CWE-787: Out-of-bounds Write

Memory safety bugs in Firefox and Thunderbird could allow attackers to corrupt memory and potentially execute arbitrary code. This affects all users r...

This CVE describes a buffer overflow vulnerability in AMI APTIOV BIOS firmware where an attacker with local access can execute arbitrary code by explo...

Delta Electronics CNCSoft has an out-of-bounds write vulnerability (CWE-787) due to improper file validation. When users open malicious files, attacke...

Delta Electronics CNCSoft-G2 has a memory corruption vulnerability due to improper file validation. Attackers can execute arbitrary code by tricking u...

Delta Electronics CNCSoft has an out-of-bounds write vulnerability (CWE-787) due to improper validation of user-supplied files. When a user opens a ma...

Memory safety vulnerabilities in Firefox and Thunderbird could allow attackers to corrupt memory and potentially execute arbitrary code. This affects ...

This vulnerability allows local attackers to execute arbitrary code by exploiting an out-of-bounds write when parsing BMP images in Samsung Notes. Att...

This vulnerability allows local attackers to execute arbitrary code by exploiting an out-of-bounds write when parsing JPEG images in Samsung Notes. At...

A heap-based memory vulnerability in the Postscript interpreter of Lexmark devices allows attackers to execute arbitrary code by sending specially cra...

A memory corruption vulnerability in Rockwell Automation Arena allows attackers to write beyond allocated memory boundaries in DOE files. This could l...

CVE-2024-43688 is a heap-based buffer underflow vulnerability in vixie cron that allows memory corruption. This could potentially lead to arbitrary co...

This vulnerability is an out-of-bounds write in Samsung's libcodec2secmp4vdec.so library that allows local attackers to execute arbitrary code with el...

This vulnerability is an out-of-bounds write in libsmat.so that allows local attackers to execute arbitrary code with elevated privileges. It affects ...

This vulnerability allows local attackers to execute arbitrary code on affected Samsung devices by exploiting a heap out-of-bounds write in the libsav...

A vulnerability in the Linux kernel's mlxsw thermal driver allows setting cooling states above the maximum supported level, leading to out-of-bounds m...

This CVE describes an out-of-bounds write vulnerability in the chunk parsing implementation of libsdffextractor library on Samsung devices. It allows ...

This CVE describes an out-of-bounds write vulnerability in Apache Commons Configuration that could allow attackers to write data beyond allocated memo...

This vulnerability in the WASMI WebAssembly interpreter allows an out-of-bounds buffer write when the host calls or resumes a Wasm function with more ...

This vulnerability allows attackers to execute arbitrary code or cause denial of service through a stack-based buffer overflow in Samsung's softsimd c...

This vulnerability allows remote code execution through out-of-bounds write flaws in Azure RTOS USBX's USB host and device classes, specifically affec...

CVE-2023-45676 is an integer overflow vulnerability in the stb_vorbis library that can lead to out-of-bounds writes when processing malicious Ogg Vorb...

CVE-2023-45681 is a heap buffer overflow vulnerability in the stb_vorbis library that processes Ogg Vorbis audio files. An attacker can craft a malici...

CVE-2022-32323 is a heap buffer overflow vulnerability in AutoTrace v0.40.0's BMP image processing functionality. Attackers can exploit this by provid...

This vulnerability in Samsung Notes allows attackers to read memory beyond allocated buffer boundaries due to insufficient input validation in the lib...

This vulnerability in the Rust reorder crate allows reading uninitialized memory when swap_index is called with an iterator reporting an incorrect len...

A heap overflow vulnerability in FreeBSD's dhclient allows remote attackers to potentially execute arbitrary code by sending malformed DHCP option 119...

CVE-2020-4265 is a memory corruption vulnerability in IBM i2 Intelligent Analysis Platform 9.2.1 that allows local attackers to execute arbitrary code...

This vulnerability allows local privilege escalation on Android 10 devices through NFC server. An attacker could gain system-level privileges by explo...

This vulnerability in Android's NFC stack allows local privilege escalation through an out-of-bounds write. Attackers can exploit this by tricking use...

A stack overflow vulnerability in the AOS-10 web management interface of HPE Mobility Gateway allows authenticated attackers to execute arbitrary code...

An authenticated privileged user can exploit an out-of-bounds write vulnerability in WatchGuard Fireware OS's CLI via a specially crafted command to e...

An authenticated privileged user can execute arbitrary code on WatchGuard Fireware OS devices by exploiting an out-of-bounds write vulnerability in th...

An authenticated privileged user can execute arbitrary code on WatchGuard Fireware OS devices by sending specially crafted IPSec configuration command...

This CVE describes an out-of-bounds write vulnerability in QNAP operating systems that could allow remote attackers with administrator access to modif...

An out-of-bounds write vulnerability in QNAP operating systems could allow remote attackers with administrator access to modify or corrupt memory. Thi...

An out-of-bounds write vulnerability in QNAP operating systems allows remote attackers with administrator access to modify or corrupt memory. This aff...

This vulnerability allows attackers to execute arbitrary code with elevated privileges on Fortinet FortiManager and FortiAnalyzer systems through spec...

CVE-2024-20057 is a memory corruption vulnerability in MediaTek's keyInstall component where missing bounds checks allow out-of-bounds writes. This en...

This CVE describes an out-of-bounds write vulnerability in DRM/oemcrypto due to incorrect buffer size calculation. It could allow remote attackers to ...

This vulnerability allows remote attackers to execute arbitrary code on H3C Magic R300 routers via a stack overflow in the AddMacList interface. Attac...

This CVE describes a stack overflow vulnerability in H3C Magic R300 routers that allows remote attackers to execute arbitrary code via the AddWlanMacL...

This CVE describes a stack overflow vulnerability in H3C Magic R300 routers via the UpdateSnat interface at /goform/aspForm. Attackers can exploit thi...

This vulnerability allows remote attackers to execute arbitrary code on H3C Magic R300 routers via a stack overflow in the DeltriggerList interface. A...

This vulnerability allows remote attackers to execute arbitrary code on H3C Magic R300 routers via a stack overflow in the DelSTList interface. Attack...

This vulnerability allows remote attackers to execute arbitrary code on H3C Magic R300 routers via a stack overflow in the UpdateWanParams interface. ...

This CVE describes a stack overflow vulnerability in H3C Magic R300 routers that allows remote attackers to execute arbitrary code via the UpdateMacCl...

This vulnerability allows remote attackers to execute arbitrary code on H3C Magic R300 routers via a stack overflow in the DelDNSHnList interface. Att...

This CVE describes a stack overflow vulnerability in H3C Magic R300 routers via the SetMobileAPInfoById interface at /goform/aspForm. Attackers can ex...

A stack-based buffer overflow vulnerability in the Tenda AC9 router's HTTP server allows remote attackers to execute arbitrary code or cause denial of...

DBHcms v1.2.0 contains an arbitrary file write vulnerability in the editor module that allows authenticated admin users to write arbitrary content to ...