CWE-125— Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.— MITRE CWE catalog
8,185 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-125page 101 of 164
- CVE-2023-34101HIGHCVSS 7.3EG 7.32023-06-14
Contiki-NG is an operating system for internet of things devices. In version 4.8 and prior, when processing ICMP DAO packets in the `dao_input_storing` function, the Contiki-NG OS does not verify that the packet buffer is big enough to con…
- CVE-2023-3425MEDIUMCVSS 6.5EG 6.52023-08-25
Out-of-bounds read issue in M-Files Server versions below 23.8.12892.6 and LTS Service Release Versions before 23.2 LTS SR3 allows unauthenticated user to read restricted amount of bytes from memory.
- CVE-2023-34256MEDIUMCVSS 5.5EG 5.52023-05-31
An issue was discovered in the Linux kernel before 6.3.3. There is an out-of-bounds read in crc16 in lib/crc16.c when called from fs/ext4/super.c because ext4_group_desc_csum does not properly check an offset. NOTE: this is disputed by thi…
- CVE-2023-34303HIGHCVSS 7.8EG 7.82024-05-03
Ashlar-Vellum Cobalt Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit th…
- CVE-2023-34358HIGHCVSS 7.5EG 7.52023-07-31
ASUS RT-AX88U's httpd is subject to an unauthenticated DoS condition. A remote attacker can send a specially crafted request to a device which contains a specific user agent, causing the httpd binary to crash during a string comparison per…
- CVE-2023-34359HIGHCVSS 7.5EG 7.52023-07-31
ASUS RT-AX88U's httpd is subject to an unauthenticated DoS condition. A remote attacker can send a specially crafted request to the device which causes the httpd binary to crash within the "do_json_decode()" function of ej.c, resulting in …
- CVE-2023-34401LOWCVSS 3.7EG 3.72025-02-13
Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB. Inside profile folder there is a file, which is encoded with proprietary UD2 codec. Due to missed size checks in the enapsulate file, attacker c…
- CVE-2023-3487HIGHCVSS 7.7EG 7.72023-10-20
An integer overflow in Silicon Labs Gecko Bootloader version 4.3.1 and earlier allows unbounded memory access when reading from or writing to storage slots.
- CVE-2023-3497MEDIUMCVSS 4.6EG 4.62023-07-03
Out of bounds read in Google Security Processor firmware in Google Chrome on Chrome OS prior to 114.0.5735.90 allowed a local attacker to perform denial of service via physical access to the device. (Chromium security severity: Medium)
- CVE-2023-3523HIGHCVSS 7.1EG 6.12023-07-06
Out-of-bounds Read in GitHub repository gpac/gpac prior to 2.2.2.
- CVE-2023-35296MEDIUMCVSS 6.5EG 6.52023-07-11
Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability
- CVE-2023-35299HIGHCVSS 7.8EG 7.82023-07-11
Windows Common Log File System Driver Elevation of Privilege Vulnerability
- CVE-2023-35314MEDIUMCVSS 6.5EG 6.52023-07-11
Remote Procedure Call Runtime Denial of Service Vulnerability
- CVE-2023-35316MEDIUMCVSS 6.5EG 6.52023-07-11
Remote Procedure Call Runtime Information Disclosure Vulnerability
- CVE-2023-35318MEDIUMCVSS 6.5EG 6.52023-07-11
Remote Procedure Call Runtime Denial of Service Vulnerability
- CVE-2023-35319MEDIUMCVSS 6.5EG 6.52023-07-11
Remote Procedure Call Runtime Denial of Service Vulnerability
- CVE-2023-35357HIGHCVSS 7.8EG 7.82023-07-11
Windows Kernel Elevation of Privilege Vulnerability
- CVE-2023-35358HIGHCVSS 7.8EG 7.82023-07-11
Windows Kernel Elevation of Privilege Vulnerability
- CVE-2023-35386HIGHCVSS 7.8EG 7.82023-08-08
Windows Kernel Elevation of Privilege Vulnerability
- CVE-2023-35629MEDIUMCVSS 6.8EG 6.82023-12-12
Microsoft USBHUB 3.0 Device Driver Remote Code Execution Vulnerability
- CVE-2023-35635MEDIUMCVSS 5.5EG 5.52023-12-12
Windows Kernel Denial of Service Vulnerability
- CVE-2023-35647CRITICALCVSS 9.8EG 9.82023-10-11
In ProtocolEmbmsGlobalCellIdAdapter::Init() of protocolembmsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with baseband firmware compromise required. Use…
- CVE-2023-35648CRITICALCVSS 9.8EG 9.82023-10-11
In ProtocolMiscLceIndAdapter::GetConfLevel() of protocolmiscadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with baseband firmware compromise required. Use…
- CVE-2023-35652HIGHCVSS 7.5EG 7.52023-10-11
In ProtocolEmergencyCallListIndAdapter::Init of protocolcalladapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with baseband firmware compromise required. Use…
- CVE-2023-35654MEDIUMCVSS 6.7EG 6.72023-10-11
In ctrl_roi of stmvl53l1_module.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploi…
- CVE-2023-35655MEDIUMCVSS 6.7EG 6.72023-10-11
In CanConvertPadV2Op of darwinn_mlir_converter_aidl.cc, there is a possible out of bounds read due to a heap buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not…
- CVE-2023-35656HIGHCVSS 7.5EG 7.52023-10-18
In multiple functions of protocolembmsadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User int…
- CVE-2023-35657MEDIUMCVSS 4.0EG 4.02025-09-04
In bta_av_config_ind of bta_av_aact.cc, there is a possible out of bounds read due to type confusion. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploi…
- CVE-2023-35661HIGHCVSS 7.5EG 7.52023-10-11
In ProfSixDecomTcpSACKoption of RohcPacketCommon.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction i…
- CVE-2023-35663HIGHCVSS 7.5EG 7.52023-10-18
In Init of protocolnetadapter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not…
- CVE-2023-35664MEDIUMCVSS 5.5EG 5.52023-09-11
In convertSubgraphFromHAL of ShimConverter.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not n…
- CVE-2023-35679MEDIUMCVSS 5.5EG 5.52023-09-11
In MtpPropertyValue of MtpProperty.h, there is a possible out of bounds read due to uninitialized data. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploita…
- CVE-2023-35691HIGHCVSS 7.2EG 7.22023-07-13
there is a possible out of bounds read due to a missing bounds check. This could lead to remote denial of service with System execution privileges needed. User interaction is not needed for exploitation.
- CVE-2023-35694HIGHCVSS 7.5EG 7.52023-07-13
In DMPixelLogger_ProcessDmCommand of DMPixelLogger.cpp, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction…
- CVE-2023-35714HIGHCVSS 7.8EG 7.82024-05-03
Ashlar-Vellum Cobalt IGS File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is requi…
- CVE-2023-35716HIGHCVSS 7.8EG 7.82024-05-03
Ashlar-Vellum Cobalt AR File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is requir…
- CVE-2023-35862MEDIUMCVSS 6.5EG 6.52023-06-19
libcoap 4.3.1 contains a buffer over-read via the function coap_parse_oscore_conf_mem at coap_oscore.c.
- CVE-2023-36201HIGHCVSS 7.5EG 7.52023-07-07
An issue in JerryscriptProject jerryscript v.3.0.0 allows an attacker to obtain sensitive information via a crafted script to the arrays.
- CVE-2023-36356HIGHCVSS 7.7EG 7.72023-06-22
TP-Link TL-WR940N V2/V4/V6, TL-WR841N V8, TL-WR941ND V5, and TL-WR740N V1/V2 were discovered to contain a buffer read out-of-bounds via the component /userRpm/VirtualServerRpm. This vulnerability allows attackers to cause a Denial of Servi…
- CVE-2023-36424HIGHCVSS 7.8EG 9.0⚠ KEV2023-11-14
Windows Common Log File System Driver Elevation of Privilege Vulnerability
- CVE-2023-36428MEDIUMCVSS 5.5EG 5.52023-11-14
Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability
- CVE-2023-3646MEDIUMCVSS 5.9EG 5.92023-08-29
On affected platforms running Arista EOS with mirroring to multiple destinations configured, an internal system error may trigger a kernel panic and cause system reload.
- CVE-2023-3649MEDIUMCVSS 5.3EG 5.32023-07-14
iSCSI dissector crash in Wireshark 4.0.0 to 4.0.6 allows denial of service via packet injection or crafted capture file
- CVE-2023-36629MEDIUMCVSS 5.5EG 5.52024-01-09
The ST ST54-android-packages-apps-Nfc package before 130-20230215-23W07p0 for Android has an out-of-bounds read.
- CVE-2023-36696HIGHCVSS 7.8EG 7.82023-12-12
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
- CVE-2023-36701HIGHCVSS 7.8EG 7.82023-10-10
Microsoft Resilient File System (ReFS) Elevation of Privilege Vulnerability
- CVE-2023-36728MEDIUMCVSS 5.5EG 5.52023-10-10
Microsoft SQL Server Denial of Service Vulnerability
- CVE-2023-36766HIGHCVSS 7.8EG 7.82023-09-12
Microsoft Excel Information Disclosure Vulnerability
- CVE-2023-36803MEDIUMCVSS 5.5EG 5.52023-09-12
Windows Kernel Information Disclosure Vulnerability
- CVE-2023-36838MEDIUMCVSS 5.5EG 5.52023-07-14
An Out-of-bounds Read vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS on SRX Series allows a local, authenticated attacker with low privileges, to cause a Denial of Service (DoS). If a low privileged user …
Map vulnerabilities like CWE-125 to your infrastructure
EchelonGraph correlates every CVE — across CWE-125 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →