker can exploit a missing bounds check in Android's Bl...

CVE-2020-24027 is a critical buffer overflow vulnerability in liblivemedia's RTSP server component. When processing a specially crafted RTSP PLAY comm...

This vulnerability in wolfSSL's RSA-PSS padding implementation allows an out-of-bounds write when processing certain cryptographic operations. Attacke...

CVE-2020-35895 is a memory corruption vulnerability in the Rust stack crate's ArrayVec implementation that allows out-of-bounds writes during element ...

This vulnerability in the prost Rust crate allows attackers to cause stack exhaustion via specially crafted messages, leading to denial of service. In...

CVE-2020-14224 is a critical stack buffer overflow vulnerability in HCL Notes v9 client's MIME message handling. An unauthenticated remote attacker co...

An unauthenticated stack-based buffer overflow vulnerability in uftpd FTP server allows remote attackers to crash the service and potentially execute ...

CVE-2020-0456 is a critical out-of-bounds write vulnerability in Android System-on-Chip (SoC) components that could allow attackers to execute arbitra...

CVE-2020-0455 is a critical out-of-bounds write vulnerability in Android System-on-Chip (SoC) components that could allow attackers to execute arbitra...

A stack buffer overflow vulnerability in HCL Notes client MIME message handling allows unauthenticated remote attackers to crash the client or execute...

CVE-2020-25111 is a critical vulnerability in Contiki's IPv6 stack where insufficient validation of IPv6 header length allows attackers to cause denia...

This vulnerability in picoTCP's DNS implementation allows attackers to send specially crafted DNS responses that trigger out-of-bounds writes, potenti...

This vulnerability in uIP 1.0 allows attackers to write beyond allocated memory buffers by sending specially crafted fragmented IP packets. This can c...

CVE-2020-13556 is a critical out-of-bounds write vulnerability in the OpENer Ethernet/IP server that allows remote code execution via specially crafte...

A heap buffer overflow vulnerability in the Moddable SDK's JavaScript engine allows attackers to execute arbitrary code or cause denial of service. Th...

This CVE describes a critical stack-based buffer overflow vulnerability in Edimax IP cameras that allows unauthenticated remote attackers to execute a...

A stack-based buffer overflow vulnerability in the fbwifi_continue.cgi component of Zyxel UTM and VPN gateways allows remote unauthenticated attackers...

CVE-2020-28578 is a critical remote code execution vulnerability in Trend Micro InterScan Web Security Virtual Appliance that allows unauthenticated a...

This vulnerability allows an unauthenticated attacker to write data outside intended memory boundaries in the IPv6 subsystem of Intel Active Managemen...

CVE-2020-0445 is a critical out-of-bounds write vulnerability in Android System-on-Chip (SoC) components that could allow attackers to execute arbitra...

CVE-2020-0447 is a critical out-of-bounds write vulnerability in Android System-on-Chip (SoC) components that could allow attackers to execute arbitra...

This vulnerability allows remote attackers to execute arbitrary code on affected Qualcomm Snapdragon devices by exploiting an out-of-bounds memory acc...

This CVE describes multiple stack buffer overflow vulnerabilities in Western Digital My Cloud devices that allow remote attackers to execute arbitrary...

CVE-2019-8767 is a critical heap corruption vulnerability in macOS that allows attackers to execute arbitrary code or cause denial of service by proce...

CVE-2019-8756 is a critical memory corruption vulnerability in libxml2 affecting multiple Apple products. It allows attackers to execute arbitrary cod...