CWE-787— Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.— MITRE CWE catalog
13,847 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-787page 28 of 277
- CVE-2018-8865CRITICALCVSS 9.8EG 9.82018-05-04
In Lantech IDS 2102 2.0 and prior, a stack-based buffer overflow vulnerability has been identified which may allow remote code execution. A CVSS v3 base score of 9.8 has been calculated; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C…
- CVE-2018-8871CRITICALCVSS 9.8EG 9.82018-05-25
In Delta Electronics Automation TPEditor version 1.89 or prior, parsing a malformed program file may cause heap-based buffer overflow vulnerability, which may allow remote code execution.
- CVE-2018-8879CRITICALCVSS 9.8EG 9.82019-11-21
Stack-based buffer overflow in Asuswrt-Merlin firmware for ASUS devices older than 384.4 and ASUS firmware before 3.0.0.4.382.50470 for devices allows remote attackers to execute arbitrary code by providing a long string to the blocking.as…
- CVE-2018-8905HIGHCVSS 8.8EG 8.82018-03-22
In LibTIFF 4.0.9, a heap-based buffer overflow occurs in the function LZWDecodeCompat in tif_lzw.c via a crafted TIFF file, as demonstrated by tiff2ps.
- CVE-2018-9143CRITICALCVSS 9.8EG 9.82018-03-30
On Samsung mobile devices with M(6.0) and N(7.x) software, a heap overflow in the sensorhub binder service leads to code execution in a privileged process, aka SVE-2017-10991.
- CVE-2018-9264HIGHCVSS 7.5EG 7.52018-04-04
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the ADB dissector could crash with a heap-based buffer overflow. This was addressed in epan/dissectors/packet-adb.c by checking for a length inconsistency.
- CVE-2018-9338HIGHCVSS 7.8EG 7.82024-11-19
In ResStringPool::setTo of ResourceTypes.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not n…
- CVE-2018-9340MEDIUMCVSS 5.5EG 7.52024-11-19
In ResStringPool::setTo of ResourceTypes.cpp, it's possible for an attacker to control the value of mStringPoolSize to be out of bounds, causing information disclosure.
- CVE-2018-9341HIGHCVSS 7.8EG 9.82024-11-19
In impeg2d_mc_fullx_fully of impeg2d_mc.c there is a possible out of bound write due to missing bounds check. This could lead to remote arbitrary code execution with no additional execution privileges needed. User interaction is needed for…
- CVE-2018-9355CRITICALCVSS 9.8EG 9.82018-11-06
In bta_dm_sdp_result of bta_dm_act.cc, there is a possible out of bounds stack write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for…
- CVE-2018-9357HIGHCVSS 7.8EG 7.82018-11-06
In BNEP_Write of bnep_api.cc, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation…
- CVE-2018-9363HIGHCVSS 8.4EG 8.42018-11-06
In the hidp_process_report in bluetooth, there is an integer overflow. This could lead to an out of bounds write with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: An…
- CVE-2018-9366HIGHCVSS 7.8EG 7.82024-11-19
In IMSA_Recv_Thread and VT_IMCB_Thread of ImsaClient.cpp and VideoTelephony.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges nee…
- CVE-2018-9367HIGHCVSS 7.8EG 7.82024-11-19
In FT_ACDK_CCT_V2_OP_ISP_SET_TUNING_PARAS of Meta_CCAP_Para.cpp, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. Use…
- CVE-2018-9368HIGHCVSS 7.8EG 7.82024-11-19
In mtkscoaudio debugfs there is a possible arbitrary kernel memory write due to missing bounds check and weakened SELinux policies. This could lead to local escalation of privilege with system execution privileges needed. User interactio…
- CVE-2018-9370HIGHCVSS 7.3EG 7.32024-11-19
In download.c there is a special mode allowing user to download data into memory and causing possible memory corruptions due to missing bounds check. This could lead to local escalation of privilege with no additional execution privileges …
- CVE-2018-9371MEDIUMCVSS 6.4EG 7.82024-11-19
In the Mediatek Preloader, there are out of bounds reads and writes due to an exposed interface that allows arbitrary peripheral memory mapping with insufficient blacklisting/whitelisting. This could lead to local elevation of privilege, g…
- CVE-2018-9372HIGHCVSS 7.8EG 7.82024-11-19
In cmd_flash_mmc_sparse_img of dl_commands.c, there is a possible out of bounds write due to a missing bounds check. This could lead to a local escalation of privilege in the bootloader with no additional execution privileges needed. User …
- CVE-2018-9373HIGHCVSS 8.8EG 8.82025-01-28
In TdlsexRxFrameHandle of the MTK WLAN driver, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not…
- CVE-2018-9376MEDIUMCVSS 6.7EG 7.82024-12-02
In rpc_msg_handler and related handlers of drivers/misc/mediatek/eccci/port_rpc.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileg…
- CVE-2018-9380HIGHCVSS 8.8EG 8.82024-12-02
In l2c_lcc_proc_pdu of l2c_fcr.cc, there is a possible out of bounds write due to improper input validation. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is needed fo…
- CVE-2018-9385HIGHCVSS 7.8EG 7.82018-11-06
In driver_override_store of bus.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for explo…
- CVE-2018-9386MEDIUMCVSS 6.7EG 6.72024-12-05
In reboot_block_command of htc reboot_block driver, there is a possible stack buffer overflow due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interac…
- CVE-2018-9388CRITICALCVSS 9.8EG 7.82024-12-05
In store_upgrade and store_cmd of drivers/input/touchscreen/stm/ftm4_pdc.c, there are out of bound writes due to missing bounds checks or integer underflows. These could lead to escalation of privilege.
- CVE-2018-9389HIGHCVSS 7.8EG 7.82025-01-18
In ip6_append_data of ip6_output.c, there is a possible way to achieve code execution due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not n…
- CVE-2018-9391MEDIUMCVSS 6.7EG 6.72024-12-05
In update_gps_sv and output_vzw_debug of vendor/mediatek/proprietary/hardware/connectivity/gps/gps_hal/src/gpshal_wor ker.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escala…
- CVE-2018-9392MEDIUMCVSS 6.7EG 7.82024-12-04
In get_binary of vendor/mediatek/proprietary/hardware/connectivity/gps/gps_hal/src/data_coder.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution …
- CVE-2018-9393MEDIUMCVSS 6.7EG 7.82024-12-04
In procfile_write of drivers/misc/mediatek/connectivity/wlan/gen2/os/linux/gl_proc.c, there is a possible OOB write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. Us…
- CVE-2018-9394MEDIUMCVSS 6.7EG 7.82024-12-04
In mtk_p2p_wext_set_key of drivers/misc/mediatek/connectivity/wlan/gen2/os/linux/gl_p2p.c, there is a possible OOB write due to improper input validation. This could lead to local escalation of privilege with System execution privileges ne…
- CVE-2018-9395MEDIUMCVSS 6.7EG 7.82024-12-04
In mtk_cfg80211_vendor_packet_keep_alive_start and mtk_cfg80211_vendor_set_config of drivers/misc/mediatek/connectivity/wlan/gen2/os/linux/gl_vendor.c, there is a possible OOB write due to a missing bounds check. This could lead to local e…
- CVE-2018-9396MEDIUMCVSS 6.7EG 7.82024-12-04
In rpc_msg_handler and related handlers of drivers/misc/mediatek/eccci/port_rpc.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges …
- CVE-2018-9397MEDIUMCVSS 6.7EG 7.82024-12-05
In WMT_unlocked_ioctl of MTK WMT device driver, there is a possible OOB write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not need…
- CVE-2018-9398MEDIUMCVSS 6.7EG 7.82024-12-05
In fm_set_stat of mediatek FM radio driver, there is a possible OOB write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not neede…
- CVE-2018-9399MEDIUMCVSS 6.7EG 7.82024-12-05
In /proc/driver/wmt_dbg driver, there are several possible out of bounds writes. These could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.
- CVE-2018-9400MEDIUMCVSS 6.7EG 7.82024-12-05
In gt1x_debug_write_proc and gt1x_tool_write of drivers/input/touchscreen/mediatek/GT1151/gt1x_generic.c and gt1x_tools.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalati…
- CVE-2018-9401HIGHCVSS 7.8EG 7.82025-01-18
In many locations, there is a possible way to access kernel memory in user space due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not nee…
- CVE-2018-9402HIGHCVSS 7.8EG 8.82024-12-05
In multiple functions of gl_proc.c, there is a buffer overwrite due to a missing bounds check. This could lead to escalation of privileges in the kernel.
- CVE-2018-9403MEDIUMCVSS 6.7EG 7.82024-12-05
In the MTK_FLP_MSG_HAL_DIAG_REPORT_DATA_NTF handler of flp2hal_- interface.c, there is a possible stack buffer overflow due to a missing bounds check. This could lead to local escalation of privilege in a privileged process wit…
- CVE-2018-9404MEDIUMCVSS 6.7EG 7.82024-12-05
In oemCallback of ril.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploit…
- CVE-2018-9405MEDIUMCVSS 6.7EG 6.72025-01-18
In BnDmAgent::onTransact of dm_agent.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for e…
- CVE-2018-9409HIGHCVSS 7.8EG 7.82024-11-19
In HWCSession::SetColorModeById of hwc_session.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is…
- CVE-2018-9411HIGHCVSS 8.8EG 8.82024-11-19
In decrypt of ClearKeyCasPlugin.cpp there is a possible out-of-bounds write due to a missing bounds check. This could lead to remote arbitrary code execution with no additional execution privileges needed. User interaction is needed for ex…
- CVE-2018-9413HIGHCVSS 8.8EG 8.02024-12-02
In handle_notification_response of btif_rc.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed fo…
- CVE-2018-9414HIGHCVSS 7.8EG 7.82024-12-02
In gattServerSendResponseNative of com_android_bluetooth_gatt.cpp, there is a possible out of bounds stack write due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User…
- CVE-2018-9416MEDIUMCVSS 6.7EG 6.72024-12-05
In sg_remove_scat of scsi/sg.c, there is a possible memory corruption due to an unusual root cause. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for ex…
- CVE-2018-9418CRITICALCVSS 9.8EG 8.82024-12-02
In handle_app_cur_val_response of dtif_rc.cc, there is a possible stack buffer overflow due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not need…
- CVE-2018-9419HIGHCVSS 7.5EG 7.52024-11-19
In l2cble_process_sig_cmd of l2c_ble.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed …
- CVE-2018-9424HIGHCVSS 7.8EG 7.82024-11-19
In CryptoPlugin::decrypt of CryptoPlugin.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not n…
- CVE-2018-9427HIGHCVSS 7.8EG 7.82018-11-06
In CopyToOMX of OMXNodeInstance.cpp there is a possible out-of-bounds write due to an incorrect bounds check. This could lead to remote arbitrary code execution with no additional execution privileges needed. User interaction is needed for…
- CVE-2018-9428HIGHCVSS 7.8EG 8.42024-11-19
In startDevice of AAudioServiceStreamBase.cpp there is a possible out of bounds write due to a use after free. This could lead to local arbitrary code execution with no additional execution privileges needed. User interaction is needed for…
Map vulnerabilities like CWE-787 to your infrastructure
EchelonGraph correlates every CVE — across CWE-787 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →