CWE-787— Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.— MITRE CWE catalog
13,844 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-787page 21 of 277
- CVE-2018-21206HIGHCVSS 8.8EG 8.82020-04-28
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D7800 before 1.0.1.30, EX2700 before 1.0.1.28, R6100 before 1.0.1.20, R7500 before 1.0.0.118, R7500v2 before 1.0.3.24, R7800…
- CVE-2018-21207HIGHCVSS 8.8EG 8.82020-04-28
Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D3600 before 1.0.0.67, D6000 before 1.0.0.67, D7800 before 1.0.1.30, EX2700 before 1.0.1.28, R6100 before 1.0.1.20, R7500 be…
- CVE-2018-25011CRITICALCVSS 9.8EG 9.82021-05-21
A heap-based buffer overflow was found in libwebp in versions before 1.0.1 in PutLE16().
- CVE-2018-25017CRITICALCVSS 9.8EG 9.82021-07-01
RawSpeed (aka librawspeed) 3.1 has a heap-based buffer overflow in TableLookUp::setTable.
- CVE-2018-25018HIGHCVSS 7.8EG 7.82021-07-01
UnRAR 5.6.1.7 through 5.7.4 and 6.0.3 has an out-of-bounds write during a memcpy in QuickOpen::ReadRaw when called from QuickOpen::ReadNext.
- CVE-2018-25024CRITICALCVSS 9.8EG 9.82021-12-27
An issue was discovered in the actix-web crate before 0.7.15 for Rust. It can unsoundly coerce an immutable reference into a mutable reference, leading to memory corruption.
- CVE-2018-25025CRITICALCVSS 9.8EG 9.82021-12-27
An issue was discovered in the actix-web crate before 0.7.15 for Rust. It can unsoundly extend the lifetime of a string, leading to memory corruption.
- CVE-2018-25026CRITICALCVSS 9.8EG 9.82021-12-27
An issue was discovered in the actix-web crate before 0.7.15 for Rust. It can add the Send marker trait to an object that cannot be sent between threads safely, leading to memory corruption.
- CVE-2018-25032HIGHCVSS 7.5EG 7.52022-03-25
zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.
- CVE-2018-25042MEDIUMCVSS 5.0EG 8.82022-06-17
A vulnerability classified as critical has been found in uTorrent. This affects an unknown part. The manipulation leads to memory corruption. It is possible to initiate the attack remotely. It is recommended to upgrade the affected compone…
- CVE-2018-25154CRITICALCVSS 9.8EG 9.82025-12-24
GNU Barcode 0.99 contains a buffer overflow vulnerability in its code 93 encoding process that allows attackers to trigger memory corruption. Attackers can exploit boundary errors during input file processing to potentially execute arbitra…
- CVE-2018-25198MEDIUMCVSS 6.2EG 6.22026-03-06
eToolz 3.4.8.0 contains a denial of service vulnerability that allows local attackers to crash the application by supplying oversized input buffers. Attackers can create a payload file containing 255 bytes of data that triggers a buffer ov…
- CVE-2018-25213HIGHCVSS 8.4EG 8.42026-03-26
Nsauditor 3.0.28.0 contains a structured exception handling buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying malicious input to the DNS Lookup tool. Attackers can craft a payload with SEH cha…
- CVE-2018-25220CRITICALCVSS 9.8EG 9.82026-03-28
Bochs 2.6-5 contains a stack-based buffer overflow vulnerability that allows attackers to execute arbitrary code by supplying an oversized input string to the application. Attackers can craft a malicious payload with 1200 bytes of padding …
- CVE-2018-25221CRITICALCVSS 9.8EG 9.82026-03-28
EChat Server 3.1 contains a buffer overflow vulnerability in the chat.ghp endpoint that allows remote attackers to execute arbitrary code by supplying an oversized username parameter. Attackers can send a GET request to chat.ghp with a mal…
- CVE-2018-25222HIGHCVSS 8.4EG 8.42026-03-28
SC v7.16 contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying oversized input that exceeds buffer boundaries. Attackers can craft malicious input strings exceeding 1052 byt…
- CVE-2018-25223CRITICALCVSS 9.8EG 9.82026-03-28
Crashmail 1.6 contains a stack-based buffer overflow vulnerability that allows remote attackers to execute arbitrary code by sending malicious input to the application. Attackers can craft payloads with ROP chains to achieve code execution…
- CVE-2018-25228MEDIUMCVSS 6.2EG 6.22026-03-30
NetSetMan 4.7.1 contains a buffer overflow vulnerability in the Workgroup feature that allows local attackers to crash the application by supplying oversized input. Attackers can create a malicious configuration file with excessive data an…
- CVE-2018-25230MEDIUMCVSS 5.5EG 5.52026-03-30
Free IP Switcher 3.1 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Computer Name field. Attackers can paste a malicious payload into the Compute…
- CVE-2018-25235MEDIUMCVSS 6.2EG 6.22026-03-30
NetworkActiv Web Server 4.0 contains a buffer overflow vulnerability in the username field of the Security options that allows local attackers to crash the application by supplying an excessively long string. Attackers can trigger a denial…
- CVE-2018-25251HIGHCVSS 8.4EG 8.42026-04-04
Snes9K 0.0.9z contains a buffer overflow vulnerability in the Netplay Socket Port Number field that allows local attackers to trigger a structured exception handler (SEH) overwrite. Attackers can craft a malicious payload and paste it into…
- CVE-2018-25252MEDIUMCVSS 6.2EG 6.22026-04-04
FTP Voyager 16.2.0 contains a denial of service vulnerability that allows local attackers to crash the application by injecting oversized buffer data into the site profile IP field. Attackers can create a malicious site profile containing …
- CVE-2018-25253MEDIUMCVSS 6.2EG 6.22026-04-04
Termite 3.4 contains a buffer overflow vulnerability in the User interface language settings field that allows local attackers to cause a denial of service by supplying an excessively long string. Attackers can paste a 2000-byte payload in…
- CVE-2018-25254CRITICALCVSS 9.8EG 9.82026-04-04
NICO-FTP 3.0.1.19 contains a structured exception handler buffer overflow vulnerability that allows remote attackers to execute arbitrary code by sending crafted FTP commands. Attackers can connect to the FTP service and send oversized dat…
- CVE-2018-25255HIGHCVSS 8.4EG 8.42026-04-04
10-Strike LANState 8.8 contains a local buffer overflow vulnerability in structured exception handling that allows local attackers to execute arbitrary code by crafting malicious LSM map files. Attackers can create a specially formatted LS…
- CVE-2018-25256MEDIUMCVSS 5.5EG 5.52026-04-05
IP TOOLS 2.50 contains a local buffer overflow vulnerability in the SNMP Scanner component that allows local attackers to crash the application by supplying oversized input. Attackers can paste malicious data into the 'From Addr' and 'To A…
- CVE-2018-25260HIGHCVSS 8.4EG 8.42026-04-22
MAGIX Music Editor 3.1 contains a buffer overflow vulnerability in the FreeDB Proxy Options dialog that allows local attackers to execute arbitrary code by exploiting structured exception handling. Attackers can craft a malicious payload, …
- CVE-2018-25261HIGHCVSS 8.4EG 8.42026-04-22
Iperius Backup 5.8.1 contains a local buffer overflow vulnerability in the structured exception handling (SEH) mechanism that allows local attackers to execute arbitrary code by supplying a malicious file path. Attackers can create a backu…
- CVE-2018-25262MEDIUMCVSS 6.2EG 6.22026-04-22
Angry IP Scanner for Linux 3.5.3 contains a denial of service vulnerability that allows local attackers to crash the application by supplying malformed input to the port selection field. Attackers can craft a malicious string containing bu…
- CVE-2018-25265HIGHCVSS 8.4EG 8.42026-04-22
LanSpy 2.0.1.159 contains a local buffer overflow vulnerability in the scan section that allows local attackers to execute arbitrary code by exploiting structured exception handling mechanisms. Attackers can craft malicious payloads using …
- CVE-2018-25266MEDIUMCVSS 6.2EG 6.22026-04-22
Angry IP Scanner 3.5.3 contains a buffer overflow vulnerability in the preferences dialog that allows local attackers to crash the application by supplying an excessively large string. Attackers can generate a file containing a massive buf…
- CVE-2018-25267MEDIUMCVSS 6.2EG 6.22026-04-22
UltraISO 9.7.1.3519 contains a local buffer overflow vulnerability in the Output FileName field of the Make CD/DVD Image dialog that allows attackers to overwrite SEH and SE handler records. Attackers can craft a malicious filename string …
- CVE-2018-25268HIGHCVSS 8.4EG 8.42026-04-22
LanSpy 2.0.1.159 contains a local buffer overflow vulnerability that allows attackers to overwrite the instruction pointer by supplying oversized input to the scan field. Attackers can craft a payload with 688 bytes of padding followed by …
- CVE-2018-25271MEDIUMCVSS 6.2EG 6.22026-04-22
Textpad 8.1.2 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long buffer string through the Run command interface. Attackers can paste a 5000-byte payload into th…
- CVE-2018-2913CRITICALCVSS 10.0EG 10.02018-10-17
Vulnerability in the Oracle GoldenGate component of Oracle GoldenGate (subcomponent: Monitoring Manager). Supported versions that are affected are 12.1.2.1.0, 12.2.0.2.0 and 12.3.0.1.0. Easily exploitable vulnerability allows unauthenticat…
- CVE-2018-3580HIGHCVSS 7.8EG 7.82018-06-06
Stack-based buffer overflow can occur In the WLAN driver if the pmkid_count value is larger than the PMKIDCache size in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel.
- CVE-2018-3632MEDIUMCVSS 6.7EG 6.72018-07-10
Memory corruption in Intel Active Management Technology in Intel Converged Security Manageability Engine Firmware 6.x / 7.x / 8.x / 9.x / 10.x / 11.0 / 11.5 / 11.6 / 11.7 / 11.10 / 11.20 could be triggered by an attacker with local adminis…
- CVE-2018-3835HIGHCVSS 8.8EG 8.82018-01-29
An exploitable out of bounds write vulnerability exists in version 2.2 of the Per Face Texture mapping application known as PTEX. The vulnerability is present in the reading of a file without proper parameter checking. The value read in, i…
- CVE-2018-3839HIGHCVSS 8.8EG 8.82018-04-10
An exploitable code execution vulnerability exists in the XCF image rendering functionality of Simple DirectMedia Layer SDL2_image-2.0.2. A specially crafted XCF image can cause an out-of-bounds write on the heap, resulting in code executi…
- CVE-2018-3846HIGHCVSS 8.8EG 8.82018-04-16
In the ffgphd and ffgtkn functions in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability…
- CVE-2018-3847HIGHCVSS 8.8EG 8.82018-08-01
Multiple exploitable buffer overflow vulnerabilities exist in image parsing functionality of the CFITSIO library version 3.42. Specially crafted images parsed via the library, can cause a stack-based buffer overflow overwriting arbitrary d…
- CVE-2018-3848HIGHCVSS 8.8EG 8.82018-04-16
In the ffghbn function in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potenti…
- CVE-2018-3849HIGHCVSS 8.8EG 8.82018-04-16
In the ffghtb function in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potenti…
- CVE-2018-3851HIGHCVSS 8.8EG 7.82018-04-26
In Hyland Perceptive Document Filters 11.4.0.2647 - x86/x64 Windows/Linux, an exploitable stack-based buffer overflow exists in the DOC-to-HTML conversion functionality of the Hyland Perceptive Document Filters version 11.4.0.2647. A craft…
- CVE-2018-3857HIGHCVSS 7.8EG 7.82018-07-19
An exploitable heap overflow exists in the TIFF parsing functionality of Canvas Draw version 4.0.0. A specially crafted TIFF image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker ca…
- CVE-2018-3858HIGHCVSS 7.8EG 7.82018-07-19
An exploitable heap overflow exists in the TIFF parsing functionality of Canvas Draw version 4.0.0. A specially crafted TIFF image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker ca…
- CVE-2018-3859HIGHCVSS 7.8EG 7.82018-07-19
An exploitable out-of-bounds write exists in the TIFF parsing functionality of Canvas Draw version 4.0.0. A specially crafted TIFF image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attac…
- CVE-2018-3860HIGHCVSS 7.8EG 7.82018-07-19
An exploitable out-of-bounds write exists in the TIFF parsing functionality of Canvas Draw version 4.0.0. A specially crafted TIFF image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attac…
- CVE-2018-3861HIGHCVSS 7.8EG 7.82018-04-12
A specially crafted TIFF image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a TIFF image to trigger this vulnerability and gain code execution.
- CVE-2018-3862HIGHCVSS 7.8EG 7.82018-04-12
A specially crafted TIFF image processed via the application can lead to an out-of-bounds write, overwriting
Map vulnerabilities like CWE-787 to your infrastructure
EchelonGraph correlates every CVE — across CWE-787 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →