CWE-787: Out-of-bounds Write

CVE-2022-21124 is an out-of-bounds write vulnerability in Omron CX-Programmer software that allows attackers to execute arbitrary code or disclose inf...

CVE-2022-20047 is an out-of-bounds write vulnerability in MediaTek video decoder components that allows local privilege escalation without user intera...

CVE-2022-24453 is a remote code execution vulnerability in Microsoft's HEVC Video Extensions that allows attackers to execute arbitrary code by tricki...

CVE-2022-24457 is a remote code execution vulnerability in Microsoft's HEIF Image Extensions that allows attackers to execute arbitrary code by tricki...

CVE-2022-22007 is a remote code execution vulnerability in Microsoft's HEVC Video Extensions that allows attackers to execute arbitrary code by tricki...

Espruino 2v11 contains a stack buffer overflow vulnerability in the jsvGetNextSibling function in src/jsvar.c. This allows attackers to execute arbitr...

This vulnerability allows remote code execution via a heap-based buffer overflow in openjpeg when processing malicious JPEG 2000 (.j2k) files. Attacke...

CVE-2021-26259 is a heap buffer overflow vulnerability in htmldoc's render_table_row() function that could allow attackers to execute arbitrary code o...

CVE-2021-44335 is a heap buffer overflow vulnerability in the ok-file-formats library's PNG processing function. Attackers can exploit this by providi...

CVE-2021-44331 is a buffer overflow vulnerability in ARM's astcenc 3.2.0 Adaptive Scalable Texture Compression encoder. This vulnerability allows atta...

CVE-2021-44339 is a heap buffer overflow vulnerability in the ok-file-formats library's PNG processing function. Attackers can exploit this by craftin...

CVE-2021-26252 is a heap buffer overflow vulnerability in htmldoc's PDF processing component that could allow attackers to execute arbitrary code or c...

This vulnerability in Simcenter Femap allows remote code execution through specially crafted NEU files. An attacker could execute arbitrary code with ...

CVE-2022-24056 is a buffer overflow vulnerability in Sante DICOM Viewer Pro that allows remote code execution when a user opens a malicious J2K image ...

CVE-2022-24058 is a buffer overflow vulnerability in Sante DICOM Viewer Pro that allows remote code execution when a user opens a malicious J2K image ...

CVE-2022-24064 is a buffer overflow vulnerability in Sante DICOM Viewer Pro that allows remote code execution when parsing malicious J2K image files. ...

CVE-2021-46652 is a buffer overflow vulnerability in Bentley View's DGN file parser that allows remote code execution. Attackers can exploit it by tri...

CVE-2021-46635 is a buffer overflow vulnerability in Bentley MicroStation CONNECT's DGN file parser that allows remote code execution. Attackers can e...

This is a buffer overflow vulnerability in Bentley View's DGN file parser that allows remote code execution. Attackers can exploit it by tricking user...

This is a buffer overflow vulnerability in Bentley MicroStation CONNECT's BMP image parser that allows remote code execution. Attackers can exploit it...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious J2K image files in Bentley MicroStation ...

This is a buffer overflow vulnerability in Bentley MicroStation CONNECT that allows remote code execution when users open malicious 3DS files. Attacke...

This is a buffer overflow vulnerability in Bentley MicroStation CONNECT that allows remote code execution when users open malicious JT files. Attacker...

This is a remote code execution vulnerability in Bentley MicroStation CONNECT software. Attackers can execute arbitrary code by tricking users into op...

This is a remote code execution vulnerability in Bentley MicroStation CONNECT software that allows attackers to execute arbitrary code by tricking use...

This is a buffer overflow vulnerability in Bentley MicroStation CONNECT that allows remote code execution. Attackers can exploit it by tricking users ...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious JT files in Bentley MicroStation CONNECT...

This CVE describes an out-of-bounds write vulnerability in Adobe After Effects that could allow arbitrary code execution when a user opens a malicious...

This vulnerability allows an attacker to write data beyond the intended memory boundaries in Qualcomm Snapdragon chipsets due to improper validation o...

This CVE-2022-20028 is a Bluetooth stack vulnerability in MediaTek chipsets that allows local attackers to write beyond allocated memory boundaries, p...

CVE-2022-20040 is a stack-based buffer overflow vulnerability in MediaTek's power_hal_manager_service that allows local attackers to bypass permission...

This CVE describes a Bluetooth stack vulnerability in MediaTek chipsets that allows local privilege escalation without user interaction. An attacker w...

This vulnerability is an out-of-bounds write in Intel processor firmware that allows a privileged user to potentially escalate privileges via local ac...

CVE-2022-21926 is a remote code execution vulnerability in Microsoft's HEVC Video Extensions that allows attackers to execute arbitrary code by tricki...

This vulnerability allows remote code execution through specially crafted NEU files in Simcenter Femap. An attacker could execute arbitrary code with ...

This vulnerability allows remote code execution through specially crafted NEU files in Simcenter Femap engineering software. Attackers can exploit an ...

This vulnerability allows remote code execution through specially crafted NEU files in Simcenter Femap engineering software. Attackers can exploit an ...

CVE-2021-4034 (PwnKit) is a local privilege escalation vulnerability in polkit's pkexec utility that allows unprivileged local users to gain root priv...

This vulnerability allows arbitrary code execution when a malicious *.gd1 configuration file is loaded into the Eurotherm GUIcon tool. Attackers could...

CVE-2021-46522 is a heap buffer overflow vulnerability in Cesanta MJS JavaScript engine v2.20.0 that allows attackers to execute arbitrary code or cau...

CVE-2021-46524 is a heap buffer overflow vulnerability in Cesanta MJS v2.20.0 that allows attackers to execute arbitrary code or cause denial of servi...

CVE-2021-46518 is a heap buffer overflow vulnerability in Cesanta MJS JavaScript engine that allows attackers to execute arbitrary code or cause denia...

CVE-2021-46520 is a heap buffer overflow vulnerability in Cesanta MJS JavaScript engine v2.20.0 that allows attackers to execute arbitrary code or cau...

CVE-2021-46482 is a heap buffer overflow vulnerability in Jsish v3.5.0's NumberConstructor function that allows attackers to execute arbitrary code or...

CVE-2022-23850 is a stack-based buffer overflow vulnerability in epub2txt's xhtml_translate_entity function that allows remote code execution via a sp...

CVE-2022-22893 is a stack overflow vulnerability in Jerryscript 3.0.0's VM component that allows attackers to execute arbitrary code or cause denial o...

CVE-2022-22895 is a heap buffer overflow vulnerability in Jerryscript 3.0.0's string-to-number conversion function. This allows attackers to write bey...

CVE-2022-22888 is a stack overflow vulnerability in Jerryscript 3.0.0's ecma_op_object_find_own function that allows attackers to execute arbitrary co...

Espruino 2v11.251 contains a stack buffer overflow vulnerability in the jsvNewFromString function in src/jsvar.c. This allows attackers to execute arb...

CVE-2021-46326 is a heap buffer overflow vulnerability in Moddable SDK v11.5.0 that occurs in the __asan_memcpy component. This vulnerability could al...