CWE-787: Out-of-bounds Write

This vulnerability is a heap buffer overflow in Google Chrome extensions that allows an attacker to potentially exploit heap corruption. It affects us...

This vulnerability allows an attacker to write data beyond allocated memory bounds in Android's Vorbis audio codec library. It could lead to remote in...

This vulnerability allows remote attackers to execute arbitrary code on Android devices via Bluetooth without user interaction. It affects Android 12 ...

This vulnerability allows remote attackers to execute arbitrary code on Fortinet FortiWeb web application firewalls via specially crafted HTTP request...

This vulnerability allows authenticated attackers to execute arbitrary code on FortiWeb web application firewalls through stack-based buffer overflows...

This CVE describes memory safety bugs in Mozilla products that could lead to memory corruption. With sufficient effort, attackers could potentially ex...

This vulnerability allows remote authenticated attackers to execute arbitrary code or commands on affected FortiWeb devices via crafted HTTP requests....

CVE-2020-36129 is a stack buffer overflow vulnerability in AOM (AOMedia Video 1) codec library version 2.0.1 that allows attackers to execute arbitrar...

CVE-2020-36131 is a stack buffer overflow vulnerability in AOM (AOMedia Video 1) codec library version 2.0.1, specifically in the stats/rate_hist.c co...

This heap-based buffer overflow vulnerability in BlueZ's bluetoothd service allows attackers to execute arbitrary code or cause denial of service by s...

This CVE describes memory safety bugs in Mozilla Firefox and Thunderbird that could lead to memory corruption. With sufficient effort, attackers could...

This CVE describes memory safety bugs in Mozilla Thunderbird and Firefox ESR that could lead to memory corruption. With sufficient effort, attackers c...

This vulnerability is a heap buffer overflow in WebRTC in Google Chrome that allows remote attackers to potentially exploit heap corruption. Attackers...

This vulnerability allows remote attackers to execute arbitrary code or cause heap corruption in Google Chrome by tricking users into visiting a malic...

CVE-2021-39531 is a stack-based buffer overflow vulnerability in libslax's slaxLexer function that allows attackers to execute arbitrary code or cause...

CVE-2021-39533 is a heap-based buffer overflow vulnerability in libslax's slaxLexer function that allows attackers to execute arbitrary code or cause ...

CVE-2021-39536 is a heap-based buffer overflow vulnerability in libxsmm's JIT code that allows attackers to execute arbitrary code or cause denial of ...

CVE-2021-32298 is a critical buffer overflow vulnerability in libiff's IFF_errorId function that allows remote code execution. Attackers can exploit t...

CVE-2021-39522 is a heap-based buffer overflow vulnerability in LibreDWG's bit_wcs2len() function. This allows attackers to execute arbitrary code or ...

CVE-2021-39525 is a heap-based buffer overflow vulnerability in libredwg's bit_read_fixed() function. This allows attackers to execute arbitrary code ...

CVE-2021-32294 is a heap buffer overflow vulnerability in libgig's RIFF::List::GetSubList function that allows attackers to execute arbitrary code. Th...

CVE-2020-21548 is a heap-based buffer overflow vulnerability in Libsixel's sixel_encode_highcolor function that allows attackers to execute arbitrary ...

CVE-2020-21598 is a heap buffer overflow vulnerability in libde265 v1.0.4's ff_hevc_put_unweighted_pred_8_sse function that allows remote code executi...

This is a memory corruption vulnerability in Apple's WebKit browser engine that allows arbitrary code execution when processing malicious web content....

This vulnerability allows attackers to execute arbitrary code on affected Apple devices by tricking users into visiting malicious web content. It affe...

This CVE describes memory corruption vulnerabilities in Apple's WebKit browser engine that could allow arbitrary code execution when processing malici...

This is a heap buffer overflow vulnerability in Chromium's TabStrip component that allows attackers to execute arbitrary code or cause denial of servi...

This CVE describes an out-of-bounds write vulnerability in Adobe Acrobat Reader DC's ImageTool component. An unauthenticated attacker can achieve arbi...

CVE-2021-28233 is a heap-based buffer overflow vulnerability in the ok-file-formats library's JPEG parsing functionality. Attackers can exploit this b...

CVE-2021-36530 is a heap buffer overflow vulnerability in ngiflib 0.4's GetByteStr() function when operating in NGIFLIB_NO_FILE mode. This allows atta...

This vulnerability allows an attacker to perform out-of-bounds memory writes in Google Chrome's Tab Groups feature. Attackers can exploit this by conv...

This vulnerability allows remote attackers to execute arbitrary code or cause denial of service via heap corruption in Google Chrome's bookmark handli...

CVE-2021-30851 is a memory corruption vulnerability in Apple's WebKit browser engine that could allow remote code execution when processing malicious ...

This CVE describes an out-of-bounds write vulnerability in Adobe Acrobat Reader DC that allows arbitrary code execution when a user opens a malicious ...

CVE-2021-29990 is a memory corruption vulnerability in Firefox that could allow attackers to execute arbitrary code on affected systems. It affects Fi...

This vulnerability involves a memory corruption flaw in Mozilla's JavaScript engine caused by instruction reordering during garbage collection. Attack...

This CVE describes memory safety bugs in Mozilla's code shared between Firefox and Thunderbird that could lead to memory corruption. With sufficient e...

This vulnerability allows an attacker to perform out-of-bounds memory writes in Google Chrome's Tab Groups feature. By convincing a user to install a ...

This vulnerability allows a remote attacker who has already compromised Chrome's renderer process to perform heap corruption via out-of-bounds write i...

This vulnerability allows remote attackers to trigger a heap buffer overflow in Chrome's WebXR implementation via a crafted HTML page. Attackers could...

CVE-2021-36004 is an out-of-bounds write vulnerability in Adobe InDesign's CoolType library that allows remote code execution when a user opens a mali...

This CVE describes multiple stack-based buffer overflows in WebGate eDVR Manager and Control Center software. Remote attackers can execute arbitrary c...

CVE-2021-3246 is a heap buffer overflow vulnerability in libsndfile's msadpcm_decode_block function that allows attackers to execute arbitrary code by...

This vulnerability in the matio library allows heap-based buffer overflow when processing specially crafted MAT files. Attackers could execute arbitra...

This vulnerability in Android's WideVine DRM component allows remote code execution through out-of-bounds writes when processing malicious media conte...

This CVE describes a stack-based buffer overflow vulnerability in uWebSockets versions 18.11.0 and 18.12.0. The vulnerability occurs in the TopicTree:...

CVE-2021-36082 is a stack-based buffer overflow vulnerability in ntop nDPI's processClientServerHello function. This allows remote attackers to execut...

Adobe InDesign versions 16.0 and earlier contain an out-of-bounds write vulnerability when parsing malicious files. An attacker can achieve remote cod...

CVE-2021-29966 is a memory corruption vulnerability in Firefox that could allow attackers to execute arbitrary code on affected systems. This affects ...

This vulnerability allows remote attackers to execute arbitrary code on Android devices via Bluetooth without user interaction. It affects Android ver...