CWE-787: Out-of-bounds Write

This CVE describes a stack overflow vulnerability in the Linux kernel's net/iucv component when CONFIG_CPUMASK_OFFSTACK=y is configured. The vulnerabi...

This CVE describes a buffer overflow vulnerability in the Linux kernel's stk1160 video driver. The flaw allows attackers to write beyond allocated mem...

This vulnerability allows local privilege escalation on affected Android Pixel devices through an out-of-bounds write in the DMA controller driver. At...

A race condition vulnerability in the Linux kernel's dm-crypt subsystem when using authenticated encryption (AEAD) allows data corruption. Attackers w...

A Linux kernel vulnerability in x86 architecture memory access functions causes kernel panic during hardware memory errors when accessing userspace me...

This CVE-2024-26664 is an out-of-bounds memory access vulnerability in the Linux kernel's coretemp hardware monitoring driver. It allows attackers wit...

A memory leak vulnerability in the Linux kernel's net/sched subsystem when using flower classifier chain templates. When a qdisc is deleted, the kerne...

This vulnerability in the Linux kernel's netfilter nftables exthdr component allows a 4-byte out-of-bounds stack write when processing network packets...

This vulnerability in GPAC multimedia framework allows attackers to write data beyond allocated memory boundaries when processing SWF files. It affect...

This CVE describes a memory corruption vulnerability in Apple operating systems that allows malicious applications to cause system crashes or write to...

This vulnerability in Insyde H2OFFT's iscflashx64.sys driver allows attackers to cause memory corruption or system crashes by sending a malformed IOCT...

CVE-2021-29390 is a heap-based buffer over-read vulnerability in libjpeg-turbo's decompress_smooth_data function that allows reading 2 bytes beyond al...

A heap out-of-bounds write vulnerability in Samsung device bootloaders allows physical attackers to execute arbitrary code during the boot process. Th...

This CVE allows attackers to cause a segmentation fault and denial of service in TensorFlow by passing negative values to the tf.raw_ops.EditDistance ...

CVE-2022-23318 is a heap buffer overflow vulnerability in pcf2bdf that allows attackers to trigger unsafe memory access via specially crafted PCF font...

Internet Download Manager 6.37.11.1 contains a stack buffer overflow vulnerability in its Export/Import function. Attackers can exploit this by tricki...

This vulnerability in GPAC 0.8.0 allows attackers to cause a heap-based buffer overflow by processing a specially crafted media file. This can lead to...

This memory corruption vulnerability in Apple operating systems allows malicious applications to cause denial of service or potentially leak memory co...

This is a macOS kernel memory corruption vulnerability that allows an application to cause system crashes or write to kernel memory. It affects macOS ...

A heap buffer overflow vulnerability in Telegram's custom rlottie library allows remote attackers to potentially execute arbitrary code or crash the a...

This vulnerability in the Linux kernel's KVM API allows a user process to trigger an out-of-bounds write by manipulating the internal.ndata value. It ...

This vulnerability in Samsung's quram library allows attackers to overwrite arbitrary memory locations, potentially leading to arbitrary code executio...

This vulnerability is a stack buffer overflow in Qualcomm Snapdragon chipsets that occurs when processing GSM/WCDMA broadcast configuration data. Atta...

CVE-2017-18926 is a heap-based buffer overflow vulnerability in Raptor RDF Syntax Library's XML writer component. It allows attackers to execute arbit...

This vulnerability allows a remote access point to trigger a heap-based buffer overflow in the Linux kernel's mwifiex wireless driver. Attackers could...

CVE-2019-8545 is a memory corruption vulnerability in Apple operating systems that allows local users to cause system crashes or read kernel memory. T...

This vulnerability allows attackers to execute arbitrary code or write arbitrary files when downloading and building Go modules with malicious version...

This vulnerability allows local attackers to write out-of-bounds memory in the MPEG4 codec handling within libsavsvc.so on Android devices. It affects...

This CVE describes a local privilege escalation vulnerability in MediaTek thermal management components. An attacker with System privilege can exploit...

This vulnerability allows local attackers to execute arbitrary code with elevated privileges on Samsung devices by exploiting an out-of-bounds write i...

This vulnerability allows local attackers to execute arbitrary code with elevated privileges on affected Samsung devices by exploiting an out-of-bound...

This vulnerability allows local attackers to execute arbitrary code with elevated privileges on affected Samsung devices by exploiting an out-of-bound...

This vulnerability is an out-of-bounds write in libsthmbc.so video decoding library that allows local attackers to execute arbitrary code with elevate...

This vulnerability allows remote attackers to execute arbitrary code on Ashlar-Vellum Cobalt installations by tricking users into opening malicious X_...

This CVE describes a memory access vulnerability in the Linux kernel's nct6775 hardware monitoring driver. It allows out-of-bounds read/write operatio...

An out-of-bounds write vulnerability in Contiki-NG's IEEE 802.15.4 radio driver allows attackers to write beyond allocated buffer boundaries when pars...

This CVE describes an out-of-bounds memory write vulnerability in the Linux kernel's TLS implementation when using splice() with ktls sockets. A local...

This CVE describes a race condition vulnerability in the MediaTek JPEG driver for Android devices that allows local privilege escalation without user ...

This CVE-2023-42753 is an array indexing vulnerability in the Linux kernel's netfilter subsystem that allows local attackers to perform out-of-bounds ...

MuseScore 3.0 through 4.0.1 contains a stack buffer overflow vulnerability when processing malformed MIDI files. This allows attackers to potentially ...

CVE-2021-3697 is a heap buffer underflow vulnerability in GRUB2's JPEG parser that allows a crafted JPEG image to corrupt heap memory. Successful expl...

CVE-2022-26743 is an out-of-bounds write vulnerability in macOS that allows attackers who have already achieved code execution in macOS Recovery to es...

CVE-2022-21882 is a Win32k elevation of privilege vulnerability in Windows that allows authenticated attackers to gain SYSTEM privileges. This affects...

CVE-2020-28198 is a stack buffer overflow vulnerability in IBM Tivoli Storage Manager's administrative client (dsmadmc.exe) that allows attackers to e...

CVE-2020-1477 is a memory corruption vulnerability in Windows Media Foundation that allows attackers to execute arbitrary code with user privileges. I...

This CVE describes an out-of-bounds write vulnerability in DA (likely a MediaTek component) that could allow local privilege escalation. Attackers wit...

This vulnerability in MediaTek DA software allows local attackers with physical access to escalate privileges through an out-of-bounds write. No user ...

This CVE describes an out-of-bounds write vulnerability in MediaTek's da component that could allow local privilege escalation. Attackers with physica...

This vulnerability in NVIDIA's nvJPEG2000 library allows attackers to execute arbitrary code or tamper with data by providing a specially crafted JPEG...

This vulnerability in NVIDIA's nvJPEG2000 library allows attackers to execute arbitrary code or tamper with data by exploiting an out-of-bounds write ...