CWE-787— Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.— MITRE CWE catalog
13,901 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-787page 112 of 279
- CVE-2021-36054LOWCVSS 3.3EG 3.32021-09-01
XMP Toolkit SDK version 2020.1 (and earlier) is affected by a buffer overflow vulnerability potentially resulting in local application denial of service in the context of the current user. Exploitation requires user interaction in that a v…
- CVE-2021-36065HIGHCVSS 7.8EG 7.82021-09-01
Adobe Photoshop versions 21.2.10 (and earlier) and 22.4.3 (and earlier) are affected by a heap-based buffer overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue…
- CVE-2021-36066HIGHCVSS 7.8EG 7.82021-09-01
Adobe Photoshop versions 21.2.10 (and earlier) and 22.4.3 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requi…
- CVE-2021-36072HIGHCVSS 7.8EG 7.82021-09-01
Adobe Bridge versions 11.1 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a …
- CVE-2021-36073HIGHCVSS 7.8EG 7.82021-09-01
Adobe Bridge version 11.1 (and earlier) is affected by a heap-based buffer overflow vulnerability when parsing a crafted .SGI file. An attacker could leverage this vulnerability to execute code in the context of the current user. Exploitat…
- CVE-2021-36082HIGHCVSS 8.8EG 8.82021-07-01
ntop nDPI 3.4 has a stack-based buffer overflow in processClientServerHello.
- CVE-2021-36083MEDIUMCVSS 5.5EG 5.52021-07-01
KDE KImageFormats 5.70.0 through 5.81.0 has a stack-based buffer overflow in XCFImageFormat::loadTileRLE.
- CVE-2021-36089HIGHCVSS 7.8EG 7.82021-07-01
Grok 7.6.6 through 9.2.0 has a heap-based buffer overflow in grk::FileFormatDecompress::apply_palette_clr (called from grk::FileFormatDecompress::applyColour).
- CVE-2021-3610HIGHCVSS 7.5EG 7.52022-02-24
A heap-based buffer overflow vulnerability was found in ImageMagick in versions prior to 7.0.11-14 in ReadTIFFImage() in coders/tiff.c. This issue is due to an incorrect setting of the pixel array size, which can lead to a crash and segmen…
- CVE-2021-3611MEDIUMCVSS 6.5EG 6.52022-05-11
A stack overflow vulnerability was found in the Intel HD Audio device (intel-hda) of QEMU. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition. The highest threat from thi…
- CVE-2021-3612HIGHCVSS 7.8EG 7.82021-07-09
An out-of-bounds memory write flaw was found in the Linux kernel's joystick devices subsystem in versions before 5.9-rc1, in the way the user calls ioctl JSIOCSBTNMAP. This flaw allows a local user to crash the system or possibly escalate …
- CVE-2021-36134HIGHCVSS 7.4EG 7.42021-09-27
Out of bounds write vulnerability in the JPEG parsing code of Netop Vision Pro up to and including 9.7.2 allows an adjacent unauthenticated attacker to write to arbitrary memory potentially leading to a Denial of Service (DoS).
- CVE-2021-36173HIGHCVSS 8.0EG 8.02021-12-08
A heap-based buffer overflow in the firmware signature verification function of FortiOS versions 7.0.1, 7.0.0, 6.4.0 through 6.4.6, 6.2.0 through 6.2.9, and 6.0.0 through 6.0.13 may allow an attacker to execute arbitrary code via specially…
- CVE-2021-36179HIGHCVSS 8.0EG 8.02021-09-08
A stack-based buffer overflow in Fortinet FortiWeb version 6.3.14 and below, 6.2.4 and below allows attacker to execute unauthorized code or commands via crafted parameters in CLI command execution
- CVE-2021-36186HIGHCVSS 8.8EG 8.82021-11-02
A stack-based buffer overflow in Fortinet FortiWeb version 6.4.0, version 6.3.15 and below, 6.2.5 and below allows attacker to execute unauthorized code or commands via crafted HTTP requests
- CVE-2021-36193MEDIUMCVSS 6.7EG 7.22022-02-02
Multiple stack-based buffer overflows in the command line interpreter of FortiWeb before 6.4.2 may allow an authenticated attacker to achieve arbitrary code execution via specially crafted commands.
- CVE-2021-36194HIGHCVSS 8.8EG 8.82021-12-09
Multiple stack-based buffer overflows in the API controllers of FortiWeb 6.4.1, 6.4.0, and 6.3.0 through 6.3.15 may allow an authenticated attacker to achieve arbitrary code execution via specially crafted requests.
- CVE-2021-36218HIGHCVSS 7.5EG 7.52021-09-27
An issue was discovered in SKALE sgxwallet 1.58.3. sgx_disp_ippsAES_GCMEncrypt allows an out-of-bounds write, resulting in a segfault and compromised enclave. This issue describes a buffer overflow, which was resolved prior to v1.77.0 and …
- CVE-2021-3623MEDIUMCVSS 6.1EG 8.22022-03-02
A flaw was found in libtpms. The flaw can be triggered by specially-crafted TPM 2 command packets containing illegal values and may lead to an out-of-bounds access when the volatile state of the TPM 2 is marshalled/written or unmarshalled/…
- CVE-2021-3625CRITICALCVSS 9.6EG 9.62021-10-05
Buffer overflow in Zephyr USB DFU DNLOAD. Zephyr versions >= v2.5.0 contain Heap-based Buffer Overflow (CWE-122). For more information, see https://github.com/zephyrproject-rtos/zephyr/security/advisories/GHSA-c3gr-hgvr-f363
- CVE-2021-3630MEDIUMCVSS 5.5EG 5.52021-06-30
An out-of-bounds write vulnerability was found in DjVuLibre in DJVU::DjVuTXT::decode() in DjVuText.cpp via a crafted djvu file which may lead to crash and segmentation fault. This flaw affects DjVuLibre versions prior to 3.5.28.
- CVE-2021-36301MEDIUMCVSS 5.9EG 7.22021-11-23
Dell iDRAC 9 prior to version 4.40.40.00 and iDRAC 8 prior to version 2.80.80.80 contain a Stack Buffer Overflow in Racadm. An authenticated remote attacker may potentially exploit this vulnerability to control process execution and gain a…
- CVE-2021-3634MEDIUMCVSS 6.5EG 6.52021-08-31
A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secret_hash and the other session_id. Initially, both of them are the …
- CVE-2021-36347HIGHCVSS 7.2EG 7.22022-01-25
iDRAC9 versions prior to 5.00.20.00 and iDRAC8 versions prior to 2.82.82.82 contain a stack-based buffer overflow vulnerability. An authenticated remote attacker with high privileges could potentially exploit this vulnerability to control …
- CVE-2021-3638MEDIUMCVSS 6.5EG 6.52022-03-03
An out-of-bounds memory access flaw was found in the ATI VGA device emulation of QEMU. This flaw occurs in the ati_2d_blt() routine while handling MMIO write operations when the guest provides invalid values for the destination display par…
- CVE-2021-36410MEDIUMCVSS 5.5EG 5.52022-01-10
A stack-buffer-overflow exists in libde265 v1.0.8 via fallback-motion.cc in function put_epel_hv_fallback when running program dec265.
- CVE-2021-36412HIGHCVSS 7.8EG 7.82022-01-10
A heap-based buffer overflow vulnerability exists in MP4Box in GPAC 1.0.1 via the gp_rtp_builder_do_mpeg12_video function, which allows attackers to possibly have unspecified other impact via a crafted file in the MP4Box command,
- CVE-2021-36414HIGHCVSS 7.8EG 7.82022-01-10
A heab-based buffer overflow vulnerability exists in MP4Box in GPAC 1.0.1 via media.c, which allows attackers to cause a denial of service or execute arbitrary code via a crafted file.
- CVE-2021-36417HIGHCVSS 7.8EG 7.82022-01-12
A heap-based buffer overflow vulnerability exists in GPAC v1.0.1 in the gf_isom_dovi_config_get function in MP4Box, which causes a denial of service or execute arbitrary code via a crafted file.
- CVE-2021-36489MEDIUMCVSS 6.5EG 6.52023-02-03
Buffer Overflow vulnerability in Allegro through 5.2.6 allows attackers to cause a denial of service via crafted PCX/TGA/BMP files to allegro_image addon.
- CVE-2021-36493HIGHCVSS 7.5EG 7.52023-02-03
Buffer Overflow vulnerability in pdfimages in xpdf 4.03 allows attackers to crash the application via crafted command.
- CVE-2021-36530HIGHCVSS 8.8EG 8.82021-08-27
ngiflib 0.4 has a heap overflow in GetByteStr() at ngiflib.c:108 in NGIFLIB_NO_FILE mode, GetByteStr() copy memory buffer without checking the boundary.
- CVE-2021-36531HIGHCVSS 8.8EG 8.82021-08-27
ngiflib 0.4 has a heap overflow in GetByte() at ngiflib.c:70 in NGIFLIB_NO_FILE mode, GetByte() reads memory buffer without checking the boundary.
- CVE-2021-36535MEDIUMCVSS 5.5EG 5.52023-02-03
Buffer Overflow vulnerability in Cesanta mJS 1.26 allows remote attackers to cause a denial of service via crafted .js file to mjs_set_errorf.
- CVE-2021-36584MEDIUMCVSS 5.5EG 5.52021-08-05
An issue was discovered in GPAC 1.0.1. There is a heap-based buffer overflow in the function gp_rtp_builder_do_tx3g function in ietf/rtp_pck_3gpp.c, as demonstrated by MP4Box. This can cause a denial of service (DOS).
- CVE-2021-3675MEDIUMCVSS 5.5EG 7.12022-06-16
Improper Input Validation vulnerability in synaTEE.signed.dll of Synaptics Fingerprint Driver allows a local authorized attacker to overwrite a heap tag, with potential loss of confidentiality. This issue affects: Synaptics Synaptics Finge…
- CVE-2021-3695MEDIUMCVSS 4.5EG 4.52022-07-06
A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of that to cause heap data corruption or eventually arbitrary code execution and circumvent secure boot protections. Th…
- CVE-2021-36952HIGHCVSS 7.8EG 7.82021-09-15
Visual Studio Remote Code Execution Vulnerability
- CVE-2021-3696MEDIUMCVSS 4.5EG 4.52022-07-06
A heap out-of-bounds write may heppen during the handling of Huffman tables in the PNG reader. This may lead to data corruption in the heap space. Confidentiality, Integrity and Availablity impact may be considered Low as it's very complex…
- CVE-2021-3697HIGHCVSS 7.0EG 7.02022-07-06
A crafted JPEG image may lead the JPEG reader to underflow its data pointer, allowing user-controlled data to be written in heap. To a successful to be performed the attacker needs to perform some triage over the heap layout and craft an i…
- CVE-2021-36977MEDIUMCVSS 6.5EG 6.52021-07-20
matio (aka MAT File I/O Library) 1.5.20 and 1.5.21 has a heap-based buffer overflow in H5MM_memcpy (called from H5MM_malloc and H5C_load_entry), related to use of HDF5 1.12.0.
- CVE-2021-36978MEDIUMCVSS 5.5EG 5.52021-07-20
QPDF 9.x through 9.1.1 and 10.x through 10.0.4 has a heap-based buffer overflow in Pl_ASCII85Decoder::write (called from Pl_AES_PDF::flush and Pl_AES_PDF::finish) when a certain downstream write fails.
- CVE-2021-36979MEDIUMCVSS 5.5EG 5.52021-07-20
Unicorn Engine 1.0.2 has an out-of-bounds write in tb_flush_armeb (called from cpu_arm_exec_armeb and tcg_cpu_exec_armeb).
- CVE-2021-37011CRITICALCVSS 9.1EG 9.12021-12-07
There is a Stack-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to Out-of-bounds read.
- CVE-2021-37014HIGHCVSS 7.5EG 7.52021-12-07
There is a Stack-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to device cannot be used properly.
- CVE-2021-37020CRITICALCVSS 9.1EG 9.12021-12-07
There is a Stack-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to Out-of-bounds read.
- CVE-2021-37021CRITICALCVSS 9.1EG 9.12021-12-07
There is a Stack-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to Out-of-bounds read.
- CVE-2021-37022CRITICALCVSS 9.8EG 9.82021-11-23
There is a Heap-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause root permission which can be escalated.
- CVE-2021-37049CRITICALCVSS 9.8EG 9.82021-12-08
There is a Heap-based buffer overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may rewrite the memory of adjacent objects.
- CVE-2021-37107MEDIUMCVSS 5.5EG 5.52022-02-09
There is an improper memory access permission configuration on ACPU.Successful exploitation of this vulnerability may cause out-of-bounds access.
Map vulnerabilities like CWE-787 to your infrastructure
EchelonGraph correlates every CVE — across CWE-787 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →