CWE-787: Out-of-bounds Write

An out-of-bounds write vulnerability in the TPM2 reference library in ChromeOS allows attackers with root access to bypass operating system verificati...

CVE-2024-45780 is a heap buffer overflow vulnerability in grub2's tar file parser that allows integer overflow during filename buffer allocation. Atta...

This vulnerability in grub2 allows attackers to trigger an out-of-bounds write when processing language files, potentially overwriting sensitive heap ...

This vulnerability in grub2 allows attackers to write beyond heap boundaries when processing symbolic links on UFS filesystems. This could lead to dat...

A buffer overflow vulnerability in GRUB2's JPEG parser allows specially crafted JPEG files to trigger an out-of-bounds write. This could potentially b...

CVE-2025-20636 is an out-of-bounds write vulnerability in secmem that allows local privilege escalation. Attackers with System privilege can exploit t...

CVE-2018-9405 is an out-of-bounds write vulnerability in Android's dm_agent component that allows local privilege escalation to System level. This aff...

CVE-2024-20151 is an out-of-bounds write vulnerability in MediaTek modem firmware that allows local privilege escalation. Attackers with initial Syste...

CVE-2024-20105 is an out-of-bounds write vulnerability in MediaTek's m4u (Memory Management Unit) driver that allows local privilege escalation. Attac...

This vulnerability allows local privilege escalation through a buffer overflow in the wbrc_bt_dev_write function of the wb_regon_coordinator.c compone...

CVE-2018-9386 is a stack buffer overflow vulnerability in the htc reboot_block driver that allows local privilege escalation. Attackers with system ex...

This vulnerability allows local privilege escalation on Android devices with MediaTek GPS chipsets. An attacker with system execution privileges can e...

This vulnerability allows local privilege escalation on affected Android devices through an out-of-bounds write in the touchscreen driver. Attackers w...

CVE-2018-9399 is a local privilege escalation vulnerability in the /proc/driver/wmt_dbg driver that allows attackers to write out of bounds memory. Th...

CVE-2018-9397 is an out-of-bounds write vulnerability in the MediaTek WMT device driver that allows local privilege escalation. Attackers with system ...

This vulnerability allows local attackers to write out-of-bounds memory in the MediaTek Wi-Fi driver, potentially leading to privilege escalation. It ...

CVE-2018-9392 is an out-of-bounds write vulnerability in the GPS hardware abstraction layer of MediaTek chipsets used in Android devices. This allows ...

CVE-2018-9376 is an out-of-bounds write vulnerability in the MediaTek ECCCI driver for Android, allowing local privilege escalation to system-level ac...

This CVE describes an out-of-bounds write vulnerability in MediaTek modem firmware that allows local privilege escalation without user interaction. At...

This CVE describes an out-of-bounds write vulnerability in the RIL (Radio Interface Layer) component of MediaTek chipsets. It allows local privilege e...

CVE-2024-20120 is an out-of-bounds write vulnerability in KeyInstall that allows local privilege escalation to System level without user interaction. ...

This CVE describes an out-of-bounds write vulnerability in the ccu component due to missing bounds checks. It allows local privilege escalation to Sys...

This vulnerability in MediaTek's ccu component allows local attackers to write beyond allocated memory boundaries, potentially leading to privilege es...

This CVE describes an out-of-bounds write vulnerability in MediaTek's ccu component that could allow local privilege escalation. Attackers with system...

This CVE describes an out-of-bounds write vulnerability in MediaTek's ccu component due to missing bounds checks. It allows local privilege escalation...

This CVE describes an out-of-bounds write vulnerability in MediaTek power management components that allows local privilege escalation. Attackers with...

A heap overflow vulnerability in Samsung Exynos mobile processors allows attackers to overwrite heap memory by sending unvalidated data to the slsi_ge...

A buffer overflow vulnerability in Micron Crucial MX500 SSDs allows attackers to execute arbitrary code on the drive controller by sending specially c...

This CVE describes an out-of-bounds write vulnerability in the vdec component of MediaTek chipsets, allowing local privilege escalation to System leve...

This vulnerability in Samsung Exynos mobile processors allows attackers to perform heap overwrite attacks by exploiting insufficient input validation ...

This vulnerability in Samsung Exynos mobile processors allows attackers to perform heap overwrite attacks by exploiting missing input validation in th...

This vulnerability in Samsung Exynos mobile processors allows attackers to overwrite heap memory by sending unvalidated input to the slsi_nan_config_g...

This vulnerability in Samsung Exynos mobile processors allows attackers to perform heap overwrite attacks by exploiting lack of input validation in th...

This CVE describes a kernel-level vulnerability in Android's dhd_msgbuf.c driver where improper input validation allows an out-of-bounds write. An att...

This CVE describes a buffer overflow vulnerability in the Android kernel's dhd_rtt.c file that allows local privilege escalation. Attackers with syste...

This CVE describes a heap buffer overflow vulnerability in Android's kernel that allows local privilege escalation. Attackers can gain SYSTEM privileg...

This CVE describes a buffer overflow vulnerability in the Android kernel's rtt_unpack_xtlv_cbfn function that allows local privilege escalation. Attac...

This vulnerability allows local privilege escalation on Android devices through an out-of-bounds write in the PNG image loading function. Attackers wi...

This vulnerability allows local privilege escalation on Android devices through an out-of-bounds write in the RIL (Radio Interface Layer) component. A...

This vulnerability allows local privilege escalation on Android devices through an out-of-bounds write in the Wi-Fi driver. Attackers with system exec...

An out-of-bounds write vulnerability in Grassroots DICOM library (GDCM) allows attackers to cause denial-of-service by crashing applications that pars...

An authenticated attacker can execute arbitrary code on FortiADC devices by sending specially crafted HTTP requests that trigger an out-of-bounds writ...

This vulnerability allows local attackers to write out-of-bounds memory in libsavsvc.so, potentially leading to memory corruption and privilege escala...

This vulnerability allows memory corruption during sound model registration for voice activation in Qualcomm audio kernel drivers. Attackers could pot...

This vulnerability allows memory corruption in Qualcomm Camera Request Manager (CRM) when handling schedule requests due to an invalid link count in s...

This CVE describes an out-of-bounds write vulnerability in MediaTek DA software that could allow local privilege escalation. An attacker with physical...

This CVE describes an out-of-bounds write vulnerability in V6 DA (likely a MediaTek component) that allows local privilege escalation. Attackers with ...

This vulnerability in V6 DA allows local privilege escalation through an out-of-bounds write due to missing bounds checks. An attacker with physical a...

This CVE describes an out-of-bounds write vulnerability in MediaTek's 'da' component due to missing bounds checks. It allows local privilege escalatio...

An off-by-one error in QEMU's KVM Xen guest support allows malicious guests to trigger out-of-bounds heap accesses via the Xen physdev hypercall inter...