CWE-787: Out-of-bounds Write

This CVE describes memory safety bugs in Mozilla Firefox and Thunderbird that could lead to memory corruption. With sufficient effort, attackers could...

Memory safety vulnerabilities in Firefox and Thunderbird versions before 135 could allow attackers to execute arbitrary code through memory corruption...

This critical vulnerability in MediaTek modems allows remote code execution when a device connects to a malicious base station. Attackers can exploit ...

The Contec Health CMS8000 Patient Monitor has a critical vulnerability (CVE-2024-12248) that allows attackers to send specially crafted UDP packets to...

A buffer overflow vulnerability in CPCA font download processing for Canon multifunction printers allows network attackers to crash devices or execute...

A buffer overflow vulnerability in XPS data font processing allows attackers on the same network segment to crash affected Canon printers or execute a...

This vulnerability allows remote attackers to execute arbitrary code on Tenda AC8v4 routers by exploiting a stack overflow in the setSchedWifi functio...

This CVE describes a stack overflow vulnerability in Tenda AC18 routers that allows remote code execution. Attackers can exploit the limitSpeedUp para...

This vulnerability allows remote attackers to execute arbitrary code on Tenda AC18 routers by exploiting a stack overflow in the firewall configuratio...

This vulnerability allows remote attackers to execute arbitrary code on Tenda AC18 routers by exploiting a stack overflow in the WiFi configuration fu...

This critical vulnerability allows unauthenticated attackers to exploit an out-of-bounds write in QNX's PCX image codec, potentially leading to remote...

CVE-2025-0247 is a critical memory safety vulnerability in Firefox and Thunderbird that could allow attackers to execute arbitrary code through memory...

This vulnerability allows remote attackers to execute arbitrary code on affected devices via Wi-Fi without user interaction. It affects MediaTek chips...

This critical vulnerability allows remote attackers to execute arbitrary code on affected Android devices without user interaction. The out-of-bounds ...

This is a critical memory corruption vulnerability in Apple's WebKit browser engine that affects multiple Apple operating systems and Safari. Processi...

This CVE describes an out-of-bounds write vulnerability in GStreamer's MP4 demuxer that allows attackers to write up to 3 bytes beyond allocated memor...

This vulnerability allows remote attackers to execute arbitrary code on affected Android devices without user interaction by exploiting an out-of-boun...

CVE-2018-9418 is a critical stack buffer overflow vulnerability in Android's Bluetooth stack that allows remote code execution without user interactio...

This vulnerability allows attackers to cause an integer overflow in PHP's ldap_escape() function on 32-bit systems by providing long string inputs, le...

This vulnerability allows attackers to cause an integer overflow in PHP's ldap_escape() function on 32-bit systems by providing long string inputs, le...

CVE-2018-9478 is a critical Bluetooth SDP vulnerability in Android that allows remote code execution without user interaction. An attacker can exploit...

Mbed TLS versions 3.5.x through 3.6.x before 3.6.2 contain a buffer underrun vulnerability in the pkwrite function when writing opaque key pairs. This...

A memory corruption vulnerability in the HDF5 library's H5A__close function allows attackers to corrupt the instruction pointer, potentially leading t...

This critical vulnerability in MediaTek Wi-Fi drivers allows remote attackers to execute arbitrary code without authentication or user interaction. It...

This critical vulnerability in MediaTek wlan firmware allows remote attackers to execute arbitrary code without authentication or user interaction. It...

CVE-2024-41593 is a critical heap-based buffer overflow vulnerability in DrayTek Vigor310 devices that allows remote attackers to execute arbitrary co...

This vulnerability allows remote attackers to execute arbitrary code on Tenda AC8v4 routers via a stack overflow in the fromAdvSetMacMtuWan function. ...

CVE-2024-31570 is a critical stack-based buffer overflow vulnerability in libfreeimage's XPM file parser. Attackers can exploit this by crafting malic...

CVE-2024-46046 is a critical stack overflow vulnerability in Tenda FH451 routers that allows remote code execution. Attackers can exploit this by send...

CVE-2024-46044 is a critical stack overflow vulnerability in Tenda CH22 routers that allows remote attackers to execute arbitrary code by sending spec...

CVE-2024-8389 is a critical memory safety vulnerability in Firefox that could allow attackers to execute arbitrary code on affected systems. The vulne...

A critical memory corruption vulnerability in Mozilla's JavaScript garbage collector could allow attackers to execute arbitrary code or cause denial o...

This CVE describes memory safety bugs in Firefox, Firefox ESR, and Thunderbird that could lead to memory corruption. With sufficient effort, attackers...

CVE-2024-45508 is a critical out-of-bounds write vulnerability in HTMLDOC's PDF/PS parsing functionality. Attackers can exploit this to execute arbitr...

This vulnerability allows remote attackers to execute arbitrary code on Tenda AX1806 routers via a stack overflow in the setIptvInfo function. Attacke...

This vulnerability allows remote attackers to execute arbitrary code on Tenda AX1806 routers via a stack overflow in the setIptvInfo function. Attacke...

A buffer overflow vulnerability in TP-Link RE365 V1 routers allows attackers to crash devices or execute arbitrary commands by sending specially craft...

This vulnerability in the Soft AP Daemon Service allows unauthenticated remote attackers to execute arbitrary commands on affected systems, leading to...

CVE-2024-41459 is a critical stack-based buffer overflow vulnerability in Tenda FH1201 routers that allows remote attackers to execute arbitrary code ...

CVE-2024-41461 is a critical stack-based buffer overflow vulnerability in Tenda FH1201 routers that allows remote attackers to execute arbitrary code ...

CVE-2024-40129 is a critical buffer overflow vulnerability in Open5GS v2.6.4's PFCP context handling that allows remote attackers to execute arbitrary...

This CVE describes a critical stack-based buffer overflow vulnerability in Tenda AC18 routers. Attackers can exploit this by sending specially crafted...

A stack-based buffer overflow vulnerability in Tenda AX1806 router firmware allows remote attackers to execute arbitrary code or cause denial of servi...

A stack-based buffer overflow vulnerability in Tenda AX1806 router firmware allows remote attackers to execute arbitrary code or crash the device. Thi...

This vulnerability in Tenda AC8v4 routers allows remote code execution due to a buffer overflow in the set_client_qos function. Attackers can exploit ...

CVE-2024-37079 is a critical heap overflow vulnerability in vCenter Server's DCERPC protocol implementation that allows remote code execution. Attacke...

CVE-2024-38439 is a critical heap-based buffer overflow vulnerability in Netatalk's PAM authentication module. An attacker can exploit this to execute...

CVE-2024-37036 is an out-of-bounds write vulnerability in Schneider Electric products that allows authentication bypass when attackers send malformed ...

CVE-2024-36761 is a critical stack overflow vulnerability in naga v0.14.0's WGSL parser that allows attackers to execute arbitrary code or cause denia...

CVE-2024-32615 is a critical heap-based buffer overflow vulnerability in the HDF5 library's n-bit decompression function. Attackers can exploit this t...