CWE-787: Out-of-bounds Write

CVE-2021-39533 is a heap-based buffer overflow vulnerability in libslax's slaxLexer function that allows attackers to execute arbitrary code or cause ...

CVE-2021-39536 is a heap-based buffer overflow vulnerability in libxsmm's JIT code that allows attackers to execute arbitrary code or cause denial of ...

CVE-2021-32298 is a critical buffer overflow vulnerability in libiff's IFF_errorId function that allows remote code execution. Attackers can exploit t...

CVE-2021-39522 is a heap-based buffer overflow vulnerability in LibreDWG's bit_wcs2len() function. This allows attackers to execute arbitrary code or ...

CVE-2021-39525 is a heap-based buffer overflow vulnerability in libredwg's bit_read_fixed() function. This allows attackers to execute arbitrary code ...

CVE-2021-32294 is a heap buffer overflow vulnerability in libgig's RIFF::List::GetSubList function that allows attackers to execute arbitrary code. Th...

CVE-2020-21548 is a heap-based buffer overflow vulnerability in Libsixel's sixel_encode_highcolor function that allows attackers to execute arbitrary ...

CVE-2020-21598 is a heap buffer overflow vulnerability in libde265 v1.0.4's ff_hevc_put_unweighted_pred_8_sse function that allows remote code executi...

This is a memory corruption vulnerability in Apple's WebKit browser engine that allows arbitrary code execution when processing malicious web content....

This vulnerability allows attackers to execute arbitrary code on affected Apple devices by tricking users into visiting malicious web content. It affe...

This CVE describes memory corruption vulnerabilities in Apple's WebKit browser engine that could allow arbitrary code execution when processing malici...

This is a heap buffer overflow vulnerability in Chromium's TabStrip component that allows attackers to execute arbitrary code or cause denial of servi...

This CVE describes an out-of-bounds write vulnerability in Adobe Acrobat Reader DC's ImageTool component. An unauthenticated attacker can achieve arbi...

CVE-2021-28233 is a heap-based buffer overflow vulnerability in the ok-file-formats library's JPEG parsing functionality. Attackers can exploit this b...

CVE-2021-36530 is a heap buffer overflow vulnerability in ngiflib 0.4's GetByteStr() function when operating in NGIFLIB_NO_FILE mode. This allows atta...

This vulnerability allows an attacker to perform out-of-bounds memory writes in Google Chrome's Tab Groups feature. Attackers can exploit this by conv...

This vulnerability allows remote attackers to execute arbitrary code or cause denial of service via heap corruption in Google Chrome's bookmark handli...

CVE-2021-30851 is a memory corruption vulnerability in Apple's WebKit browser engine that could allow remote code execution when processing malicious ...

This CVE describes an out-of-bounds write vulnerability in Adobe Acrobat Reader DC that allows arbitrary code execution when a user opens a malicious ...

CVE-2021-29990 is a memory corruption vulnerability in Firefox that could allow attackers to execute arbitrary code on affected systems. It affects Fi...

This vulnerability involves a memory corruption flaw in Mozilla's JavaScript engine caused by instruction reordering during garbage collection. Attack...

This CVE describes memory safety bugs in Mozilla's code shared between Firefox and Thunderbird that could lead to memory corruption. With sufficient e...

This vulnerability allows an attacker to perform out-of-bounds memory writes in Google Chrome's Tab Groups feature. By convincing a user to install a ...

This vulnerability allows a remote attacker who has already compromised Chrome's renderer process to perform heap corruption via out-of-bounds write i...

This vulnerability allows remote attackers to trigger a heap buffer overflow in Chrome's WebXR implementation via a crafted HTML page. Attackers could...

CVE-2021-36004 is an out-of-bounds write vulnerability in Adobe InDesign's CoolType library that allows remote code execution when a user opens a mali...

This CVE describes multiple stack-based buffer overflows in WebGate eDVR Manager and Control Center software. Remote attackers can execute arbitrary c...

CVE-2021-3246 is a heap buffer overflow vulnerability in libsndfile's msadpcm_decode_block function that allows attackers to execute arbitrary code by...

This vulnerability in the matio library allows heap-based buffer overflow when processing specially crafted MAT files. Attackers could execute arbitra...

This vulnerability in Android's WideVine DRM component allows remote code execution through out-of-bounds writes when processing malicious media conte...

This CVE describes a stack-based buffer overflow vulnerability in uWebSockets versions 18.11.0 and 18.12.0. The vulnerability occurs in the TopicTree:...

CVE-2021-36082 is a stack-based buffer overflow vulnerability in ntop nDPI's processClientServerHello function. This allows remote attackers to execut...

Adobe InDesign versions 16.0 and earlier contain an out-of-bounds write vulnerability when parsing malicious files. An attacker can achieve remote cod...

CVE-2021-29966 is a memory corruption vulnerability in Firefox that could allow attackers to execute arbitrary code on affected systems. This affects ...

This vulnerability allows remote attackers to execute arbitrary code on Android devices via Bluetooth without user interaction. It affects Android ver...

CVE-2021-26195 is a heap buffer overflow vulnerability in JerryScript's number parsing function that allows attackers to execute arbitrary code or cau...

A memory corruption vulnerability in McAfee GetSusp's driver file component allows local programs to trigger a buffer overflow, potentially executing ...

This vulnerability in Solid Edge's ugeom2d.dll library allows attackers to execute arbitrary code by exploiting improper validation in DFT file parsin...

CVE-2021-23169 is a heap-buffer overflow vulnerability in OpenEXR's copyIntoFrameBuffer function that allows attackers to execute arbitrary code with ...

This vulnerability allows an attacker to perform out-of-bounds memory writes in Google Chrome's TabStrip component by convincing a user to install a m...

This CVE describes a heap buffer overflow vulnerability in Google Chrome's History component that allows a remote attacker who has already compromised...

A heap buffer overflow vulnerability in Chrome's Reader Mode allows remote attackers to potentially exploit heap corruption via a crafted HTML page. T...

This vulnerability is a heap buffer overflow in Google Chrome's Media Feeds feature that allows an attacker to potentially exploit heap corruption. At...

CVE-2020-24870 is a stack buffer overflow vulnerability in LibRaw's DNG file processing that allows remote code execution. Attackers can exploit this ...

This is a heap-based buffer overflow vulnerability in FFmpeg's filter_intra function that could allow attackers to execute arbitrary code or cause den...

CVE-2020-17541 is a stack-based buffer overflow vulnerability in libjpeg-turbo's transform component that allows remote attackers to execute arbitrary...

This heap-based buffer overflow vulnerability in FFmpeg's drawutils.c allows attackers to corrupt memory by sending specially crafted media files. It ...

A heap-based buffer overflow vulnerability in FFmpeg's bitplanenoise filter allows attackers to cause memory corruption by processing specially crafte...

A heap-based buffer overflow vulnerability in FFmpeg's neighbor filter allows attackers to execute arbitrary code or cause denial of service by proces...

A heap-based buffer overflow vulnerability in FFmpeg's floodfill filter allows attackers to execute arbitrary code or cause denial of service by proce...