CWE-787— Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.— MITRE CWE catalog
13,901 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-787page 108 of 279
- CVE-2021-33268CRITICALCVSS 9.8EG 9.82021-12-01
D-Link DIR-809 devices with firmware through DIR-809Ax_FW1.12WWB03_20190410 were discovered to contain a stack buffer overflow vulnerability in the function sub_8003183C in /fromLogin. This vulnerability is triggered via a crafted POST req…
- CVE-2021-33269CRITICALCVSS 9.8EG 9.82021-12-01
D-Link DIR-809 devices with firmware through DIR-809Ax_FW1.12WWB03_20190410 were discovered to contain a stack buffer overflow vulnerability in the function FUN_8004776c in /formVirtualServ. This vulnerability is triggered via a crafted PO…
- CVE-2021-33270CRITICALCVSS 9.8EG 9.82021-12-01
D-Link DIR-809 devices with firmware through DIR-809Ax_FW1.12WWB03_20190410 were discovered to contain a stack buffer overflow vulnerability in the function FUN_800462c4 in /formAdvFirewall. This vulnerability is triggered via a crafted PO…
- CVE-2021-33271CRITICALCVSS 9.8EG 9.82021-12-01
D-Link DIR-809 devices with firmware through DIR-809Ax_FW1.12WWB03_20190410 were discovered to contain a stack buffer overflow vulnerability in the function sub_80046EB4 in /formSetPortTr. This vulnerability is triggered via a crafted POST…
- CVE-2021-33274CRITICALCVSS 9.8EG 9.82021-12-01
D-Link DIR-809 devices with firmware through DIR-809Ax_FW1.12WWB03_20190410 were discovered to contain a stack buffer overflow vulnerability in the function FUN_80040af8 in /formWlanSetup. This vulnerability is triggered via a crafted POST…
- CVE-2021-33285HIGHCVSS 7.8EG 7.82021-09-07
In NTFS-3G versions < 2021.8.22, when a specially crafted NTFS attribute is supplied to the function ntfs_get_attribute_value, a heap buffer overflow can occur allowing for memory disclosure or denial of service. The vulnerability is cause…
- CVE-2021-33286HIGHCVSS 7.8EG 7.82021-09-07
In NTFS-3G versions < 2021.8.22, when a specially crafted unicode string is supplied in an NTFS image a heap buffer overflow can occur and allow for code execution.
- CVE-2021-33287HIGHCVSS 7.8EG 7.82021-09-07
In NTFS-3G versions < 2021.8.22, when specially crafted NTFS attributes are read in the function ntfs_attr_pread_i, a heap buffer overflow can occur and allow for writing to arbitrary memory or denial of service of the application.
- CVE-2021-33289HIGHCVSS 7.8EG 7.82021-09-07
In NTFS-3G versions < 2021.8.22, when a specially crafted MFT section is supplied in an NTFS image a heap buffer overflow can occur and allow for code execution.
- CVE-2021-3330HIGHCVSS 7.1EG 7.12021-10-12
RCE/DOS: Linked-list corruption leading to large out-of-bounds write while sorting for forged fragment list in Zephyr. Zephyr versions >= >=2.4.0 contain Out-of-bounds Write (CWE-787). For more information, see https://github.com/zephyrpro…
- CVE-2021-33362HIGHCVSS 7.8EG 7.82021-09-13
Stack buffer overflow in the hevc_parse_vps_extension function in MP4Box in GPAC 1.0.1 allows attackers to cause a denial of service or execute arbitrary code via a crafted file.
- CVE-2021-33388CRITICALCVSS 9.8EG 9.82023-08-22
dpic 2021.04.10 has a Heap Buffer Overflow in themakevar() function in dpic.y
- CVE-2021-33438MEDIUMCVSS 5.5EG 5.52022-07-26
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is stack buffer overflow in json_parse_array() in mjs.c.
- CVE-2021-33443MEDIUMCVSS 5.5EG 5.52022-07-26
An issue was discovered in mjs (mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is stack buffer overflow in mjs_execute() in mjs.c.
- CVE-2021-33448MEDIUMCVSS 5.5EG 5.52022-07-26
An issue was discovered in mjs(mJS: Restricted JavaScript engine), ES6 (JavaScript version 6). There is stack buffer overflow at 0x7fffe9049390.
- CVE-2021-3345HIGHCVSS 7.8EG 7.82021-01-29
_gcry_md_block_write in cipher/hash-common.c in Libgcrypt version 1.9.0 has a heap-based buffer overflow when the digest final function sets a large count value. It is recommended to upgrade to 1.9.1 or later.
- CVE-2021-33464MEDIUMCVSS 5.5EG 5.52022-07-26
An issue was discovered in yasm version 1.3.0. There is a heap-buffer-overflow in inc_fopen() in modules/preprocs/nasm/nasm-pp.c.
- CVE-2021-33479HIGHCVSS 7.8EG 7.82021-11-17
A stack-based buffer overflow vulnerability was discovered in gocr through 0.53-20200802 in measure_pitch() in pgm2asc.c.
- CVE-2021-33481HIGHCVSS 7.8EG 7.82021-11-17
A stack-based buffer overflow vulnerability was discovered in gocr through 0.53-20200802 in try_to_divide_boxes() in pgm2asc.c.
- CVE-2021-33485CRITICALCVSS 9.8EG 9.82021-08-03
CODESYS Control Runtime system before 3.5.17.10 has a Heap-based Buffer Overflow.
- CVE-2021-33545HIGHCVSS 7.2EG 7.22021-09-13
Multiple camera devices by UDP Technology, Geutebrück and other vendors are vulnerable to a stack-based buffer overflow condition in the counter parameter which may allow an attacker to remotely execute arbitrary code.
- CVE-2021-33590CRITICALCVSS 9.8EG 9.82021-05-27
GattLib 0.3-rc1 has a stack-based buffer over-read in get_device_path_from_mac in dbus/gattlib.c.
- CVE-2021-33647HIGHCVSS 7.5EG 7.52022-06-27
When performing the inference shape operation of the Tile operator, if the input data type is not int or int32, it will access data outside of bounds of heap allocated buffers.
- CVE-2021-33655MEDIUMCVSS 6.7EG 7.82022-07-18
When sending malicous data to kernel by ioctl cmd FBIOPUT_VSCREENINFO,kernel will write memory out of bounds.
- CVE-2021-33656MEDIUMCVSS 6.8EG 7.82022-07-18
When setting font with malicous data by ioctl cmd PIO_FONT,kernel will write memory out of bounds.
- CVE-2021-33657HIGHCVSS 8.8EG 8.82022-04-01
There is a heap overflow problem in video/SDL_pixels.c in SDL (Simple DirectMedia Layer) 2.x to 2.0.18 versions. By crafting a malicious .BMP file, an attacker can cause the application using this library to crash, denial of service or Cod…
- CVE-2021-33681MEDIUMCVSS 6.5EG 6.52021-07-14
SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated CGM file received from untrusted sources which causes out of bounds write and causes the application to crash and becoming temporarily unavailable until the us…
- CVE-2021-33684MEDIUMCVSS 5.3EG 5.32021-07-14
SAP NetWeaver AS ABAP and ABAP Platform, versions - KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, KRNL64UC 8.04, 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.53, KERNE…
- CVE-2021-33742HIGHCVSS 7.5EG 9.0⚠ KEV2021-06-08
Windows MSHTML Platform Remote Code Execution Vulnerability
- CVE-2021-3375CRITICALCVSS 9.8EG 9.82021-02-15
ActivePresenter 6.1.6 is affected by a memory corruption vulnerability that may result in a denial of service (DoS) or arbitrary code execution.
- CVE-2021-33792HIGHCVSS 7.8EG 7.82021-07-09
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 have an out-of-bounds write via a crafted /Size key in the Trailer dictionary.
- CVE-2021-33793CRITICALCVSS 9.8EG 9.82021-08-11
Foxit Reader before 10.1.4 and PhantomPDF before 10.1.4 have an out-of-bounds write because the Cross-Reference table is mishandled during Office document conversion.
- CVE-2021-3382HIGHCVSS 7.5EG 7.52021-02-05
Stack buffer overflow vulnerability in gitea 1.9.0 through 1.13.1 allows remote attackers to cause a denial of service (crash) via vectors related to a file path.
- CVE-2021-33833CRITICALCVSS 9.8EG 9.82021-06-09
ConnMan (aka Connection Manager) 1.30 through 1.39 has a stack-based buffer overflow in uncompress in dnsproxy.c via NAME, RDATA, or RDLENGTH (for A or AAAA).
- CVE-2021-33834HIGHCVSS 7.1EG 7.12023-09-08
An issue was discovered in iscflashx64.sys 3.9.3.0 in Insyde H2OFFT 6.20.00. When handling IOCTL 0x22229a, the input used to allocate a buffer and copy memory is mishandled. This could cause memory corruption or a system crash.
- CVE-2021-33889MEDIUMCVSS 6.8EG 6.82021-07-02
OpenThread wpantund through 2021-07-02 has a stack-based Buffer Overflow because of an inconsistency in the integer data type for metric_len.
- CVE-2021-33909HIGHCVSS 7.8EG 7.82021-07-20
fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd8…
- CVE-2021-33912CRITICALCVSS 9.8EG 9.82022-01-19
libspf2 before 1.2.11 has a four-byte heap-based buffer overflow that might allow remote attackers to execute arbitrary code (via an unauthenticated e-mail message from anywhere on the Internet) with a crafted SPF DNS record, because of in…
- CVE-2021-33913CRITICALCVSS 9.8EG 9.82022-01-19
libspf2 before 1.2.11 has a heap-based buffer overflow that might allow remote attackers to execute arbitrary code (via an unauthenticated e-mail message from anywhere on the Internet) with a crafted SPF DNS record, because of SPF_record_e…
- CVE-2021-33928HIGHCVSS 7.5EG 7.52021-09-02
Buffer overflow vulnerability in function pool_installable in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
- CVE-2021-33929HIGHCVSS 7.5EG 7.52021-09-02
Buffer overflow vulnerability in function pool_disabled_solvable in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
- CVE-2021-33930HIGHCVSS 7.5EG 7.52021-09-02
Buffer overflow vulnerability in function pool_installable_whatprovides in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
- CVE-2021-33938HIGHCVSS 7.5EG 7.52021-09-02
Buffer overflow vulnerability in function prune_to_recommended in src/policy.c in libsolv before 0.7.17 allows attackers to cause a Denial of Service.
- CVE-2021-33945CRITICALCVSS 9.8EG 9.82022-02-15
RICOH Printer series SP products 320DN, SP 325DNw, SP 320SN, SP 320SFN, SP 325SNw, SP 325SFNw, SP 330SN, Aficio SP 3500SF, SP 221S, SP 220SNw, SP 221SNw, SP 221SF, SP 220SFNw, SP 221SFNw v1.06 were discovered to contain a stack buffer over…
- CVE-2021-3404HIGHCVSS 7.8EG 7.82021-03-04
In ytnef 1.9.3, the SwapWord function in lib/ytnef.c allows remote attackers to cause a denial-of-service (and potentially code execution) due to a heap buffer overflow which can be triggered via a crafted file.
- CVE-2021-3405MEDIUMCVSS 6.5EG 6.52021-02-23
A flaw was found in libebml before 1.4.2. A heap overflow bug exists in the implementation of EbmlString::ReadData and EbmlUnicodeString::ReadData in libebml.
- CVE-2021-34067MEDIUMCVSS 5.5EG 5.52021-06-23
Heap based buffer overflow in tsMuxer 2.6.16 allows attackers to cause a Denial of Service (DoS) by running the application with a crafted file.
- CVE-2021-34068MEDIUMCVSS 5.5EG 5.52021-06-23
Heap based buffer overflow in tsMuxer 2.6.16 allows attackers to cause a Denial of Service (DoS) by running the application with a crafted file.
- CVE-2021-34071MEDIUMCVSS 5.5EG 5.52021-06-23
Heap based buffer overflow in tsMuxer 2.6.16 allows attackers to cause a Denial of Service (DoS) by running the application with a crafted file.
- CVE-2021-34119HIGHCVSS 7.8EG 7.82023-07-18
A flaw was discovered in htmodoc 1.9.12 in function parse_paragraph in ps-pdf.cxx ,this flaw possibly allows possible code execution and a denial of service via a crafted file.
Map vulnerabilities like CWE-787 to your infrastructure
EchelonGraph correlates every CVE — across CWE-787 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →