CWE-787— Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.— MITRE CWE catalog
13,901 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-787page 100 of 279
- CVE-2021-26233HIGHCVSS 7.8EG 7.82021-03-18
FastStone Image Viewer <= 7.5 is affected by a user mode write access violation near NULL at 0x005bdfcb, triggered when a user opens or views a malformed CUR file that is mishandled by FSViewer.exe. Attackers could exploit this issue for a…
- CVE-2021-26234HIGHCVSS 7.8EG 7.82021-03-18
FastStone Image Viewer <= 7.5 is affected by a user mode write access violation at 0x00402d8a, triggered when a user opens or views a malformed CUR file that is mishandled by FSViewer.exe. Attackers could exploit this issue for a Denial of…
- CVE-2021-26236HIGHCVSS 7.8EG 7.82021-03-18
FastStone Image Viewer v.<= 7.5 is affected by a Stack-based Buffer Overflow at 0x005BDF49, affecting the CUR file parsing functionality (BITMAPINFOHEADER Structure, 'BitCount' file format field), that will end up corrupting the Structure …
- CVE-2021-26237HIGHCVSS 7.8EG 7.82021-03-18
FastStone Image Viewer <= 7.5 is affected by a user mode write access violation at 0x00402d7d, triggered when a user opens or views a malformed CUR file that is mishandled by FSViewer.exe. Attackers could exploit this issue for a Denial of…
- CVE-2021-26252HIGHCVSS 7.8EG 7.82022-02-24
A flaw was found in htmldoc in v1.9.12. Heap buffer overflow in pspdf_prepare_page(),in ps-pdf.cxx may lead to execute arbitrary code and denial of service.
- CVE-2021-26259HIGHCVSS 7.8EG 7.82022-03-03
A flaw was found in htmldoc in v1.9.12. Heap buffer overflow in render_table_row(),in ps-pdf.cxx may lead to arbitrary code execution and denial of service.
- CVE-2021-26330MEDIUMCVSS 5.5EG 5.52021-11-16
AMD System Management Unit (SMU) may experience a heap-based overflow which may result in a loss of resources.
- CVE-2021-26344HIGHCVSS 7.2EG 7.22024-08-13
An out of bounds memory write when processing the AMD PSP1 Configuration Block (APCB) could allow an attacker with access the ability to modify the BIOS image, and the ability to sign the resulting image, to potentially modify the APCB blo…
- CVE-2021-26383HIGHCVSS 7.9EG 7.92025-09-06
Insufficient bounds checking in AMD TEE (Trusted Execution Environment) could allow an attacker with a compromised userspace to invoke a command with malformed arguments leading to out of bounds memory access, potentially resulting in loss…
- CVE-2021-26384HIGHCVSS 7.8EG 7.82022-07-14
A malformed SMI (System Management Interface) command may allow an attacker to establish a corrupted SMI Trigger Info data structure, potentially leading to out-of-bounds memory reads and writes when triggering an SMI resulting in a potent…
- CVE-2021-26386HIGHCVSS 7.8EG 7.82022-05-12
A malicious or compromised UApp or ABL may be used by an attacker to issue a malformed system call to the Stage 2 Bootloader potentially leading to corrupt memory and code execution.
- CVE-2021-26392HIGHCVSS 7.8EG 7.82022-11-09
Insufficient verification of missing size check in 'LoadModule' may lead to an out-of-bounds write potentially allowing an attacker with privileges to gain code execution of the OS/kernel by loading a malicious TA.
- CVE-2021-26398HIGHCVSS 7.8EG 7.82023-01-11
Insufficient input validation in SYS_KEY_DERIVE system call in a compromised user application or ABL may allow an attacker to corrupt ASP (AMD Secure Processor) OS memory which may lead to potential arbitrary code execution.
- CVE-2021-26402HIGHCVSS 7.1EG 7.12023-01-11
Insufficient bounds checking in ASP (AMD Secure Processor) firmware while handling BIOS mailbox commands, may allow an attacker to write partially-controlled data out-of-bounds to SMM or SEV-ES regions which may lead to a potential loss of…
- CVE-2021-26411HIGHCVSS 8.8EG 9.0⚠ KEV2021-03-11
Internet Explorer Memory Corruption Vulnerability
- CVE-2021-26419HIGHCVSS 7.5EG 7.52021-05-11
Scripting Engine Memory Corruption Vulnerability
- CVE-2021-26435HIGHCVSS 8.1EG 8.12021-09-15
Windows Scripting Engine Memory Corruption Vulnerability
- CVE-2021-26528CRITICALCVSS 9.1EG 9.12021-02-08
The mg_http_serve_file function in Cesanta Mongoose HTTP server 7.0 is vulnerable to remote OOB write attack via connection request after exhausting memory pool.
- CVE-2021-26529CRITICALCVSS 9.1EG 9.12021-02-08
The mg_tls_init function in Cesanta Mongoose HTTPS server 7.0 and 6.7-6.18 (compiled with mbedTLS support) is vulnerable to remote OOB write attack via connection request after exhausting memory pool.
- CVE-2021-26530CRITICALCVSS 9.1EG 9.12021-02-08
The mg_tls_init function in Cesanta Mongoose HTTPS server 7.0 (compiled with OpenSSL support) is vulnerable to remote OOB write attack via connection request after exhausting memory pool.
- CVE-2021-26562CRITICALCVSS 9.0EG 8.12021-02-26
Out-of-bounds write vulnerability in synoagentregisterd in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows man-in-the-middle attackers to execute arbitrary code via syno_finder_site HTTP header.
- CVE-2021-26567HIGHCVSS 7.8EG 7.82021-02-26
Stack-based buffer overflow vulnerability in frontend/main.c in faad2 before 2.2.7.1 allow local attackers to execute arbitrary code via filename and pathname options.
- CVE-2021-26603HIGHCVSS 8.6EG 8.62021-09-09
A heap overflow issue was found in ARK library of bandisoft Co., Ltd when the Ark_DigPathA function parsed a file path. This vulnerability is due to missing support for string length check.
- CVE-2021-26623HIGHCVSS 7.8EG 9.82022-04-01
A remote code execution vulnerability due to incomplete check for 'xheader_decode_path_record' function's parameter length value in the ark library. Remote attackers can induce exploit malicious code using this function.
- CVE-2021-26635HIGHCVSS 7.8EG 7.82022-06-02
In the code that verifies the file size in the ark library, it is possible to manipulate the offset read from the target file due to the wrong use of the data type. An attacker could use this vulnerability to cause a stack buffer overflow …
- CVE-2021-26675HIGHCVSS 8.8EG 8.82021-02-09
A stack-based buffer overflow in dnsproxy in ConnMan before 1.39 could be used by network adjacent attackers to execute code.
- CVE-2021-26691CRITICALCVSS 9.8EG 9.82021-06-10
In Apache HTTP Server versions 2.4.0 to 2.4.46 a specially crafted SessionHeader sent by an origin server could cause a heap overflow
- CVE-2021-26709CRITICALCVSS 9.8EG 9.82021-04-07
D-Link DSL-320B-D1 devices through EU_1.25 are prone to multiple Stack-Based Buffer Overflows that allow unauthenticated remote attackers to take over a device via the login.xgi user and pass parameters. NOTE: This vulnerability only affec…
- CVE-2021-26713MEDIUMCVSS 6.5EG 6.52021-02-19
A stack-based buffer overflow in res_rtp_asterisk.c in Sangoma Asterisk before 16.16.1, 17.x before 17.9.2, and 18.x before 18.2.1 and Certified Asterisk before 16.8-cert6 allows an authenticated WebRTC client to cause an Asterisk crash by…
- CVE-2021-26727CRITICALCVSS 10.0EG 9.82022-10-24
Multiple command injections and stack-based buffer overflows vulnerabilities in the SubNet_handler_func function of spx_restservice allow an attacker to execute arbitrary code with the same privileges as the server user (root). This issue …
- CVE-2021-26728CRITICALCVSS 10.0EG 9.82022-10-24
Command injection and stack-based buffer overflow vulnerabilities in the KillDupUsr_func function of spx_restservice allow an attacker to execute arbitrary code with the same privileges as the server user (root). This issue affects: Lanner…
- CVE-2021-26729CRITICALCVSS 10.0EG 9.82022-10-24
Command injection and multiple stack-based buffer overflows vulnerabilities in the Login_handler_func function of spx_restservice allow an attacker to execute arbitrary code with the same privileges as the server user (root). This issue af…
- CVE-2021-26730CRITICALCVSS 10.0EG 9.82022-10-24
A stack-based buffer overflow vulnerability in a subfunction of the Login_handler_func function of spx_restservice allows an attacker to execute arbitrary code with the same privileges as the server user (root). This issue affects: Lanner …
- CVE-2021-26731CRITICALCVSS 9.1EG 9.82022-10-24
Command injection and multiple stack-based buffer overflows vulnerabilities in the modifyUserb_func function of spx_restservice allow an authenticated attacker to execute arbitrary code with the same privileges as the server user (root). T…
- CVE-2021-26826HIGHCVSS 7.8EG 7.82021-02-08
A stack overflow issue exists in Godot Engine up to v3.2 and is caused by improper boundary checks when loading .TGA image files. Depending on the context of the application, attack vector can be local or remote, and can lead to code execu…
- CVE-2021-26951CRITICALCVSS 9.8EG 9.82021-02-09
An issue was discovered in the calamine crate before 0.17.0 for Rust. It allows attackers to overwrite heap-memory locations because Vec::set_len is used without proper memory claiming, and this uninitialized memory is used for a user-prov…
- CVE-2021-27027HIGHCVSS 7.8EG 7.82021-04-19
An Out-Of-Bounds Read Vulnerability in Autodesk FBX Review version 1.5.0 and prior may lead to code execution through maliciously crafted DLL files or information disclosure.
- CVE-2021-27028HIGHCVSS 7.8EG 7.82021-04-19
A Memory Corruption Vulnerability in Autodesk FBX Review version 1.5.0 and prior may lead to remote code execution through maliciously crafted DLL files.
- CVE-2021-27034HIGHCVSS 7.8EG 7.82021-07-09
A heap-based buffer overflow could occur while parsing PICT, PCX, RCL or TIFF files in Autodesk Design Review 2018, 2017, 2013, 2012, 2011. This vulnerability can be exploited to execute arbitrary code.
- CVE-2021-27035HIGHCVSS 7.8EG 7.82021-07-09
A maliciously crafted TIFF, TIF, PICT, TGA, or DWF files in Autodesk Design Review 2018, 2017, 2013, 2012, 2011 can be forced to read beyond allocated boundaries when parsing the TIFF, PICT, TGA or DWF files. This vulnerability in conjunct…
- CVE-2021-27036HIGHCVSS 7.8EG 7.82021-07-09
A maliciously crafted PCX, PICT, RCL, TIF, BMP, PSD or TIFF file can be used to write beyond the allocated buffer while parsing PCX, PDF, PICT, RCL, BMP, PSD or TIFF files. This vulnerability can be exploited to execute arbitrary code
- CVE-2021-27039HIGHCVSS 7.8EG 7.82021-07-09
A maliciously crafted TIFF and PCX file can be forced to read and write beyond allocated boundaries when parsing the TIFF and PCX file for based overflow. This vulnerability can be exploited to execute arbitrary code.
- CVE-2021-27040LOWCVSS 3.3EG 3.32021-06-25
A maliciously crafted DWG file can be forced to read beyond allocated boundaries when parsing the DWG file. This vulnerability can be exploited to execute arbitrary code.
- CVE-2021-27041HIGHCVSS 7.8EG 7.82021-06-25
A maliciously crafted DWG file can be used to write beyond the allocated buffer while parsing DWG files. This vulnerability can be exploited to execute arbitrary code
- CVE-2021-27043HIGHCVSS 7.8EG 5.52021-06-25
An Arbitrary Address Write issue in the Autodesk DWG application can allow a malicious user to leverage the application to write in unexpected paths. In order to exploit this the attacker would need the victim to enable full page heap in t…
- CVE-2021-27044HIGHCVSS 7.8EG 7.82021-09-15
A Out-Of-Bounds Read/Write Vulnerability in Autodesk FBX Review version 1.4.0 may lead to remote code execution through maliciously crafted DLL files or information disclosure.
- CVE-2021-27046HIGHCVSS 7.8EG 7.82021-09-15
A Memory Corruption vulnerability for PDF files in Autodesk Navisworks 2019, 2020, 2021, 2022 may lead to code execution through maliciously crafted DLL files.
- CVE-2021-27114CRITICALCVSS 9.8EG 9.82021-04-14
An issue was discovered in D-Link DIR-816 A2 1.10 B05 devices. Within the handler function of the /goform/addassignment route, a very long text entry for the"'s_ip" and "s_mac" fields could lead to a Stack-Based Buffer Overflow and overwri…
- CVE-2021-27171CRITICALCVSS 9.8EG 9.82021-02-10
An issue was discovered on FiberHome HG6245D devices through RP2613. It is possible to start a Linux telnetd as root on port 26/tcp by using the CLI interface commands of ddd and shell (or tshell).
- CVE-2021-27224HIGHCVSS 7.5EG 7.52021-02-17
The WPG plugin before 3.1.0.0 for IrfanView 4.57 has a user-mode write access violation starting at WPG+0x0000000000012ec6, which might allow remote attackers to execute arbitrary code.
Map vulnerabilities like CWE-787 to your infrastructure
EchelonGraph correlates every CVE — across CWE-787 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →