CWE-787: Out-of-bounds Write

This CVE describes an out-of-bounds write vulnerability in Ricoh MFPs and printers that allows remote attackers to send specially crafted requests. Ex...

This vulnerability allows remote attackers to execute arbitrary code in pre-installed applications on OpenHarmony devices through an out-of-bounds wri...

This CVE describes an out-of-bounds write vulnerability in AutomationDirect P3-550E programming software that allows remote attackers to cause heap-ba...

A heap-based buffer overflow vulnerability in AutomationDirect P3-550E programming software allows unauthenticated attackers to send specially crafted...

This vulnerability allows remote attackers to write arbitrary null bytes to heap memory in AutomationDirect P3-550E PLC programming software. Exploita...

CVE-2022-23085 is an integer overflow vulnerability in FreeBSD's netmap subsystem that allows kernel memory corruption. A privileged process within a ...

This vulnerability allows local attackers to execute arbitrary code on affected Samsung devices by exploiting an out-of-bounds write in the mPOS TUI t...

This vulnerability allows attackers to execute arbitrary code on the host system by exploiting a stack-based buffer overflow in VMware's Bluetooth sha...

A buffer overflow vulnerability in Bestechnic Bluetooth Mesh SDK allows attackers to execute arbitrary code during device provisioning by sending spec...

CVE-2022-31364 is a buffer overflow vulnerability in Cypress Bluetooth Mesh SDK that allows remote attackers to execute arbitrary code by sending spec...

This vulnerability allows an attacker to write data beyond the intended memory buffer during Bluetooth mesh provisioning in Zephyr, potentially leadin...

This vulnerability allows attackers to write predictable data to SMRAM (System Management Mode RAM) through a memory corruption flaw in InsydeH2O firm...

This vulnerability allows attackers to write predictable data to SMRAM (System Management Mode RAM) in Insyde InsydeH2O UEFI firmware, potentially esc...

This vulnerability allows an attacker to write predictable data to SMRAM (System Management Mode RAM) in Insyde InsydeH2O UEFI firmware, potentially l...

This vulnerability in Insyde InsydeH2O firmware's System Management Mode (SMM) allows attackers with local access to execute arbitrary code with SMM p...

This vulnerability in MediaTek Wi-Fi chipsets allows attackers to execute arbitrary code or cause denial of service via an out-of-bounds write in WPS ...

This vulnerability in MediaTek Wi-Fi chipsets allows attackers to execute arbitrary code via an out-of-bounds write in the WPS protocol implementation...

This vulnerability in MediaTek Wi-Fi chipsets allows attackers to execute arbitrary code or cause denial of service via an out-of-bounds write during ...

CVE-2021-37569 is an out-of-bounds write vulnerability in MediaTek wireless chipsets that mishandle IEEE 1905 protocols. This allows attackers to pote...

This vulnerability in MediaTek Wi-Fi chipsets allows attackers to execute arbitrary code or cause denial of service through an out-of-bounds write in ...

This vulnerability in MediaTek Wi-Fi chipsets allows attackers to execute arbitrary code or cause denial of service through an out-of-bounds write in ...

A heap-based buffer overflow vulnerability in the HomeKit setup process of ecobee3 lite smart thermostats allows attackers to force devices to connect...

This vulnerability allows attackers to perform out-of-bounds memory writes by injecting specially crafted packets into Contiki-NG's RPL routing implem...

This vulnerability allows a privileged guest user in QEMU virtual machines to trigger an out-of-bounds write in the virtio vhost-user GPU device. It c...

This GRUB2 vulnerability allows attackers to corrupt memory by one byte for each quote in menu input due to an incorrect length calculation. It affect...

This CVE describes memory safety bugs in Mozilla Firefox and Thunderbird that could lead to memory corruption. With sufficient effort, attackers could...

This vulnerability is a heap buffer overflow in MediaTek modem firmware that allows remote code execution when a device connects to a malicious base s...

An out-of-bounds write vulnerability in QNAP operating systems allows authenticated remote attackers to modify or corrupt memory. This affects QNAP NA...

An out-of-bounds write vulnerability in QNAP File Station 5 allows authenticated attackers to modify or corrupt memory. This could lead to arbitrary c...

This CVE describes memory safety bugs in Firefox and Thunderbird that could lead to memory corruption. With sufficient effort, attackers could potenti...

This CVE describes an out-of-bounds write vulnerability in FreeType versions 2.13.0 and below when parsing TrueType GX and variable font files. The vu...

This vulnerability in musl libc allows attackers to trigger an out-of-bounds write during EUC-KR to UTF-8 iconv conversion, potentially leading to mem...

This vulnerability in MediaTek WLAN STA drivers allows remote attackers within wireless range to execute arbitrary code without user interaction. It a...

This vulnerability allows remote attackers to execute arbitrary code on affected Samsung devices due to an out-of-bounds write in libsaped.so. It affe...

A memory corruption vulnerability in Samsung Exynos baseband software allows attackers to write data beyond allocated buffer boundaries by exploiting ...

CVE-2023-52724 is an out-of-bounds array access vulnerability in Open Networking Foundation SD-RAN's onos-kpimon component. This allows attackers to p...

CVE-2024-1557 is a memory safety vulnerability in Firefox that could allow attackers to execute arbitrary code through memory corruption. This affects...

This vulnerability in Vyper smart contract language allows memory corruption when using specific builtin functions with complex expressions, potential...

An out-of-bounds write vulnerability in Bitdefender Engines on Windows allows memory corruption that can crash the engine. This affects Bitdefender pr...

This vulnerability allows attackers with network access to VMware vCenter Server to send specially crafted DCERPC packets causing memory corruption th...

This CVE describes a heap overflow vulnerability in vCenter Server's DCERPC protocol implementation due to uninitialized memory usage. Attackers with ...

This CVE allows remote attackers to execute arbitrary code on affected ArubaOS-Switch devices, potentially leading to complete system compromise. It a...

This vulnerability allows remote attackers to execute arbitrary code on affected Mikrotik RouterOS devices by exploiting a heap-based buffer overflow ...

A stack buffer overflow vulnerability in QNAP NAS Multimedia Console allows attackers to execute arbitrary code on affected systems. This affects QNAP...

This memory corruption vulnerability in macOS allows attackers in a privileged network position to execute arbitrary code on affected systems. It affe...

This is a stack-based buffer overflow vulnerability in FreeBSD's ggatec daemon that allows remote code execution. Attackers in a privileged network po...

CVE-2021-26221 is an out-of-bounds write vulnerability in ezXML's ezxml_new function that occurs when processing XML files after memory pool exhaustio...

This vulnerability in TensorFlow Lite allows attackers with access to segment_ids_data to trigger out-of-bounds writes to heap-allocated buffers by in...

This vulnerability in TensorFlow Lite allows memory corruption when processing models with unsorted segment IDs in segment sum operations. It affects ...

CVE-2020-1912 is an out-of-bounds read/write vulnerability in Facebook's Hermes JavaScript engine that could allow attackers to execute arbitrary code...