CWE-787: Out-of-bounds Write

CVE-2019-8712 is a critical memory corruption vulnerability in Apple operating systems that allows an application to execute arbitrary code with syste...

CVE-2019-8716 is a critical memory corruption vulnerability in macOS that allows an application to execute arbitrary code with system privileges. This...

This vulnerability allows remote attackers to execute arbitrary code on affected HPE Intelligent Management Center (iMC) systems via a stack-based buf...

CVE-2019-19513 is an out-of-bounds write vulnerability in the BASSMIDI plugin for Un4seen BASS Audio Library on Windows. Successful exploitation allow...

A stack overflow vulnerability in WhatsApp's RTP Extension header parsing allows remote attackers to execute arbitrary code on affected devices. This ...

This vulnerability allows remote attackers to execute arbitrary code or cause denial of service through memory corruption in MPD's L2TP implementation...

CVE-2020-26537 is a critical memory corruption vulnerability in Foxit Reader and PhantomPDF that allows attackers to execute arbitrary code by exploit...

CVE-2020-13995 is a critical buffer overflow vulnerability in the U.S. Air Force Sensor Data Management System's extract75 component that allows remot...

This critical Bluetooth vulnerability in Android 11 allows attackers to execute arbitrary code remotely without user interaction. It affects all Andro...

CVE-2020-25489 is a heap overflow vulnerability in Sqreen PyMiniRacer that allows remote attackers to potentially exploit heap corruption. This could ...

This CVE describes an out-of-bounds write vulnerability in Android System-on-Chip (SoC) components due to incorrect bounds checking. It allows attacke...

CVE-2020-0278 is an out-of-bounds write vulnerability in Android System-on-Chip (SoC) components that could allow attackers to execute arbitrary code ...

This vulnerability allows remote attackers to execute arbitrary code on affected Android devices without user interaction. It affects Android versions...

CVE-2020-14315 is a critical memory corruption vulnerability in bspatch (part of bsdiff tools) that allows attackers to write outside allocated buffer...

CVE-2020-25412 is a critical out-of-bounds write vulnerability in gnuplot's com_line() function that allows arbitrary code execution via specially cra...

This critical vulnerability in Samsung's Quram image codec library allows attackers to execute arbitrary code by sending specially crafted JPEG images...

This vulnerability in WhatsApp allows attackers to trigger an out-of-bounds write via a user-controlled parameter during video calls. Successful explo...

This vulnerability in Samsung mobile devices with Exynos9830 chipsets allows attackers to execute arbitrary code or cause denial of service through me...

CVE-2020-14934 is a critical buffer overflow vulnerability in Contiki-NG's SNMP agent that allows remote attackers to write arbitrary data beyond allo...

A critical buffer overflow vulnerability in Contiki-NG's SNMP agent allows remote attackers to overwrite memory regions beyond allocated buffers by se...

A memory corruption vulnerability in Windows Server DHCP service allows remote unauthenticated attackers to send specially crafted packets that could ...

This is a critical memory corruption vulnerability in Windows DHCP client that allows remote code execution. An attacker can exploit it by sending spe...

CVE-2018-1160 is a critical vulnerability in Netatalk that allows remote unauthenticated attackers to execute arbitrary code due to an out-of-bounds w...

This vulnerability in Chrome's V8 JavaScript engine allows an attacker to escape the browser sandbox via a malicious HTML page. All users running affe...

This vulnerability allows memory corruption through insufficient checks in graphics shared memory processing, potentially enabling sandbox escape. It ...

This vulnerability in Chrome's V8 JavaScript engine allows out-of-bounds memory access that could enable sandbox escape. Attackers could potentially e...

This vulnerability allows a remote attacker who has already compromised Chrome's GPU process to perform a sandbox escape via specific UI gestures, pot...

This vulnerability is a heap buffer overflow in Chrome's Blink rendering engine that allows a remote attacker to potentially escape the browser sandbo...

This CVE describes a critical stack-based buffer overflow vulnerability in multiple NETGEAR router models that allows unauthenticated remote attackers...

This vulnerability allows a remote attacker who has already compromised a Chrome WebUI renderer process to exploit a heap buffer overflow in ChromeOS ...

CVE-2021-37981 is a heap buffer overflow vulnerability in Chrome's Skia graphics engine that allows an attacker who has already compromised the render...

This vulnerability is a heap buffer overflow in Chrome's Tab Strip component that allows an attacker who has already compromised the renderer process ...

This vulnerability is a heap buffer overflow in Google Chrome's UI component that allows a remote attacker who has already compromised the renderer pr...

This vulnerability is a heap buffer overflow in the UI component of Google Chrome on Android. It allows a remote attacker who has already compromised ...

This CVE describes a heap buffer overflow vulnerability in the Freetype font rendering library used by Google Chrome. A remote attacker could exploit ...

This vulnerability in Zephyr RTOS's DNS resolver allows an out-of-bounds write when processing malicious DNS responses. Attackers can exploit this to ...

This CVE describes an out-of-bounds write vulnerability in multiple Canon printer drivers that could allow an attacker to execute arbitrary code with ...

This CVE describes a privilege escalation vulnerability in MediaTek wlan STA drivers where missing bounds checks allow local attackers to gain elevate...

A heap-overflow vulnerability in VMware's PVSCSI controller allows local administrative users within a virtual machine to execute code on the host sys...

This CVE describes an integer-overflow vulnerability in VMware's VMXNET3 virtual network adapter that allows a malicious actor with local administrati...

This vulnerability allows memory corruption in the RPM region due to improper XPU configuration in Qualcomm Snapdragon chipsets. It affects devices us...

A critical vulnerability in multiple Samsung Exynos processors allows attackers to execute arbitrary code or cause denial of service via malformed NAS...

This vulnerability in Delta Electronics DVP-12SE11T PLC modules allows attackers to write data beyond allocated memory boundaries, potentially leading...

CVE-2025-23097 is a critical memory corruption vulnerability in Samsung's Exynos 1380 mobile processor where missing length validation allows attacker...

A memory corruption vulnerability in Samsung Exynos 1480 and 2400 mobile processors allows attackers to write data beyond allocated memory boundaries....

This vulnerability in Vyper smart contract language allows out-of-bounds array access when using augmented assignment operators on dynamic arrays. Att...

This CVE describes an out-of-bounds write vulnerability in Apple operating systems that could allow an attacker to cause system crashes or corrupt ker...

This vulnerability in the Linux kernel's DRM scheduler could allow data corruption when GPU jobs are terminated prematurely. It affects systems using ...

A stack overflow vulnerability in the NFC module allows attackers to execute arbitrary code or cause denial of service. This affects Huawei devices ru...

Tenda AX1806 routers running firmware V1.0.0.1 contain a stack overflow vulnerability in the wireless repeater configuration function. This allows rem...