CWE-787: Out-of-bounds Write

CVE-2021-36072 is an out-of-bounds write vulnerability in Adobe Bridge that allows arbitrary code execution when a user opens a malicious file. This a...

This vulnerability allows malicious iOS/iPadOS applications to write data beyond allocated memory boundaries, potentially leading to arbitrary code ex...

This vulnerability allows attackers to execute arbitrary code or crash applications by tricking users into opening malicious USD (Universal Scene Desc...

This memory corruption vulnerability in Apple's ColorSync ICC profile processing allows arbitrary code execution when processing malicious images. It ...

This CVE describes a memory corruption vulnerability in Apple's XNU kernel that allows a malicious application to execute arbitrary code with kernel p...

This is a memory corruption vulnerability in Apple's XNU kernel that allows a malicious application to execute arbitrary code with kernel privileges. ...

This is a memory corruption vulnerability in iOS/iPadOS that allows malicious applications to execute arbitrary code with kernel privileges. It affect...

CVE-2021-30916 is a memory corruption vulnerability in Apple operating systems that allows malicious applications to execute arbitrary code with kerne...

This vulnerability allows arbitrary code execution through malicious PDF files due to an out-of-bounds write in Apple's PDF processing. It affects mul...

This CVE describes multiple out-of-bounds write vulnerabilities in macOS that could allow a malicious application to execute arbitrary code with kerne...

This vulnerability allows malicious applications to write data beyond allocated memory boundaries in macOS kernel components, potentially leading to a...

This CVE-2021-30909 is a memory corruption vulnerability in Apple operating systems that allows an application to execute arbitrary code with kernel p...

CVE-2021-30894 is a memory corruption vulnerability in Apple iOS, iPadOS, and tvOS that allows malicious applications to execute arbitrary code with k...

This is a memory corruption vulnerability in Apple operating systems that allows an application to execute arbitrary code with kernel privileges. It a...

Adobe Animate versions 21.0.6 and earlier contain an out-of-bounds write vulnerability that allows arbitrary code execution when a user opens a malici...

CVE-2021-32263 is a heap-based buffer overflow vulnerability in ok-file-formats library's CSV parsing functionality. Attackers can exploit this by pro...

Adobe After Effects versions 18.2 and earlier contain a memory corruption vulnerability (CWE-787) that allows arbitrary code execution when a user ope...

CVE-2021-35989 is an out-of-bounds write vulnerability in Adobe Bridge that allows arbitrary code execution when a user opens a malicious file. Attack...

CVE-2021-28591 is an out-of-bounds write vulnerability in Adobe Illustrator that allows arbitrary code execution when a malicious file is opened. Atta...

This vulnerability allows local privilege escalation on Android devices through SQLite's printf formatting function. An attacker can execute arbitrary...

CVE-2021-0573 is an out-of-bounds write vulnerability in Android's ASF extractor component that allows local privilege escalation without user interac...

CVE-2021-0576 is an out-of-bounds write vulnerability in Android's FLV extractor component that allows local privilege escalation without user interac...

CVE-2021-0640 is an out-of-bounds write vulnerability in Android's StatsdStats.cpp that allows local privilege escalation without user interaction. It...

CVE-2021-21813 is a stack-buffer overflow vulnerability in the HandleFileArg function where user-controlled command-line input is copied without lengt...

This vulnerability allows attackers to execute arbitrary code on systems running Xmill 0.7 by exploiting a stack-based buffer overflow in the command-...

CVE-2020-19491 is an invalid memory access vulnerability in the cgif.c component of sam2p image conversion software that causes a segmentation fault w...

This CVE describes a stack-based buffer overflow vulnerability in netCDF component of GDAL software. Attackers can exploit this to execute arbitrary c...

CVE-2020-36430 is a heap-based buffer overflow vulnerability in libass subtitle library versions 0.15.x before 0.15.1. The vulnerability occurs due to...

CVE-2021-0577 is a heap buffer overflow vulnerability in Android's FLV extractor component that allows local privilege escalation without user interac...

This vulnerability allows local privilege escalation on Android devices through an out-of-bounds write in the Bluetooth stack. An attacker with user e...

This vulnerability allows remote code execution through specially crafted SGI image files in Siemens JT2Go and Teamcenter Visualization software. Atta...

This vulnerability allows remote code execution through specially crafted JT files in Siemens JT2Go and Teamcenter Visualization software. Attackers c...

This vulnerability allows remote code execution through malicious GIF files in Siemens JT2Go and Teamcenter Visualization software. Attackers can expl...

This vulnerability allows remote code execution through malicious TIFF files in Siemens JT2Go and Teamcenter Visualization software. Attackers can exp...

This vulnerability allows remote code execution through specially crafted J2K files in Siemens JT2Go and Teamcenter Visualization software. Attackers ...

This vulnerability allows remote code execution through malicious GIF files in Siemens JT2Go and Teamcenter Visualization software. Attackers can expl...

This vulnerability allows remote code execution through malicious GIF files in Siemens JT2Go and Teamcenter Visualization software. Attackers can expl...

This vulnerability allows remote code execution through malicious GIF files in Siemens JT2Go and Teamcenter Visualization software. Attackers can expl...

This vulnerability allows remote code execution through malicious BMP files in Siemens JT2Go and Teamcenter Visualization software. Attackers can expl...

This vulnerability allows remote code execution through specially crafted TIFF files in Siemens JT2Go and Teamcenter Visualization software. Attackers...

This vulnerability allows attackers to execute arbitrary code by exploiting an out-of-bounds write vulnerability in Foxit Reader and PhantomPDF when p...

This is a buffer overflow vulnerability in Autodesk software that allows arbitrary code execution when processing malicious image files. Attackers can...

This heap-based buffer overflow vulnerability in Autodesk Design Review allows attackers to execute arbitrary code by tricking users into opening mali...

This CVE describes a stack-use-after-return vulnerability in Solidity 0.7.5's SMT solver interface. It could allow attackers to cause memory corruptio...

This vulnerability allows an attacker to execute arbitrary code on systems running vulnerable versions of PowerISO by tricking users into opening a sp...

CVE-2021-31509 is a buffer overflow vulnerability in OpenText Brava! Desktop that allows remote code execution when processing malicious DXF files. At...

CVE-2021-31511 is a heap-based buffer overflow vulnerability in OpenText Brava! Desktop's PDF parser that allows remote code execution. Attackers can ...

CVE-2021-31513 is a buffer overflow vulnerability in OpenText Brava! Desktop's BMP file parser that allows remote code execution. Attackers can exploi...

CVE-2021-28586 is an out-of-bounds write vulnerability in Adobe After Effects that could allow arbitrary code execution when a user opens a malicious ...

This vulnerability allows local attackers to write arbitrary data to hardware ports due to missing bounds checks in the iaxxx-codec driver. It enables...