CWE-787— Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.— MITRE CWE catalog
13,886 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-787page 80 of 278
- CVE-2020-3622HIGHCVSS 7.8EG 7.82020-09-08
u'Channel name string which has been read from shared memory is potentially subjected to string manipulations but not validated for NULL termination can results into memory corruption' in Snapdragon Auto, Snapdragon Compute, Snapdragon Con…
- CVE-2020-36220MEDIUMCVSS 5.9EG 5.92021-01-26
An issue was discovered in the va-ts crate before 0.0.4 for Rust. Because Demuxer<T> omits a required T: Send bound, a data race and memory corruption can occur.
- CVE-2020-36242CRITICALCVSS 9.1EG 9.12021-02-07
In the cryptography package before 3.3.2 for Python, certain sequences of update calls to symmetrically encrypt multi-GB values could result in an integer overflow and buffer overflow, as demonstrated by the Fernet class.
- CVE-2020-36244CRITICALCVSS 9.8EG 9.82021-02-10
The daemon in GENIVI diagnostic log and trace (DLT), is vulnerable to a heap-based buffer overflow that could allow an attacker to remotely execute arbitrary code on the DLT-Daemon (versions prior to 2.18.6).
- CVE-2020-36317HIGHCVSS 7.5EG 7.52021-04-11
In the standard library in Rust before 1.49.0, String::retain() function has a panic safety problem. It allows creation of a non-UTF-8 Rust string when the provided closure panics. This bug could result in a memory safety violation when ot…
- CVE-2020-36328CRITICALCVSS 9.8EG 9.82021-05-21
A flaw was found in libwebp in versions before 1.0.1. A heap-based buffer overflow in function WebPDecodeRGBInto is possible due to an invalid check for buffer size. The highest threat from this vulnerability is to data confidentiality and…
- CVE-2020-3635HIGHCVSS 7.8EG 7.82020-06-22
Stack based overflow If the maximum number of arguments allowed per request in perflock exceeds in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in APQ8053,…
- CVE-2020-36366MEDIUMCVSS 5.5EG 5.52021-05-28
Stack overflow vulnerability in parse_value Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file.
- CVE-2020-36367MEDIUMCVSS 5.5EG 5.52021-05-28
Stack overflow vulnerability in parse_block Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file.
- CVE-2020-36368MEDIUMCVSS 5.5EG 5.52021-05-28
Stack overflow vulnerability in parse_statement Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file.
- CVE-2020-36369MEDIUMCVSS 5.5EG 5.52021-05-28
Stack overflow vulnerability in parse_statement_list Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file.
- CVE-2020-36370MEDIUMCVSS 5.5EG 5.52021-05-28
Stack overflow vulnerability in parse_unary Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file.
- CVE-2020-36371MEDIUMCVSS 5.5EG 5.52021-05-28
Stack overflow vulnerability in parse_mul_div_rem Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file.
- CVE-2020-36372MEDIUMCVSS 5.5EG 5.52021-05-28
Stack overflow vulnerability in parse_plus_minus Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file.
- CVE-2020-36373MEDIUMCVSS 5.5EG 5.52021-05-28
Stack overflow vulnerability in parse_shifts Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file.
- CVE-2020-36374MEDIUMCVSS 5.5EG 5.52021-05-28
Stack overflow vulnerability in parse_comparison Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file.
- CVE-2020-36375MEDIUMCVSS 5.5EG 5.52021-05-28
Stack overflow vulnerability in parse_equality Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service (DoS) via a crafted file.
- CVE-2020-36400CRITICALCVSS 9.8EG 9.82021-07-01
ZeroMQ libzmq 4.3.3 has a heap-based buffer overflow in zmq::tcp_read, a different vulnerability than CVE-2021-20235.
- CVE-2020-36402HIGHCVSS 7.8EG 7.82021-07-01
Solidity 0.7.5 has a stack-use-after-return issue in smtutil::CHCSmtLib2Interface::querySolver. NOTE: c39a5e2b7a3fabbf687f53a2823fc087be6c1a7e is cited in the OSV "fixed" field but does not have a code change.
- CVE-2020-36403HIGHCVSS 8.8EG 8.82021-07-01
HTSlib through 1.10.2 allows out-of-bounds write access in vcf_parse_format (called from vcf_parse and vcf_read).
- CVE-2020-36406HIGHCVSS 8.8EG 8.82021-07-01
uWebSockets 18.11.0 and 18.12.0 has a stack-based buffer overflow in uWS::TopicTree::trimTree (called from uWS::TopicTree::unsubscribeAll). NOTE: the vendor's position is that this is "a minor issue or not even an issue at all" because the…
- CVE-2020-36407HIGHCVSS 8.8EG 8.82021-07-01
libavif 0.8.0 and 0.8.1 has an out-of-bounds write in avifDecoderDataFillImageGrid.
- CVE-2020-36428HIGHCVSS 8.8EG 8.82021-07-20
matio (aka MAT File I/O Library) 1.5.18 through 1.5.21 has a heap-based buffer overflow in ReadInt32DataDouble (called from ReadInt32Data and Mat_VarRead4).
- CVE-2020-36429MEDIUMCVSS 5.5EG 5.52021-07-20
Variant_encodeJson in open62541 1.x before 1.0.4 has an out-of-bounds write for a large recursion depth.
- CVE-2020-36430HIGHCVSS 7.8EG 7.82021-07-20
libass 0.15.x before 0.15.1 has a heap-based buffer overflow in decode_chars (called from decode_font and process_text) because the wrong integer data type is used for subtraction.
- CVE-2020-36431MEDIUMCVSS 5.5EG 5.52021-07-20
Unicorn Engine 1.0.2 has an out-of-bounds write in helper_wfe_arm.
- CVE-2020-3647HIGHCVSS 7.8EG 7.82020-09-08
u'Potential buffer overflow when accessing npu debugfs node "off"/"log" with large buffer size' in Snapdragon Compute, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music in MDM9607, QCS405, SC8180X, SDX55, SM6150, SM715…
- CVE-2020-3648HIGHCVSS 7.8EG 7.82020-09-08
u'Possible out of bound write in DSP driver code due to lack of check of data received from user' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snap…
- CVE-2020-36518HIGHCVSS 7.5EG 7.52022-03-11
jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of service via a large depth of nested objects.
- CVE-2020-36600HIGHCVSS 7.5EG 7.52022-09-16
Out-of-bounds write vulnerability in the power consumption module. Successful exploitation of this vulnerability may cause the system to restart.
- CVE-2020-36601HIGHCVSS 7.5EG 7.52022-09-16
Out-of-bounds write vulnerability in the kernel modules. Successful exploitation of this vulnerability may cause a panic reboot.
- CVE-2020-36602MEDIUMCVSS 6.1EG 6.12022-09-20
There is an out-of-bounds read and write vulnerability in some headset products. An unauthenticated attacker gets the device physically and crafts malformed message with specific parameter and sends the message to the affected products. Du…
- CVE-2020-3663CRITICALCVSS 9.8EG 9.82020-06-22
Buffer over-write may occur during fetching track decoder specific information if cb size exceeds buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon M…
- CVE-2020-3666HIGHCVSS 7.8EG 7.82020-09-08
u'Out of bounds memory access during memory copy while processing Host command' in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial I…
- CVE-2020-3676HIGHCVSS 7.8EG 7.82020-06-22
Possible memory corruption in perfservice due to improper validation array length taken from user application. in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile in APQ8096AU, APQ8098, Kamorta, MSM891…
- CVE-2020-36773CRITICALCVSS 9.8EG 9.82024-02-04
Artifex Ghostscript before 9.53.0 has an out-of-bounds write and use-after-free in devices/vector/gdevtxtw.c (for txtwrite) because a single character code in a PDF document can map to more than one Unicode code point (e.g., for a ligature…
- CVE-2020-36885CRITICALCVSS 9.8EG 9.82025-12-10
Sony IPELA Network Camera 1.82.01 contains a stack buffer overflow vulnerability in the ftpclient.cgi endpoint that allows remote attackers to execute arbitrary code. Attackers can exploit the vulnerability by sending a crafted POST reques…
- CVE-2020-36964CRITICALCVSS 9.8EG 9.82026-01-28
YATinyWinFTP contains a denial of service vulnerability that allows attackers to crash the FTP service by sending a 272-byte buffer with a trailing space. Attackers can exploit the service by connecting and sending a malformed command that…
- CVE-2020-3698CRITICALCVSS 9.8EG 9.82020-07-30
Out of bound write while QoS DSCP mapping due to improper input validation for data received from association response frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Sna…
- CVE-2020-37011HIGHCVSS 7.5EG 7.52026-01-29
Gnome Fonts Viewer 3.34.0 contains a heap corruption vulnerability that allows attackers to trigger an out-of-bounds write by crafting a malicious TTF font file. Attackers can generate a specially crafted TTF file with an oversized pattern…
- CVE-2020-37031HIGHCVSS 8.4EG 8.42026-01-30
Simple Startup Manager 1.17 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting memory through the 'File' input parameter. Attackers can craft a malicious payload with 268 bytes to …
- CVE-2020-3710HIGHCVSS 7.8EG 7.82020-01-29
Adobe Illustrator CC versions 24.0 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.
- CVE-2020-3711HIGHCVSS 7.8EG 7.82020-01-29
Adobe Illustrator CC versions 24.0 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.
- CVE-2020-37119CRITICALCVSS 9.8EG 9.82026-02-05
Nsauditor 3.0.28 and 3.2.1.0 contains a buffer overflow vulnerability in the DNS Lookup tool that allows attackers to execute arbitrary code by overwriting memory. Attackers can craft a malicious DNS query payload to trigger a three-byte o…
- CVE-2020-3712HIGHCVSS 7.8EG 7.82020-01-29
Adobe Illustrator CC versions 24.0 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.
- CVE-2020-3713HIGHCVSS 7.8EG 7.82020-01-29
Adobe Illustrator CC versions 24.0 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.
- CVE-2020-37132MEDIUMCVSS 6.2EG 6.22026-02-05
UltraVNC Launcher 1.2.4.0 contains a denial of service vulnerability in its password configuration properties that allows local attackers to crash the application. Attackers can paste an overly long 300-character string into the password f…
- CVE-2020-37133HIGHCVSS 7.5EG 7.52026-02-05
UltraVNC Launcher 1.2.4.0 contains a denial of service vulnerability in the Repeater Host configuration field that allows attackers to crash the application. Attackers can paste an overly long string of 300 characters into the Repeater Hos…
- CVE-2020-3714HIGHCVSS 7.8EG 7.82020-01-29
Adobe Illustrator CC versions 24.0 and earlier have a memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.
- CVE-2020-37140MEDIUMCVSS 5.5EG 5.52026-02-05
Everest, later referred to as AIDA64, 5.50.2100 contains a denial of service vulnerability that allows local attackers to crash the application by manipulating file open functionality. Attackers can generate a 450-byte buffer of repeated c…
Map vulnerabilities like CWE-787 to your infrastructure
EchelonGraph correlates every CVE — across CWE-787 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →