CWE-787— Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.— MITRE CWE catalog
13,901 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-787page 101 of 279
- CVE-2021-27232HIGHCVSS 8.8EG 8.82021-02-16
The RTSPLive555.dll ActiveX control in Pelco Digital Sentry Server 7.18.72.11464 has a SetCameraConnectionParameter stack-based buffer overflow. This can be exploited by a remote attacker to potentially execute arbitrary attacker-supplied …
- CVE-2021-27242HIGHCVSS 8.8EG 8.82021-03-29
This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop 16.0.1-48919. An attacker must first obtain the ability to execute low-privileged code on the target guest system in order to e…
- CVE-2021-27253HIGHCVSS 8.8EG 8.82021-04-14
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR Nighthawk R7800. Although authentication is required to exploit this vulnerability, the existing authentication mechanism c…
- CVE-2021-27269HIGHCVSS 7.8EG 7.82021-03-30
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 10.1.0.37527. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or o…
- CVE-2021-27271HIGHCVSS 7.8EG 7.82021-03-30
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 10.1.0.37527. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or o…
- CVE-2021-27365HIGHCVSS 7.8EG 7.82021-03-07
An issue was discovered in the Linux kernel through 5.11.3. Certain iSCSI data structures do not have appropriate length constraints or checks, and can exceed the PAGE_SIZE value. An unprivileged user can send a Netlink message that is ass…
- CVE-2021-27380HIGHCVSS 7.8EG 7.82021-03-15
A vulnerability has been identified in Solid Edge SE2020 (All versions < SE2020MP13), Solid Edge SE2021 (All Versions < SE2021MP4). Affected applications lack proper validation of user-supplied data when parsing PAR files. This could resul…
- CVE-2021-27382HIGHCVSS 7.8EG 7.82021-04-22
A vulnerability has been identified in Solid Edge SE2020 (All versions < SE2020MP13), Solid Edge SE2020 (All versions < SE2020MP14), Solid Edge SE2021 (All Versions < SE2021MP4). Affected applications lack proper validation of user-supplie…
- CVE-2021-27387HIGHCVSS 7.8EG 7.82021-06-08
A vulnerability has been identified in Simcenter Femap 2020.2 (All versions < V2020.2.MP3), Simcenter Femap 2021.1 (All versions < V2021.1.MP3). The femap.exe application lacks proper validation of user-supplied data when parsing FEMAP fil…
- CVE-2021-27390HIGHCVSS 7.8EG 7.82021-06-08
A vulnerability has been identified in JT2Go (All versions < V13.1.0.3), Teamcenter Visualization (All versions < V13.1.0.3). The TIFF_loader.dll library in affected applications lacks proper validation of user-supplied data when parsing T…
- CVE-2021-27397HIGHCVSS 7.8EG 7.82021-05-12
A vulnerability has been identified in Tecnomatix Plant Simulation (All versions < V16.0.5). The PlantSimCore.dll library lacks proper validation of user-supplied data when parsing SPP files. This could result in a memory corruption condit…
- CVE-2021-27399HIGHCVSS 7.8EG 7.82021-06-08
A vulnerability has been identified in Simcenter Femap 2020.2 (All versions < V2020.2.MP3), Simcenter Femap 2021.1 (All versions < V2021.1.MP3). The femap.exe application lacks proper validation of user-supplied data when parsing FEMAP fil…
- CVE-2021-27410CRITICALCVSS 9.8EG 9.82021-06-11
The affected product is vulnerable to an out-of-bounds write, which may result in corruption of data or code execution on the Welch Allyn medical device management tools (Welch Allyn Service Tool: versions prior to v1.10, Welch Allyn Conne…
- CVE-2021-27413HIGHCVSS 7.8EG 7.82021-05-13
Omron CX-One Versions 4.60 and prior, including CX-Server Versions 5.0.29.0 and prior, are vulnerable to a stack-based buffer overflow, which may allow an attacker to execute arbitrary code.
- CVE-2021-27477HIGHCVSS 7.5EG 7.52021-07-01
When JTEKT Corporation TOYOPUC PLC versions PC10G-CPU, 2PORT-EFR, Plus CPU, Plus EX, Plus EX2, Plus EFR, Plus EFR2, Plus 2P-EFR, PC10P-DP, PC10P-DP-IO, Plus BUS-EX, Nano 10GX, Nano 2ET,PC10PE, PC10PE-16/16P, PC10E, FL/ET-T-V2H, PC10B,PC10B…
- CVE-2021-27488HIGHCVSS 7.8EG 7.82021-05-27
Datakit Software libraries CatiaV5_3dRead, CatiaV6_3dRead, Step3dRead, Ug3dReadPsr, Jt3dReadPsr modules in KeyShot Versions v10.1 and prior lack proper validation of user-supplied data when parsing CATPart files. This could result in an ou…
- CVE-2021-27562MEDIUMCVSS 5.5EG 9.0⚠ KEV2021-05-25
In Arm Trusted Firmware M through 1.2, the NS world may trigger a system halt, an overwrite of secure data, or the printing out of secure data when calling secure functions under the NSPE handler mode.
- CVE-2021-27620MEDIUMCVSS 5.9EG 5.92021-06-09
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input…
- CVE-2021-27622MEDIUMCVSS 5.9EG 5.92021-06-09
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input…
- CVE-2021-27623MEDIUMCVSS 5.9EG 5.92021-06-09
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input…
- CVE-2021-27624MEDIUMCVSS 5.9EG 5.92021-06-09
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input…
- CVE-2021-27625MEDIUMCVSS 5.9EG 5.92021-06-09
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input…
- CVE-2021-27626MEDIUMCVSS 5.9EG 5.92021-06-09
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input…
- CVE-2021-27627MEDIUMCVSS 5.9EG 5.92021-06-09
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input…
- CVE-2021-27628HIGHCVSS 7.5EG 7.52021-06-09
SAP NetWeaver ABAP Server and ABAP Platform (Dispatcher), versions - KRNL32NUC - 7.22,7.22EXT, KRNL32UC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73,7.77,7.81…
- CVE-2021-27633HIGHCVSS 7.5EG 7.52021-06-09
SAP NetWeaver AS for ABAP (RFC Gateway), versions - KRNL32NUC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73,7.77,7.81,7.82,7.83, allows an unauthenticated atta…
- CVE-2021-27634MEDIUMCVSS 5.9EG 5.92021-06-09
SAP NetWeaver AS for ABAP (RFC Gateway), versions - KRNL32NUC - 7.22,7.22EXT, KRNL64NUC - 7.22,7.22EXT,7.49, KRNL64UC - 8.04,7.22,7.22EXT,7.49,7.53,7.73, KERNEL - 7.22,8.04,7.49,7.53,7.73,7.77,7.81,7.82,7.83, allows an unauthenticated atta…
- CVE-2021-27790HIGHCVSS 7.8EG 7.82021-08-12
The command ipfilter in Brocade Fabric OS before Brocade Fabric OS v.9.0.1a, v8.2.3, and v8.2.0_CBN4, and v7.4.2h uses unsafe string function to process user input. Authenticated attackers can abuse this vulnerability to exploit stack-base…
- CVE-2021-27799HIGHCVSS 7.5EG 7.52021-02-26
ean_leading_zeroes in backend/upcean.c in Zint Barcode Generator 2.9.1 has a stack-based buffer overflow that is reachable from the C API through an application that includes the Zint Barcode Generator library code.
- CVE-2021-27804CRITICALCVSS 9.8EG 9.82021-03-02
JPEG XL (aka jpeg-xl) through 0.3.2 allows writable memory corruption.
- CVE-2021-27954HIGHCVSS 8.2EG 8.22021-08-03
A heap-based buffer overflow vulnerability exists on the ecobee3 lite 4.5.81.200 device in the HKProcessConfig function of the HomeKit Wireless Access Control setup process. A threat actor can exploit this vulnerability to force the device…
- CVE-2021-28021HIGHCVSS 7.8EG 7.82021-10-15
Buffer overflow vulnerability in function stbi__extend_receive in stb_image.h in stb 2.26 via a crafted JPEG file.
- CVE-2021-28026HIGHCVSS 7.8EG 7.82021-03-05
jpeg-xl v0.3.2 is affected by a heap buffer overflow in /lib/jxl/coeff_order.cc ReadPermutation. When decoding a malicous jxl file using djxl, an attacker can trigger arbitrary code execution or a denial of service.
- CVE-2021-28136MEDIUMCVSS 6.5EG 6.52021-09-07
The Bluetooth Classic implementation in Espressif ESP-IDF 4.4 and earlier does not properly handle the reception of multiple LMP IO Capability Request packets during the pairing process, allowing attackers in radio range to trigger memory …
- CVE-2021-28211MEDIUMCVSS 6.7EG 6.72021-06-11
A heap overflow in LzmaUefiDecompressGetInfo function in EDK II.
- CVE-2021-28233HIGHCVSS 8.8EG 8.82021-08-27
Heap-based Buffer Overflow vulnerability exists in ok-file-formats 1 via the ok_jpg_generate_huffman_table function in ok_jpg.c.
- CVE-2021-28237CRITICALCVSS 9.8EG 9.82021-12-02
LibreDWG v0.12.3 was discovered to contain a heap-buffer overflow via decode_preR13.
- CVE-2021-28277HIGHCVSS 7.8EG 7.82022-03-23
A Heap-based Buffer Overflow vulnerabilty exists in jhead 3.04 and 3.05 is affected by: Buffer Overflow via the RemoveUnknownSections function in jpgfile.c.
- CVE-2021-28278HIGHCVSS 7.8EG 7.82022-03-23
A Heap-based Buffer Overflow vulnerability exists in jhead 3.04 and 3.05 via the RemoveSectionType function in jpgfile.c.
- CVE-2021-28310HIGHCVSS 7.8EG 9.0⚠ KEV2021-04-13
Win32k Elevation of Privilege Vulnerability
- CVE-2021-28452HIGHCVSS 7.1EG 7.82021-04-13
Microsoft Outlook Memory Corruption Vulnerability
- CVE-2021-28465HIGHCVSS 7.8EG 7.82021-05-11
Web Media Extensions Remote Code Execution Vulnerability
- CVE-2021-28561HIGHCVSS 8.8EG 8.82021-09-02
Acrobat Reader DC versions versions 2021.001.20150 (and earlier), 2020.001.30020 (and earlier) and 2017.011.30194 (and earlier) are affected by a memory corruption vulnerability. An unauthenticated attacker could leverage this vulnerabilit…
- CVE-2021-28564HIGHCVSS 8.8EG 8.82021-09-02
Acrobat Reader DC versions versions 2021.001.20150 (and earlier), 2020.001.30020 (and earlier) and 2017.011.30194 (and earlier) are affected by an Out-of-bounds Write vulnerability within the ImageTool component. An unauthenticated attacke…
- CVE-2021-28586HIGHCVSS 7.8EG 7.82021-06-28
After Effects version 18.0 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a …
- CVE-2021-28591HIGHCVSS 7.8EG 7.82021-08-20
Adobe Illustrator version 25.2.3 (and earlier) is affected by an Out-of-bounds Write vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in …
- CVE-2021-28592HIGHCVSS 7.8EG 7.82021-08-20
Adobe Illustrator version 25.2.3 (and earlier) is affected by an Out-of-bounds Write vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in …
- CVE-2021-28596HIGHCVSS 7.8EG 7.82021-08-23
Adobe Framemaker version 2020.0.1 (and earlier) and 2019.0.8 (and earlier) are affected by an Out-of-bounds Write vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve…
- CVE-2021-28602HIGHCVSS 7.8EG 7.82021-08-24
Adobe After Effects version 18.2 (and earlier) is affected by a memory corruption vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the…
- CVE-2021-28603HIGHCVSS 7.8EG 7.82021-08-24
Adobe After Effects version 18.2 (and earlier) is affected by a Heap-based Buffer Overflow vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code executi…
Map vulnerabilities like CWE-787 to your infrastructure
EchelonGraph correlates every CVE — across CWE-787 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →