CWE-126
446 CVEs • Abstraction: Variant
Buffer Over-read
The product reads from a buffer using buffer access mechanisms such as indexes or pointers that reference memory locations after the targeted buffer.
CVEs (446)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Microsoft 12Windows 10 1507 Windows 10 1607Windows 10 1809+9 moreApr 8, 2025 Sep 12, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Common Log File System Driver Elevation of Privilege Vulnerability |
1Microsoft 9Windows 10 1607 Windows 10 1809Windows 10 21h2+6 moreJan 1, 2025 Sep 12, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Windows Kernel Information Disclosure Vulnerability |
1Microsoft 5Windows Server 2008 Windows Server 2012Windows Server 2016+2 moreNov 21, 2024 Sep 12, 2023 N/A· v4 5.3 MEDIUM· v3 N/A· v2 DHCP Server Service Information Disclosure Vulnerability |
3D Builder Remote Code Execution Vulnerability |
1Qualcomm 66Csr8811 Firmware Fastconnect 6900 FirmwareFastconnect 7800 Firmware+63 moreNov 21, 2024 Sep 5, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Transient DOS in WLAN firmware while parsing MLO (multi-link operation). |
1Qualcomm 190315 5g Firmware Aqt1000 FirmwareAr8035 Firmware+187 moreNov 21, 2024 Sep 5, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Transient DOS in WLAN Firmware while interpreting MBSSID IE of a received beacon frame. |
1Qualcomm 43Qca6390 Firmware Qca6391 FirmwareQca6426 Firmware+40 moreNov 21, 2024 Sep 5, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Transient DOS in Bluetooth HOST while passing descriptor to validate the blacklisted BT keyboard. |
1Qualcomm 38Aqt1000 Firmware Qca6390 FirmwareQca6391 Firmware+35 moreNov 21, 2024 Sep 5, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption due to buffer over-read in Modem while processing SetNativeHandle RTP service. |
1Qualcomm 45Aqt1000 Firmware Qam8295p FirmwareQca6390 Firmware+42 moreNov 21, 2024 Sep 5, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Information disclosure in Automotive multimedia due to buffer over-read. |
Buffer Over-read in GitHub repository gpac/gpac prior to 2.3-DEV. |
1Microsoft 12Windows 10 1507 Windows 10 1607Windows 10 1809+9 moreJan 1, 2025 Aug 8, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability |
1Microsoft 7Windows 10 1809 Windows 10 21h2Windows 10 22h2+4 moreNov 21, 2024 Aug 8, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability |
1Qualcomm 71Ar8035 Firmware Mdm9628 FirmwareQam8295p Firmware+68 moreNov 21, 2024 Aug 8, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Transient DOS in Audio while remapping channel buffer in media codec decoding. |
1Qualcomm 46Apq8009 Firmware Apq8017 FirmwareApq8037 Firmware+43 moreNov 21, 2024 Aug 8, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Information disclosure in Network Services due to buffer over-read while the device receives DNS response. |
iSCSI dissector crash in Wireshark 4.0.0 to 4.0.6 allows denial of service via packet injection or crafted capture file |
1Microsoft 12Windows 10 1507 Windows 10 1607Windows 10 1809+9 moreNov 21, 2024 Jul 11, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Windows Extended Negotiation Denial of Service Vulnerability |
1Microsoft 11Windows 10 1507 Windows 10 1607Windows 10 1809+8 moreNov 21, 2024 Jul 11, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Microsoft PostScript and PCL6 Class Printer Driver Information Disclosure Vulnerability |
1Microsoft 12Windows 10 1507 Windows 10 1607Windows 10 1809+9 moreNov 21, 2024 Jul 11, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Remote Procedure Call Runtime Denial of Service Vulnerability |
1Microsoft 12Windows 10 1507 Windows 10 1607Windows 10 1809+9 moreNov 21, 2024 Jul 11, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Remote Procedure Call Runtime Denial of Service Vulnerability |
1Microsoft 12Windows 10 1507 Windows 10 1607Windows 10 1809+9 moreNov 21, 2024 Jul 11, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Remote Procedure Call Runtime Denial of Service Vulnerability |