CWE-787— Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.— MITRE CWE catalog
13,901 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-787page 118 of 279
- CVE-2021-42271HIGHCVSS 7.8EG 7.82021-11-18
Adobe Animate version 21.0.9 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that …
- CVE-2021-42272HIGHCVSS 7.8EG 7.82021-11-18
Adobe Animate version 21.0.9 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that …
- CVE-2021-42279MEDIUMCVSS 4.2EG 7.52021-11-10
Chakra Scripting Engine Memory Corruption Vulnerability
- CVE-2021-42327MEDIUMCVSS 6.7EG 6.72021-10-21
dp_link_settings_write in drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm_debugfs.c in the Linux kernel through 5.14.14 allows a heap-based buffer overflow by an attacker who can write a string to the AMD GPU display drivers debug filesyst…
- CVE-2021-42524HIGHCVSS 7.8EG 7.82021-11-18
Adobe Animate version 21.0.9 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that …
- CVE-2021-42529HIGHCVSS 7.8EG 7.82022-05-02
XMP Toolkit SDK version 2021.07 (and earlier) is affected by a stack-based buffer overflow vulnerability potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a…
- CVE-2021-42530HIGHCVSS 7.8EG 7.82022-05-02
XMP Toolkit SDK version 2021.07 (and earlier) is affected by a stack-based buffer overflow vulnerability potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a…
- CVE-2021-42531HIGHCVSS 7.8EG 7.82022-05-02
XMP Toolkit SDK version 2021.07 (and earlier) is affected by a stack-based buffer overflow vulnerability potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user interaction in that a…
- CVE-2021-42554HIGHCVSS 8.2EG 8.22022-02-03
An issue was discovered in Insyde InsydeH2O with Kernel 5.0 before 05.08.42, Kernel 5.1 before 05.16.42, Kernel 5.2 before 05.26.42, Kernel 5.3 before 05.35.42, Kernel 5.4 before 05.42.51, and Kernel 5.5 before 05.50.51. An SMM memory corr…
- CVE-2021-42585HIGHCVSS 8.8EG 8.82022-05-23
A heap buffer overflow was discovered in copy_compressed_bytes in decode_r2007.c in dwgread before 0.12.4 via a crafted dwg file.
- CVE-2021-42586HIGHCVSS 8.8EG 8.82022-05-23
A heap buffer overflow was discovered in copy_bytes in decode_r2007.c in dwgread before 0.12.4 via a crafted dwg file.
- CVE-2021-42692MEDIUMCVSS 6.5EG 6.52022-05-26
There is a stack-overflow vulnerability in tinytoml v0.4 that can cause a crash or DoS.
- CVE-2021-42704HIGHCVSS 7.8EG 7.82022-05-18
Inkscape version 0.91 is vulnerable to an out-of-bounds write, which may allow an attacker to arbitrary execute code.
- CVE-2021-42707HIGHCVSS 7.8EG 7.82021-11-22
PLC Editor Versions 1.3.8 and prior is vulnerable to an out-of-bounds write while processing project files, which may allow an attacker to execute arbitrary code.
- CVE-2021-42727HIGHCVSS 7.8EG 7.82021-11-22
Adobe Bridge 11.1.1 (and earlier) is affected by a stack overflow vulnerability due to insecure handling of a crafted file, potentially resulting in arbitrary code execution in the context of the current user. Exploitation requires user in…
- CVE-2021-42739MEDIUMCVSS 6.7EG 6.72021-10-20
The firewire subsystem in the Linux kernel through 5.14.13 has a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandles bounds checking.
- CVE-2021-42756CRITICALCVSS 9.8EG 9.82023-02-16
Multiple stack-based buffer overflow vulnerabilities [CWE-121] in the proxy daemon of FortiWeb 5.x all versions, 6.0.7 and below, 6.1.2 and below, 6.2.6 and below, 6.3.16 and below, 6.4 all versions may allow an unauthenticated remote a…
- CVE-2021-42757MEDIUMCVSS 6.7EG 6.72021-12-08
A buffer overflow [CWE-121] in the TFTP client library of FortiOS before 6.4.7 and FortiOS 7.0.0 through 7.0.2, may allow an authenticated local attacker to achieve arbitrary code execution via specially crafted command line arguments.
- CVE-2021-42781MEDIUMCVSS 5.3EG 5.32022-04-18
Heap buffer overflow issues were found in Opensc before version 0.22.0 in pkcs15-oberthur.c that could potentially crash programs using the library.
- CVE-2021-42782MEDIUMCVSS 5.3EG 5.32022-04-18
Stack buffer overflow issues were found in Opensc before version 0.22.0 in various places that could potentially crash programs using the library.
- CVE-2021-43018HIGHCVSS 7.8EG 7.82023-09-07
Adobe Photoshop versions 23.0.2 and 22.5.4 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user intera…
- CVE-2021-43021HIGHCVSS 7.8EG 7.82021-12-20
Adobe Premiere Rush version 1.5.16 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious EXR file, potentially resulting in arbitrary code execution in the context of the current user. User …
- CVE-2021-43022HIGHCVSS 7.8EG 7.82021-12-20
Adobe Premiere Rush version 1.5.16 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious PNG file, potentially resulting in arbitrary code execution in the context of the current user. User …
- CVE-2021-43023HIGHCVSS 7.8EG 7.82021-12-20
Adobe Premiere Rush version 1.5.16 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious EPS/TIFF file, potentially resulting in arbitrary code execution in the context of the current user. …
- CVE-2021-43024HIGHCVSS 7.8EG 7.82021-12-20
Adobe Premiere Rush version 1.5.16 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious WAV file, potentially resulting in arbitrary code execution in the context of the current user. User …
- CVE-2021-43025HIGHCVSS 7.8EG 7.82021-12-20
Adobe Premiere Rush version 1.5.16 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious SVG file, potentially resulting in arbitrary code execution in the context of the current user. User …
- CVE-2021-43026HIGHCVSS 7.8EG 7.82021-12-20
Adobe Premiere Rush version 1.5.16 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious MXF file, potentially resulting in arbitrary code execution in the context of the current user. User …
- CVE-2021-43028HIGHCVSS 7.8EG 7.82021-12-20
Adobe Premiere Rush version 1.5.16 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious M4A file, potentially resulting in arbitrary code execution in the context of the current user. User …
- CVE-2021-43029HIGHCVSS 7.8EG 7.82021-12-20
Adobe Premiere Rush version 1.5.16 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious M4A file, potentially resulting in arbitrary code execution in the context of the current user. User …
- CVE-2021-43071HIGHCVSS 8.8EG 8.82021-12-09
A heap-based buffer overflow in Fortinet FortiWeb version 6.4.1 and 6.4.0, version 6.3.15 and below, version 6.2.6 and below allows attacker to execute unauthorized code or commands via crafted HTTP requests to the LogReport API controller.
- CVE-2021-43086CRITICALCVSS 9.8EG 9.82022-02-28
ARM astcenc 3.2.0 is vulnerable to Buffer Overflow. When the compression function of the astc-encoder project with -cl option was used, a stack-buffer-overflow occurred in function encode_ise() in function compress_symbolic_block_for_parti…
- CVE-2021-43174HIGHCVSS 7.5EG 7.52021-11-09
NLnet Labs Routinator versions 0.9.0 up to and including 0.10.1, support the gzip transfer encoding when querying RRDP repositories. This encoding can be used by an RRDP repository to cause an out-of-memory crash in these versions of Routi…
- CVE-2021-43215CRITICALCVSS 9.8EG 9.82021-12-15
iSNS Server Memory Corruption Vulnerability Can Lead to Remote Code Execution
- CVE-2021-43247HIGHCVSS 7.8EG 7.82021-12-15
Windows TCP/IP Driver Elevation of Privilege Vulnerability
- CVE-2021-43279HIGHCVSS 7.8EG 7.82021-11-14
An out-of-bounds write vulnerability exists in the U3D file reading procedure in Open Design Alliance PRC SDK before 2022.10. Crafted data in a U3D file can trigger a write past the end of an allocated buffer. An attacker can leverage this…
- CVE-2021-43280HIGHCVSS 7.8EG 7.82021-11-14
A stack-based buffer overflow vulnerability exists in the DWF file reading procedure in Open Design Alliance Drawings SDK before 2022.8. The issue results from the lack of proper validation of the length of user-supplied data before copyin…
- CVE-2021-43299CRITICALCVSS 9.8EG 9.82022-02-16
Stack overflow in PJSUA API when calling pjsua_player_create. An attacker-controlled 'filename' argument may cause a buffer overflow since it is copied to a fixed-size stack buffer without any size validation.
- CVE-2021-43300CRITICALCVSS 9.8EG 9.82022-02-16
Stack overflow in PJSUA API when calling pjsua_recorder_create. An attacker-controlled 'filename' argument may cause a buffer overflow since it is copied to a fixed-size stack buffer without any size validation.
- CVE-2021-43301CRITICALCVSS 9.8EG 9.82022-02-16
Stack overflow in PJSUA API when calling pjsua_playlist_create. An attacker-controlled 'file_names' argument may cause a buffer overflow since it is copied to a fixed-size stack buffer without any size validation.
- CVE-2021-43304HIGHCVSS 8.8EG 8.82022-03-14
Heap buffer overflow in Clickhouse's LZ4 compression codec when parsing a malicious query. There is no verification that the copy operations in the LZ4::decompressImpl loop and especially the arbitrary copy operation wildCopy<copy_amount>(…
- CVE-2021-43305HIGHCVSS 8.8EG 8.82022-03-14
Heap buffer overflow in Clickhouse's LZ4 compression codec when parsing a malicious query. There is no verification that the copy operations in the LZ4::decompressImpl loop and especially the arbitrary copy operation wildCopy<copy_amount>(…
- CVE-2021-43311HIGHCVSS 7.5EG 7.52023-03-24
A heap-based buffer overflow was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func get_le32(). The problem is essentially caused in PackLinuxElf32::elf_lookup() at p_lx_elf.cpp:5382.
- CVE-2021-43312HIGHCVSS 7.5EG 7.52023-03-24
A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address. The issue is being triggered in the function PackLinuxElf64::invert_pt_dynamic at p_lx_elf.cpp:5239.
- CVE-2021-43313HIGHCVSS 7.5EG 7.52023-03-24
A heap-based buffer overflow was discovered in upx, during the variable 'bucket' points to an inaccessible address. The issue is being triggered in the function PackLinuxElf32::invert_pt_dynamic at p_lx_elf.cpp:1688.
- CVE-2021-43314HIGHCVSS 7.5EG 7.52023-03-24
A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func get_le32(). The problem is essentially caused in PackLinuxElf32::elf_lookup() at p_lx_elf.cpp:5368
- CVE-2021-43315HIGHCVSS 7.5EG 7.52023-03-24
A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func get_le32(). The problem is essentially caused in PackLinuxElf32::elf_lookup() at p_lx_elf.cpp:5349
- CVE-2021-43316HIGHCVSS 7.5EG 7.52023-03-24
A heap-based buffer overflow was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func get_le64().
- CVE-2021-43317HIGHCVSS 7.5EG 7.52023-03-24
A heap-based buffer overflows was discovered in upx, during the generic pointer 'p' points to an inaccessible address in func get_le32(). The problem is essentially caused in PackLinuxElf64::elf_lookup() at p_lx_elf.cpp:5404
- CVE-2021-43336HIGHCVSS 7.8EG 7.82021-11-14
An Out-of-Bounds Write vulnerability exists when reading a DXF or DWG file using Open Design Alliance Drawings SDK before 2022.11. The specific issue exists within the parsing of DXF and DWG files. Crafted data in a DXF or DWG file (an inv…
- CVE-2021-43390HIGHCVSS 7.8EG 7.82021-11-14
An Out-of-Bounds Write vulnerability exists when reading a DGN file using Open Design Alliance Drawings SDK before 2022.11. The specific issue exists within the parsing of DGN files. Crafted data in a DGN file and lack of proper validation…
Map vulnerabilities like CWE-787 to your infrastructure
EchelonGraph correlates every CVE — across CWE-787 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →