Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

CVEs (14,093)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-43548 1Adobe 1Dimension May 19, 2025 May 13, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Dimension versions 4.1.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interac...Show more Dimension versions 4.1.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2024-29222 - - May 16, 2025 May 13, 2025 5.8 MEDIUM· v4 6.1 MEDIUM· v3 N/A· v2 Out-of-bounds write for some Intel(R) Graphics Driver software may allow an authenticated user to potentially enable denial of service via local access.
CVE-2025-30330 1Adobe 1Illustrator May 15, 2025 May 13, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Illustrator versions 29.3, 28.7.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requir...Show more Illustrator versions 29.3, 28.7.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2025-30328 1Adobe 1Animate May 15, 2025 May 13, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Animate versions 24.0.8, 23.0.11 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user...Show more Animate versions 24.0.8, 23.0.11 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2025-30322 1Adobe 1Substance 3d Painter May 19, 2025 May 13, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Substance3D - Painter versions 11.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires u...Show more Substance3D - Painter versions 11.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2025-27197 1Adobe 1Lightroom May 22, 2025 May 13, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Lightroom Desktop versions 8.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user i...Show more Lightroom Desktop versions 8.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2025-30388 1Microsoft 17Office Office Long Term Servicing ChannelWindows 10 1507+14 more May 19, 2025 May 13, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.
CVE-2025-30376 1Microsoft 5365 Apps ExcelOffice+2 more May 19, 2025 May 13, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2025-30318 1Adobe 1Indesign May 14, 2025 May 13, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue req...Show more InDesign Desktop versions ID19.5.2, ID20.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2025-29979 1Microsoft 5365 Apps ExcelOffice+2 more May 19, 2025 May 13, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2025-29967 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more May 19, 2025 May 13, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network.
CVE-2025-29966 1Microsoft 17Remote Desktop Windows 10 1507Windows 10 1607+14 more May 19, 2025 May 13, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Windows Remote Desktop allows an unauthorized attacker to execute code over a network.
CVE-2025-29964 1Microsoft 10Windows 10 1809 Windows 10 21h2Windows 10 22h2+7 more May 19, 2025 May 13, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.
CVE-2025-29963 1Microsoft 10Windows 10 1809 Windows 10 21h2Windows 10 22h2+7 more May 19, 2025 May 13, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.
CVE-2025-29962 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more May 19, 2025 May 13, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.
CVE-2025-29840 1Microsoft 11Windows 10 1507 Windows 10 1607Windows 10 1809+8 more Jun 23, 2025 May 13, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Stack-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over a network.
CVE-2025-24063 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more May 19, 2025 May 13, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.
CVE-2025-32756 1Fortinet 5Forticamera Firmware FortimailFortindr+2 more Jan 14, 2026 May 13, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A stack-based buffer overflow vulnerability [CWE-121] vulnerability in Fortinet FortiCamera 2.1.0 through 2.1.3, FortiCamera 2.0 all versions, FortiCamera 1.1 all versions, FortiMail 7.6.0 through 7.6.2, FortiMail 7.4.0...Show more A stack-based buffer overflow vulnerability [CWE-121] vulnerability in Fortinet FortiCamera 2.1.0 through 2.1.3, FortiCamera 2.0 all versions, FortiCamera 1.1 all versions, FortiMail 7.6.0 through 7.6.2, FortiMail 7.4.0 through 7.4.4, FortiMail 7.2.0 through 7.2.7, FortiMail 7.0.0 through 7.0.8, FortiNDR 7.6.0, FortiNDR 7.4.0 through 7.4.7, FortiNDR 7.2.0 through 7.2.4, FortiNDR 7.0.0 through 7.0.6, FortiRecorder 7.2.0 through 7.2.3, FortiRecorder 7.0.0 through 7.0.5, FortiRecorder 6.4.0 through 6.4.5, FortiVoice 7.2.0, FortiVoice 7.0.0 through 7.0.6, FortiVoice 6.4.0 through 6.4.10 allows a remote unauthenticated attacker to execute arbitrary code or commands via sending HTTP requests with specially crafted hash cookie.Show less
CVE-2025-40580 1Siemens 1Scalance Lpe9403 Firmware Jul 8, 2025 May 13, 2025 5.4 MEDIUM· v4 7.8 HIGH· v3 N/A· v2 A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions < V4.0 HF0). Affected devices are vulnerable to a stack-based buffer overflow. This could allow a non-privileged local attacker...Show more A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions < V4.0 HF0). Affected devices are vulnerable to a stack-based buffer overflow. This could allow a non-privileged local attacker to execute arbitrary code on the device or to cause a denial of service condition.Show less
CVE-2025-40579 1Siemens 1Scalance Lpe9403 Firmware Jul 8, 2025 May 13, 2025 5.4 MEDIUM· v4 7.8 HIGH· v3 N/A· v2 A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions < V4.0 HF0). Affected devices are vulnerable to a stack-based buffer overflow. This could allow a non-privileged local attacker...Show more A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions < V4.0 HF0). Affected devices are vulnerable to a stack-based buffer overflow. This could allow a non-privileged local attacker to execute arbitrary code on the device or to cause a denial of service condition.Show less

Previous 1...787980...705 Next