Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

CVEs (14,094)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-45774 - - May 13, 2025 Feb 18, 2025 N/A· v4 6.7 MEDIUM· v3 N/A· v2 A flaw was found in grub2. A specially crafted JPEG file can cause the JPEG parser of grub2 to incorrectly check the bounds of its internal buffers, resulting in an out-of-bounds write. The possibility of overwriting sen...Show more A flaw was found in grub2. A specially crafted JPEG file can cause the JPEG parser of grub2 to incorrectly check the bounds of its internal buffers, resulting in an out-of-bounds write. The possibility of overwriting sensitive information to bypass secure boot protections is not discarded.Show less
CVE-2025-1414 1Mozilla 1Firefox Apr 13, 2026 Feb 18, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Memory safety bugs present in Firefox 135. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability...Show more Memory safety bugs present in Firefox 135. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 135.0.1.Show less
CVE-2024-45320 - - Feb 18, 2025 Feb 18, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Out-of-bounds write vulnerability exists in DocuPrint CP225w 01.22.01 and earlier, DocuPrint CP228w 01.22.01 and earlier, DocuPrint CM225fw 01.10.01 and earlier, and DocuPrint CM228fw 01.10.01 and earlier. If an affected...Show more Out-of-bounds write vulnerability exists in DocuPrint CP225w 01.22.01 and earlier, DocuPrint CP228w 01.22.01 and earlier, DocuPrint CM225fw 01.10.01 and earlier, and DocuPrint CM228fw 01.10.01 and earlier. If an affected MFP processes a specially crafted printer job file, a denial-of-service (DoS) condition may occur.Show less
CVE-2025-1340 1Totolink 1X18 Firmware Mar 10, 2025 Feb 16, 2025 8.7 HIGH· v4 8.8 HIGH· v3 9.0 HIGH· v2 A vulnerability classified as critical has been found in TOTOLINK X18 9.1.0cu.2024_B20220329. Affected is the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi. The manipulation as part of String leads to stack-ba...Show more A vulnerability classified as critical has been found in TOTOLINK X18 9.1.0cu.2024_B20220329. Affected is the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi. The manipulation as part of String leads to stack-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2025-26508 1Hp 98499m6a Firmware 499m7a Firmware499m8a Firmware+95 more Jan 15, 2026 Feb 14, 2025 8.3 HIGH· v4 9.8 CRITICAL· v3 N/A· v2 Certain HP LaserJet Pro, HP LaserJet Enterprise, and HP LaserJet Managed Printers may potentially be vulnerable to Remote Code Execution and Elevation of Privilege when processing a PostScript print job.
CVE-2025-26519 1Musl Libc 1Musl Dec 10, 2025 Feb 14, 2025 N/A· v4 7.0 HIGH· v3 N/A· v2 musl libc 0.9.13 through 1.2.5 before 1.2.6 has an out-of-bounds write vulnerability when an attacker can trigger iconv conversion of untrusted EUC-KR text to UTF-8.
CVE-2023-34402 1Mercedes Benz 1Headunit Ntg6 Mercedes Benz User Experience Jun 27, 2025 Feb 13, 2025 N/A· v4 7.7 HIGH· v3 N/A· v2 Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB. Inside file is encapsulate another file, which service will drop during processing. Due to missed checks, attacker can achiev...Show more Mercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB. Inside file is encapsulate another file, which service will drop during processing. Due to missed checks, attacker can achieve Arbitrary File Write with service speech rights.Show less
CVE-2024-11345 - - Feb 13, 2025 Feb 13, 2025 N/A· v4 7.3 HIGH· v3 N/A· v2 A heap-based memory vulnerability has been identified in the Postscript interpreter in various Lexmark devices. The vulnerability can be leveraged by an attacker to execute arbitrary code.
CVE-2025-25901 1Tp Link 1Tl Wr841nd Firmware Feb 20, 2025 Feb 13, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 A buffer overflow vulnerability was discovered in TP-Link TL-WR841ND V11, triggered by the dnsserver1 and dnsserver2 parameters at /userRpm/WanSlaacCfgRpm.htm. This vulnerability allows attackers to cause a Denial of Ser...Show more A buffer overflow vulnerability was discovered in TP-Link TL-WR841ND V11, triggered by the dnsserver1 and dnsserver2 parameters at /userRpm/WanSlaacCfgRpm.htm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted packet.Show less
CVE-2025-25898 1Tp Link 1Tl Wr841nd Firmware Mar 18, 2025 Feb 13, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 A buffer overflow vulnerability was discovered in TP-Link TL-WR841ND V11 via the pskSecret parameter at /userRpm/WlanSecurityRpm.htm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted p...Show more A buffer overflow vulnerability was discovered in TP-Link TL-WR841ND V11 via the pskSecret parameter at /userRpm/WlanSecurityRpm.htm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted packet.Show less
CVE-2025-25897 1Tp Link 1Tl Wr841nd Firmware Mar 18, 2025 Feb 13, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 A buffer overflow vulnerability was discovered in TP-Link TL-WR841ND V11 via the 'ip' parameter at /userRpm/WanStaticIpV6CfgRpm.htm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted pa...Show more A buffer overflow vulnerability was discovered in TP-Link TL-WR841ND V11 via the 'ip' parameter at /userRpm/WanStaticIpV6CfgRpm.htm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted packet.Show less
CVE-2024-36274 - - Feb 12, 2025 Feb 12, 2025 7.1 HIGH· v4 6.5 MEDIUM· v3 N/A· v2 Out-of-bounds write in the Intel(R) 800 Series Ethernet Driver for Intel(R) Ethernet Adapter Complete Driver Pack before versions 29.1 may allow an unauthenticated user to potentially enable denial of service via adjacen...Show more Out-of-bounds write in the Intel(R) 800 Series Ethernet Driver for Intel(R) Ethernet Adapter Complete Driver Pack before versions 29.1 may allow an unauthenticated user to potentially enable denial of service via adjacent access.Show less
CVE-2024-31858 1Intel 1Quickassist Technology Dec 3, 2025 Feb 12, 2025 7.3 HIGH· v4 7.8 HIGH· v3 N/A· v2 Out-of-bounds write for some Intel(R) QuickAssist Technology software before version 2.2.0 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2025-25746 1Dlink 1Dir 853 Firmware Mar 18, 2025 Feb 12, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability via the Password parameter in the SetWanSettings module.
CVE-2025-25744 1Dlink 1Dir 853 Firmware Mar 5, 2025 Feb 12, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability via the Password parameter in the SetDynamicDNSSettings module.
CVE-2025-25742 1Dlink 1Dir 853 Firmware Mar 5, 2025 Feb 12, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 D-Link DIR-853 A1 FW1.20B07 was discovered to contain a stack-based buffer overflow vulnerability via the AccountPassword parameter in the SetSysEmailSettings module.
CVE-2025-1187 1Code Projects 1Police Fir Record Management System Feb 18, 2025 Feb 12, 2025 4.8 MEDIUM· v4 7.8 HIGH· v3 4.3 MEDIUM· v2 A vulnerability classified as critical was found in code-projects Police FIR Record Management System 1.0. Affected by this vulnerability is an unknown functionality of the component Delete Record Handler. The manipulati...Show more A vulnerability classified as critical was found in code-projects Police FIR Record Management System 1.0. Affected by this vulnerability is an unknown functionality of the component Delete Record Handler. The manipulation leads to stack-based buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used.Show less
CVE-2024-0143 - - Feb 12, 2025 Feb 12, 2025 N/A· v4 6.8 MEDIUM· v3 N/A· v2 NVIDIA nvJPEG2000 library contains a vulnerability where an attacker can cause an out-of-bounds write issue by means of a specially crafted JPEG2000 file. A successful exploit of this vulnerability might lead to code exe...Show more NVIDIA nvJPEG2000 library contains a vulnerability where an attacker can cause an out-of-bounds write issue by means of a specially crafted JPEG2000 file. A successful exploit of this vulnerability might lead to code execution and data tampering.Show less
CVE-2024-0142 - - Feb 12, 2025 Feb 12, 2025 N/A· v4 6.8 MEDIUM· v3 N/A· v2 NVIDIA nvJPEG2000 library contains a vulnerability where an attacker can cause an out-of-bounds write issue by means of a specially crafted JPEG2000 file. A successful exploit of this vulnerability might lead to code exe...Show more NVIDIA nvJPEG2000 library contains a vulnerability where an attacker can cause an out-of-bounds write issue by means of a specially crafted JPEG2000 file. A successful exploit of this vulnerability might lead to code execution and data tampering.Show less
CVE-2025-1240 1Winzip 1Winzip Aug 18, 2025 Feb 11, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 WinZip 7Z File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of WinZip. User interaction is required to ex...Show more WinZip 7Z File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of WinZip. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of 7Z files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-24986.Show less

Previous 1...959697...705 Next