CWE-787: Out-of-bounds Write

This CVE describes a heap buffer overflow vulnerability in Android's color conversion function that allows local privilege escalation without user int...

This CVE describes a heap buffer overflow vulnerability in Android's ashmem-dev.cpp that allows local privilege escalation without user interaction. A...

This CVE describes an out-of-bounds write vulnerability in Adobe Acrobat Reader that could allow arbitrary code execution when a user opens a maliciou...

CVE-2024-20728 is an out-of-bounds write vulnerability in Adobe Acrobat Reader that could allow arbitrary code execution when a user opens a malicious...

Substance3D Painter versions 9.1.1 and earlier contain an out-of-bounds write vulnerability that could allow arbitrary code execution when a user open...

CVE-2024-20740 is an out-of-bounds write vulnerability in Adobe Substance3D Painter that could allow arbitrary code execution when a user opens a mali...

This vulnerability allows remote code execution through a specially crafted WRL file in Tecnomatix Plant Simulation. Attackers can execute arbitrary c...

This vulnerability allows attackers to cause a heap buffer overflow in Hugin panorama software by parsing a maliciously crafted image file. Attackers ...

This vulnerability in the X.Org server allows out-of-bounds memory access when a frozen device is reattached to a different master device. It can lead...

KiTTY versions 0.76.1.13 and earlier contain a stack-based buffer overflow vulnerability in the username handling code (line 2600) due to insufficient...

This CVE describes an out-of-bounds write vulnerability in Arm Mali GPU kernel drivers that allows a local non-privileged user to perform improper GPU...

CVE-2024-22667 is a stack-based buffer overflow vulnerability in Vim's map.c file where the did_set_langmap function uses sprintf to write to an error...

This vulnerability in GNOME GdkPixbuf allows heap memory corruption when processing specially crafted ANI (Windows animated cursor) files. Attackers c...

CVE-2024-22955 is a stack-buffer-underflow vulnerability in swftools 0.9.2 that allows attackers to read sensitive memory contents or potentially exec...

A stack-buffer-underflow vulnerability in SWFTools v0.9.2 allows attackers to read memory contents beyond allocated buffer boundaries when parsing SWF...

A heap buffer overflow vulnerability in SWFTools v0.9.2 allows remote code execution when processing malicious SWF files. This affects systems running...

CVE-2024-22562 is a stack buffer underflow vulnerability in swftools 0.9.2 that allows attackers to execute arbitrary code or cause denial of service ...

This vulnerability in X.Org server's cursor code allows memory corruption by using incorrect private types in Xephyr and Xwayland, potentially leading...

CVE-2023-50671 is a heap-based buffer overflow vulnerability in exiftags 1.01 that allows writing 28 bytes to an unexpected memory address via the nik...

This is a memory corruption vulnerability (CWE-787) in macOS that allows a malicious application to execute arbitrary code with kernel privileges. It ...

This vulnerability allows attackers to execute arbitrary code by tricking users into processing malicious font files. It affects Apple macOS, iOS, and...

CVE-2023-37420 is an out-of-bounds write vulnerability in GTKWave's VCD parser that allows arbitrary code execution when processing malicious .vcd fil...

CVE-2023-37416 is an out-of-bounds write vulnerability in GTKWave's VCD file parser that allows arbitrary code execution when a malicious .vcd file is...

CVE-2023-37418 is an out-of-bounds write vulnerability in GTKWave's VCD file parser that allows arbitrary code execution when processing a malicious ....

CVE-2023-34325 is a stack buffer overflow vulnerability in Xen's libfsimage library, derived from old grub-legacy code. Attackers with access to guest...

This vulnerability in syngo fastView allows attackers to execute arbitrary code by exploiting improper validation of DICOM files. All versions of syng...

This vulnerability in RoyalTSX allows attackers to trigger heap memory corruption and application crashes via specially crafted RTSZ files containing ...

This vulnerability allows remote code execution through a specially crafted DGN file. Attackers can exploit an out-of-bounds write in Open Design Alli...

A stack-based buffer overflow vulnerability in FPWin Pro programming software allows attackers to execute arbitrary code by tricking users into openin...

This vulnerability allows attackers to execute arbitrary code on affected Adobe Substance 3D Designer installations by tricking users into opening mal...

Adobe Substance 3D Sampler versions 4.2.1 and earlier contain an out-of-bounds write vulnerability that allows arbitrary code execution when a user op...

Adobe After Effects has an out-of-bounds write vulnerability that allows attackers to execute arbitrary code when a user opens a malicious file. This ...

This CVE describes an out-of-bounds write vulnerability in Adobe Substance 3D Sampler that could allow arbitrary code execution when a user opens a ma...

Adobe Substance 3D Sampler versions 4.2.1 and earlier contain an out-of-bounds write vulnerability that allows arbitrary code execution when a user op...

This vulnerability in xorg-server allows out-of-bounds memory reads and writes when querying or changing XKB button actions, such as switching from to...

This CVE describes memory corruption vulnerabilities in macOS that could allow arbitrary code execution when processing malicious files. Attackers cou...

This CVE describes memory corruption vulnerabilities in macOS that could allow arbitrary code execution when processing malicious files. Attackers cou...

This CVE describes memory corruption vulnerabilities in macOS that could allow attackers to execute arbitrary code or cause application crashes by tri...

This CVE describes memory corruption vulnerabilities in macOS that could allow arbitrary code execution when processing malicious files. Attackers cou...

This CVE describes memory corruption vulnerabilities in macOS's AppleGVA framework that could allow arbitrary code execution when processing malicious...

This vulnerability in macOS AppleVADriver allows out-of-bounds write when processing images, potentially leading to arbitrary code execution. Attacker...

This CVE describes memory corruption vulnerabilities in macOS that could allow arbitrary code execution when processing malicious files. Attackers cou...

This CVE describes memory corruption vulnerabilities in macOS that could allow arbitrary code execution when processing malicious files. Attackers cou...

This vulnerability allows local attackers to write beyond allocated memory bounds in the Pixel GPU driver, potentially leading to kernel-level privile...

This CVE describes an out-of-bounds write vulnerability in Android's Bluetooth stack (btm_ble_gap.cc) that allows local privilege escalation. Attacker...

This vulnerability in Android's Bluetooth stack allows local attackers to escalate privileges without user interaction. An out-of-bounds write in the ...

This vulnerability allows local privilege escalation on Android devices through memory corruption in the IncidentService component. An attacker could ...

This CVE describes a critical Bluetooth stack vulnerability in Android's Bluetooth Low Energy (BLE) implementation. An out-of-bounds write due to a lo...

This CVE describes a memory corruption vulnerability in MediaTek audio components where missing bounds checks allow out-of-bounds writes. Attackers ca...

This CVE describes an integer overflow vulnerability in a decoder component that could lead to out-of-bounds write. Successful exploitation could allo...