CWE-787: Out-of-bounds Write

CVE-2021-40014 is a heap overflow vulnerability in the bone voice ID trusted application (TA) on Huawei devices running HarmonyOS. This vulnerability ...

CVE-2021-40021 is an out-of-bounds memory write vulnerability in the eID module of HarmonyOS. This vulnerability could allow attackers to write beyond...

CVE-2021-40028 is an out-of-bounds memory write vulnerability in the eID module of HarmonyOS. This vulnerability could allow attackers to corrupt memo...

This vulnerability in the derive-com-impl Rust crate allows memory corruption due to improper reference counting. Attackers could potentially execute ...

This vulnerability in Yubico's YubiHSM2 library allows buffer overflow attacks by not properly validating input lengths for SSH signing and data opera...

This vulnerability allows an attacker to cause memory exhaustion (denial of service) in Barrier software by sending long TCP messages. It affects both...

This vulnerability allows remote attackers to cause a denial of service on Juniper Networks devices by sending specially crafted BGP UPDATE or KEEPALI...

A stack buffer overflow vulnerability in MP4Box v1.0.1 allows attackers to cause denial of service by exploiting improper bounds checking in the nhmld...

This vulnerability is a stack buffer overflow in MP4Box v1.0.1 that allows attackers to cause denial of service by crashing the application. It affect...

This vulnerability is a heap buffer overflow in the 2G Radio Resource Management (RRM) component of MediaTek modems. It allows remote attackers to cau...

This vulnerability allows remote attackers to cause a denial of service via a heap buffer overflow in the 2G Radio Resource Management (RRM) modem com...

This vulnerability allows any Certificate Authority (CA) issuer in the Resource Public Key Infrastructure (RPKI) to trick OctoRPKI versions prior to 1...

CVE-2021-1808 is a memory corruption vulnerability in Apple operating systems that allows applications to read restricted memory regions. This could l...

This vulnerability is a buffer overflow in LibTiff's tiffcrop utility that allows attackers to cause denial of service through the invertImage() funct...

A buffer overflow vulnerability in libsolv's pool_installable function allows attackers to cause Denial of Service by crashing applications using this...

A buffer overflow vulnerability in libsolv's pool_installable_whatprovides function allows attackers to cause Denial of Service by crashing the applic...

CVE-2020-20486 is a stack buffer overflow vulnerability in IEC104 v1.0's Iec10x_Sta_Addr parameter that allows remote attackers to execute arbitrary c...

CVE-2020-18735 is a heap buffer overflow vulnerability in Eclipse IOT Cyclone DDS Project that allows attackers to crash the DDS subscriber server thr...

A heap-based buffer overflow vulnerability exists in Bento4's AP4_StdcFileByteStream::ReadPartial component, allowing attackers to cause denial of ser...

This vulnerability in Bento4's AP4_NullTerminatedStringAtom component allows attackers to cause a segmentation fault via improper memory write access....

This vulnerability allows remote attackers to execute arbitrary code on affected devices via a heap buffer overflow in Realtek Jungle SDK's WiFi Simpl...

CVE-2021-38614 is a heap-based buffer overflow vulnerability in Polipo caching proxy server versions through 1.1.1 when compiled with NDEBUG flag. Att...

CVE-2021-38592 is a heap-based buffer overflow vulnerability in Wasm3 0.5.0's op_Const64 function that can be triggered during WebAssembly module load...

This is a memory buffer overflow vulnerability (CWE-787) affecting Huawei smartphones. Successful exploitation could allow attackers to cause system r...

CVE-2021-27628 is a denial-of-service vulnerability in SAP NetWeaver ABAP Server and ABAP Platform that allows unauthenticated attackers to crash the ...

A denial-of-service vulnerability exists in JSON Smart's indexOf function that allows attackers to crash applications via specially crafted JSON input...

CVE-2021-30186 is a heap-based buffer overflow vulnerability in CODESYS V2 runtime system SP. This vulnerability allows attackers to execute arbitrary...

CVE-2021-26419 is a memory corruption vulnerability in Internet Explorer's scripting engine (jscript9.dll) that allows remote code execution. Attacker...

CVE-2021-31598 is a heap-based buffer overflow vulnerability in ezXML library's ezxml_decode() function that occurs when parsing malicious XML files. ...

CVE-2021-27799 is a stack-based buffer overflow vulnerability in the Zint Barcode Generator library's EAN barcode processing function. Attackers can e...

A Denial of Service vulnerability in Hilscher PROFINET IO Device V3 allows attackers to disrupt industrial communication by causing unexpected loss of...

This vulnerability in F5 BIG-IP's JSON parser allows attackers to perform out-of-bounds memory access or writes, potentially leading to remote code ex...

A stack buffer overflow vulnerability in Gitea versions 1.9.0 through 1.13.1 allows remote attackers to crash the service via specially crafted file p...

CVE-2020-27541 is a denial-of-service vulnerability in Rostelecom CS-C2SHW IP camera firmware. It allows remote attackers to crash the AgentGreen serv...

CVE-2020-35965 is an out-of-bounds write vulnerability in FFmpeg's EXR image decoder that could allow attackers to execute arbitrary code or cause den...

This vulnerability in the serde_cbor Rust crate allows attackers to cause stack exhaustion through specially crafted CBOR data with deeply nested sema...

CVE-2020-35376 is a stack-based buffer overflow vulnerability in Xpdf 4.02's Type 1C font parser. Attackers can craft malicious PDF files to cause den...

This vulnerability is a heap-based buffer overflow in p11-kit's RPC protocol that allows remote attackers to execute arbitrary code or cause denial of...

This heap buffer overflow vulnerability in the Moddable SDK's debug component allows attackers to crash applications or potentially execute arbitrary ...

This is a memory corruption vulnerability in Internet Explorer that could allow an attacker to execute arbitrary code on a victim's system. It affects...

CVE-2020-24265 is a heap buffer overflow vulnerability in tcpreplay's tcpprep utility that allows attackers to cause denial of service through applica...

Two memory corruption vulnerabilities in Aruba CX Switches allow local denial of service attacks against the CDP process. Attackers with local access ...

A memory corruption vulnerability in Internet Explorer's scripting engine allows remote code execution when users visit malicious websites or open spe...

CVE-2019-20840 is a memory corruption vulnerability in LibVNCServer's WebSocket decoding functionality that can cause crashes due to unaligned memory ...

This vulnerability allows remote attackers to cause a Denial of Service (DoS) on Schneider Electric Modicon M218 Logic Controllers by sending speciall...

This vulnerability in IBM Aspera applications allows arbitrary memory corruption through the HTTP fallback service when configured in certain ways. An...

This vulnerability allows remote code execution through the VBScript engine when it improperly handles objects in memory. Attackers can exploit this b...

This is a remote code execution vulnerability in Internet Explorer where improper memory access allows attackers to execute arbitrary code. It affects...

This vulnerability allows remote code execution through malicious VBScript content, enabling attackers to take control of affected systems. It affects...

This CVE describes a remote code execution vulnerability in Internet Explorer due to improper memory access, allowing attackers to corrupt memory and ...