CWE-787: Out-of-bounds Write

CVE-2020-18494 is a buffer overflow vulnerability in HDF5 library's H5S_close function that allows remote attackers to execute arbitrary code by trick...

CVE-2020-18232 is a buffer overflow vulnerability in the HDF5 library's H5S_close function that allows remote attackers to execute arbitrary code by t...

This heap buffer overflow vulnerability in Google Chrome's Mojom IDL allows a remote attacker who has already compromised the renderer process to pote...

This vulnerability is a heap buffer overflow in ANGLE (Almost Native Graphics Layer Engine) component of Google Chrome that allows remote attackers to...

This vulnerability allows remote attackers to exploit heap corruption in Chrome's V8 JavaScript engine through out-of-bounds memory access. Attackers ...

CVE-2023-40295 is a heap-based buffer overflow vulnerability in libboron's ur_strInitUtf8 function that allows attackers to execute arbitrary code or ...

This vulnerability allows out-of-bounds memory access in Chrome's Mojo IPC system, enabling a remote attacker who has compromised the renderer process...

This vulnerability is a heap buffer overflow in Chrome's PrintPreview feature that allows attackers to potentially exploit heap corruption. Attackers ...

This vulnerability allows a remote attacker to exploit heap corruption through out-of-bounds read/write in ANGLE (Almost Native Graphics Layer Engine)...

Rockwell Automation PowerMonitor 1000 has stored cross-site scripting vulnerabilities in publicly accessible web pages. Attackers can inject malicious...

This CVE describes memory safety bugs in Firefox, Firefox ESR, and Thunderbird that could lead to memory corruption. With sufficient effort, attackers...

This vulnerability in HP LaserJet Pro printers allows remote attackers to execute arbitrary code via a stack-based buffer overflow in the compact font...

LibreDWG versions 0.10 through 0.12.5 contain a heap buffer overflow vulnerability in the bit_utf8_to_TU function. This allows attackers to execute ar...

CVE-2023-36274 is a heap buffer overflow vulnerability in LibreDWG's bit_write_TF function that allows attackers to execute arbitrary code or cause de...

CVE-2023-28176 is a memory safety vulnerability in Mozilla Firefox, Firefox ESR, and Thunderbird that could allow memory corruption. With sufficient e...

CVE-2023-25745 is a memory safety vulnerability in Firefox that could allow memory corruption and potentially arbitrary code execution. It affects Fir...

This CVE describes memory safety bugs in Firefox and Thunderbird that could lead to memory corruption. With sufficient effort, attackers could potenti...

This vulnerability allows remote attackers to execute arbitrary code or cause heap corruption in Google Chrome by tricking users into visiting a malic...

This vulnerability in Jenkins Pipeline Utility Steps Plugin allows attackers who can provide crafted archive files as parameters to write arbitrary fi...

CVE-2022-47387 is a stack-based out-of-bounds write vulnerability in the CmpTraceMgr component of CODESYS industrial automation software. Authenticate...

This vulnerability allows authenticated remote attackers to exploit a stack-based out-of-bounds write in the CmpTraceMgr component of CODESYS products...

CVE-2022-47379 is an out-of-bounds write vulnerability in multiple CODESYS industrial automation products that allows authenticated remote attackers t...

This vulnerability allows authenticated remote attackers to exploit a stack-based out-of-bounds write in multiple CODESYS products, potentially leadin...

An authenticated remote attacker can exploit a stack-based out-of-bounds write vulnerability in the CmpTraceMgr component of CODESYS products to cause...

An authenticated remote attacker can exploit a stack-based out-of-bounds write vulnerability in the CmpAppForce component of CODESYS products to cause...

This vulnerability allows a remote attacker to trigger an out-of-bounds write in ChromeOS Audio Server by crafting a malicious audio file, potentially...

CVE-2023-31568 is a heap buffer overflow vulnerability in PoDoFo's RC4 encryption implementation that allows attackers to execute arbitrary code or ca...

CVE-2023-31976 is a stack buffer overflow vulnerability in libming v0.4.8's makeswf_preprocess function that allows attackers to execute arbitrary cod...

CVE-2022-32885 is a memory corruption vulnerability in Apple's WebKit browser engine that allows arbitrary code execution when processing malicious we...

CVE-2023-29578 is a heap buffer overflow vulnerability in mp4v2 library's MP4StringProperty destructor that allows attackers to execute arbitrary code...

This CVE describes a critical out-of-bounds write vulnerability in Android's NFC implementation that allows remote code execution without user interac...

This vulnerability allows remote attackers to exploit heap corruption in Google Chrome via a crafted HTML page. It affects Chrome users on any operati...

CVE-2021-45464 is an out-of-bounds write vulnerability in kvmtool's virtio balloon and PCI components that allows a guest OS user to execute arbitrary...

CVE-2023-29584 is a heap buffer overflow vulnerability in mp4v2 library's MP4GetVideoProfileLevel function. Attackers can exploit this to execute arbi...

This vulnerability allows attackers to write to arbitrary memory addresses in System Management Mode (SMM) by providing malformed pointers to SMI hand...

This vulnerability allows attackers to exploit insufficient input validation in BIOS Guard updates within InsydeH2O firmware, leading to memory corrup...

CVE-2023-29421 is an out-of-bounds write vulnerability in bzip3's libbzip3.a library that allows attackers to corrupt memory and potentially execute a...

This vulnerability is a heap buffer overflow in Google Chrome's Visuals component that allows a remote attacker who has already compromised the render...

This vulnerability allows a remote attacker to perform out-of-bounds memory access in Chrome's DOM Bindings by tricking a user into visiting a malicio...

A heap buffer overflow vulnerability in Google Chrome's browser history feature allows remote attackers to potentially exploit heap corruption. Attack...

CVE-2023-27042 is a buffer overflow vulnerability in Tenda AX3 routers that allows remote attackers to execute arbitrary code or cause denial of servi...

This vulnerability allows authenticated attackers to trigger a stack-based buffer overflow in GFI Kerio Connect's webmail component by sending special...

CVE-2023-27103 is a heap buffer overflow vulnerability in Libde265 v1.0.11's derive_collocated_motion_vectors function that allows attackers to execut...

This vulnerability is a heap buffer overflow in Chrome's UMA (User Metrics Analysis) component that allows a remote attacker who has already compromis...

This vulnerability is a heap buffer overflow in Chrome's Web Audio API that allows remote attackers to potentially exploit heap corruption via malicio...

A heap buffer overflow vulnerability in Google Chrome's video processing component allows remote attackers to potentially execute arbitrary code or ca...

This vulnerability allows remote attackers to execute arbitrary code on D-Link DIR-605L routers via a stack overflow in the webpage parameter. Attacke...

This vulnerability allows remote attackers to execute arbitrary code on D-Link N300 Wi-Fi Router DIR-605L devices via a stack overflow in the curTime ...

This vulnerability allows remote attackers to execute arbitrary code on D-Link N300 Wi-Fi Router DIR-605L devices via a stack overflow in the curTime ...

This vulnerability is a heap buffer overflow in Chrome's WebUI that allows remote attackers to potentially exploit heap corruption by convincing users...