CWE-787— Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.— MITRE CWE catalog
13,848 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-787page 39 of 277
- CVE-2019-1429HIGHCVSS 7.5EG 9.0⚠ KEV2019-11-12
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-1426, CVE-2019-14…
- CVE-2019-14310CRITICALCVSS 9.8EG 9.82020-03-13
Ricoh SP C250DN 1.05 devices allow denial of service (issue 2 of 3). Unauthenticated crafted packets to the IPP service will cause a vulnerable device to crash. A memory corruption has been identified in the way of how the embedded device …
- CVE-2019-14323HIGHCVSS 7.5EG 7.52019-07-28
SSDP Responder 1.x through 1.5 mishandles incoming network messages, leading to a stack-based buffer overflow by 1 byte. This results in a crash of the server, but only when strict stack checking is enabled. This is caused by an off-by-one…
- CVE-2019-14363CRITICALCVSS 9.8EG 9.82019-07-28
A stack-based buffer overflow in the upnpd binary running on NETGEAR WNDR3400v3 routers with firmware version 1.0.1.18_1.0.63 allows an attacker to remotely execute arbitrary code via a crafted UPnP SSDP packet.
- CVE-2019-14378HIGHCVSS 8.8EG 8.82019-07-29
ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overflow via a large packet because it mishandles a case involving the first fragment.
- CVE-2019-14431CRITICALCVSS 9.8EG 9.82019-07-29
In MatrixSSL 3.8.3 Open through 4.2.1 Open, the DTLS server mishandles incoming network messages leading to a heap-based buffer overflow of up to 256 bytes and possible Remote Code Execution in parseSSLHandshake in sslDecode.c. During proc…
- CVE-2019-14457CRITICALCVSS 9.8EG 9.82019-09-10
VIVOTEK IP Camera devices with firmware before 0x20x have a stack-based buffer overflow via a crafted HTTP header.
- CVE-2019-14464MEDIUMCVSS 5.5EG 5.52019-07-31
XMFile::read in XMFile.cpp in milkyplay in MilkyTracker 1.02.00 has a heap-based buffer overflow.
- CVE-2019-14465HIGHCVSS 7.8EG 7.82019-07-31
fmt_mtm_load_song in fmt/mtm.c in Schism Tracker 20190722 has a heap-based buffer overflow.
- CVE-2019-14492HIGHCVSS 7.5EG 7.52019-08-01
An issue was discovered in OpenCV before 3.4.7 and 4.x before 4.1.1. There is an out of bounds read/write in the function HaarEvaluator::OptFeature::calc in modules/objdetect/src/cascadedetect.hpp, which leads to denial of service.
- CVE-2019-14495CRITICALCVSS 9.8EG 9.82019-08-01
webadmin.c in 3proxy before 0.8.13 has an out-of-bounds write in the admin interface.
- CVE-2019-14496HIGHCVSS 7.8EG 7.82019-08-01
LoaderXM::load in LoaderXM.cpp in milkyplay in MilkyTracker 1.02.00 has a stack-based buffer overflow.
- CVE-2019-14497HIGHCVSS 7.8EG 7.82019-08-01
ModuleEditor::convertInstrument in tracker/ModuleEditor.cpp in MilkyTracker 1.02.00 has a heap-based buffer overflow.
- CVE-2019-14524HIGHCVSS 7.8EG 7.82019-08-02
An issue was discovered in Schism Tracker through 20190722. There is a heap-based buffer overflow via a large number of song patterns in fmt_mtm_load_song in fmt/mtm.c, a different vulnerability than CVE-2019-14465.
- CVE-2019-14528HIGHCVSS 7.8EG 7.82019-08-02
GnuCOBOL 2.2 has a heap-based buffer overflow in read_literal in cobc/scanner.l via crafted COBOL source code.
- CVE-2019-14541HIGHCVSS 7.8EG 7.82019-08-02
GnuCOBOL 2.2 has a stack-based buffer overflow in cb_encode_program_id in cobc/typeck.c via crafted COBOL source code.
- CVE-2019-1456HIGHCVSS 8.8EG 8.82019-11-12
A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles specially crafted OpenType fonts, aka 'OpenType Font Parsing Remote Code Execution Vulnerability'. This CVE ID…
- CVE-2019-14563HIGHCVSS 7.8EG 7.82020-11-23
Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.
- CVE-2019-14570HIGHCVSS 7.8EG 7.82019-10-11
Memory corruption in system firmware for Intel(R) NUC may allow a privileged user to potentially enable escalation of privilege, denial of service and/or information disclosure via local access.
- CVE-2019-14612MEDIUMCVSS 6.7EG 6.72019-12-16
Out of bounds write in firmware for Intel(R) NUC(R) may allow a privileged user to potentially enable escalation of privilege via local access.
- CVE-2019-14662MEDIUMCVSS 5.5EG 5.52019-08-05
Brandy 1.20.1 has a stack-based buffer overflow in fileio_openout in fileio.c via crafted BASIC source code.
- CVE-2019-14663MEDIUMCVSS 5.5EG 5.52019-08-05
Brandy 1.20.1 has a stack-based buffer overflow in fileio_openin in fileio.c via crafted BASIC source code.
- CVE-2019-14665MEDIUMCVSS 5.5EG 5.52019-08-05
Brandy 1.20.1 has a heap-based buffer overflow in define_array in variables.c via crafted BASIC source code.
- CVE-2019-1468HIGHCVSS 8.8EG 8.82019-12-10
A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts, aka 'Win32k Graphics Remote Code Execution Vulnerability'.
- CVE-2019-14690HIGHCVSS 8.8EG 8.82019-08-06
AdPlug 2.3.1 has a heap-based buffer overflow in CxadbmfPlayer::__bmf_convert_stream() in bmf.cpp.
- CVE-2019-14691HIGHCVSS 8.8EG 8.82019-08-06
AdPlug 2.3.1 has a heap-based buffer overflow in CdtmLoader::load() in dtm.cpp.
- CVE-2019-14692HIGHCVSS 8.8EG 8.82019-08-06
AdPlug 2.3.1 has a heap-based buffer overflow in CmkjPlayer::load() in mkj.cpp.
- CVE-2019-14697CRITICALCVSS 9.8EG 9.82019-08-06
musl libc through 1.1.23 has an x87 floating-point stack adjustment imbalance, related to the math/i386/ directory. In some cases, use of this library could introduce out-of-bounds writes that are not present in an application's source cod…
- CVE-2019-14715MEDIUMCVSS 6.8EG 6.82020-10-23
Verifone Pinpad Payment Terminals allow undocumented physical access to the system via an SBI bootloader memory write operation.
- CVE-2019-14732HIGHCVSS 8.8EG 8.82019-08-07
AdPlug 2.3.1 has multiple heap-based buffer overflows in Ca2mLoader::load() in a2m.cpp.
- CVE-2019-14733HIGHCVSS 8.8EG 8.82019-08-07
AdPlug 2.3.1 has multiple heap-based buffer overflows in CradLoader::load() in rad.cpp.
- CVE-2019-14734HIGHCVSS 8.8EG 8.82019-08-07
AdPlug 2.3.1 has multiple heap-based buffer overflows in CmtkLoader::load() in mtk.cpp.
- CVE-2019-14814HIGHCVSS 7.8EG 7.82019-09-20
There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.
- CVE-2019-14815HIGHCVSS 7.8EG 7.82019-11-25
A vulnerability was found in Linux Kernel, where a Heap Overflow was found in mwifiex_set_wmm_params() function of Marvell Wifi Driver.
- CVE-2019-14816HIGHCVSS 7.8EG 7.82019-09-20
There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.
- CVE-2019-14821HIGHCVSS 8.8EG 8.82019-09-19
An out-of-bounds access issue was found in the Linux kernel, all versions through 5.3, in the way Linux kernel's KVM hypervisor implements the Coalesced MMIO write operation. It operates on an MMIO ring buffer 'struct kvm_coalesced_mmio' o…
- CVE-2019-1485HIGHCVSS 7.5EG 7.52019-12-10
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote Code Execution Vulnerability'.
- CVE-2019-14895CRITICALCVSS 9.8EG 9.82019-11-29
A heap-based buffer overflow was discovered in the Linux kernel, all versions 3.x.x and 4.x.x before 4.18.0, in Marvell WiFi chip driver. The flaw could occur when the station attempts a connection negotiation during the handling of the re…
- CVE-2019-14896CRITICALCVSS 9.8EG 9.82019-11-27
A heap-based buffer overflow vulnerability was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lb…
- CVE-2019-14897CRITICALCVSS 9.8EG 9.82019-11-29
A stack-based buffer overflow was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. An attacker is able to cause a denial of service (system crash) or, possibly execute arbitrary code, when a STA works in IBSS …
- CVE-2019-14901CRITICALCVSS 9.8EG 9.82019-11-29
A heap overflow flaw was found in the Linux kernel, all versions 3.x.x and 4.x.x before 4.18.0, in Marvell WiFi chip driver. The vulnerability allows a remote attacker to cause a system crash, resulting in a denial of service, or execute a…
- CVE-2019-14906CRITICALCVSS 9.8EG 9.82020-01-07
A flaw was found with the RHSA-2019:3950 erratum, where it did not fix the CVE-2019-13616 SDL vulnerability. This issue only affects Red Hat SDL packages, SDL versions through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow f…
- CVE-2019-14934HIGHCVSS 7.8EG 7.82019-08-11
An issue was discovered in PDFResurrect before 0.18. pdf_load_pages_kids in pdf.c doesn't validate a certain size value, which leads to a malloc failure and out-of-bounds write.
- CVE-2019-14970HIGHCVSS 7.8EG 7.82019-08-29
A vulnerability in mkv::event_thread_t in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based buffer overflow via a crafted .mkv file.
- CVE-2019-15048HIGHCVSS 8.8EG 8.82019-08-14
An issue was discovered in Bento4 1.5.1.0. There is a heap-based buffer overflow in the AP4_RtpAtom class at Core/Ap4RtpAtom.cpp.
- CVE-2019-15148MEDIUMCVSS 6.5EG 6.52019-08-18
GoPro GPMF-parser 1.2.2 has an out-of-bounds write in OpenMP4Source in demo/GPMF_mp4reader.c.
- CVE-2019-15540HIGHCVSS 7.8EG 7.82019-08-25
filters/filter-cso/filter-stream.c in the CSO filter in libMirage 3.2.2 in CDemu does not validate the part size, triggering a heap-based buffer overflow that can lead to root access by a local Linux user.
- CVE-2019-15543CRITICALCVSS 9.8EG 9.82019-08-26
An issue was discovered in the slice-deque crate before 0.2.0 for Rust. There is memory corruption in certain allocation cases.
- CVE-2019-15554CRITICALCVSS 9.8EG 9.82019-08-26
An issue was discovered in the smallvec crate before 0.6.10 for Rust. There is memory corruption for certain grow attempts with less than the current capacity.
- CVE-2019-15661HIGHCVSS 7.2EG 7.22020-03-20
An issue was discovered in Rivet Killer Control Center before 2.1.1352. IOCTL 0x120004 in KfeCo10X64.sys fails to validate parameters, leading to a stack-based buffer overflow, which can lead to code execution or escalation of privileges.
Map vulnerabilities like CWE-787 to your infrastructure
EchelonGraph correlates every CVE — across CWE-787 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →