Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

CVEs (14,113)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-44977 2Debian Linux 2Debian Linux Linux Kernel Apr 9, 2026 Sep 4, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Validate TA binary size Add TA binary size validation to avoid OOB write. (cherry picked from commit c0a04e3570d72aaf090962156ad085e37c62...Show more In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Validate TA binary size Add TA binary size validation to avoid OOB write. (cherry picked from commit c0a04e3570d72aaf090962156ad085e37c62e442)Show less
CVE-2024-42642 1Crucial 1Mx500 Firmware Feb 4, 2026 Sep 4, 2024 N/A· v4 6.7 MEDIUM· v3 N/A· v2 Micron Crucial MX500 Series Solid State Drives M3CR046 is vulnerable to Buffer Overflow, which can be triggered by sending specially crafted ATA packets from the host to the drive controller. NOTE: The supplier states th...Show more Micron Crucial MX500 Series Solid State Drives M3CR046 is vulnerable to Buffer Overflow, which can be triggered by sending specially crafted ATA packets from the host to the drive controller. NOTE: The supplier states that this vulnerability was fully remediated in December 2024 and that updated firmware is available through Crucial’s official support page.Show less
CVE-2024-8408 1Linksys 1Wrt54g Firmware Sep 5, 2024 Sep 4, 2024 5.3 MEDIUM· v4 9.8 CRITICAL· v3 6.5 MEDIUM· v2 A vulnerability was found in Linksys WRT54G 4.21.5. It has been rated as critical. Affected by this issue is the function validate_services_port of the file /apply.cgi of the component POST Parameter Handler. The manipul...Show more A vulnerability was found in Linksys WRT54G 4.21.5. It has been rated as critical. Affected by this issue is the function validate_services_port of the file /apply.cgi of the component POST Parameter Handler. The manipulation of the argument services_array leads to stack-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2024-34660 1Samsung 1Notes Sep 5, 2024 Sep 4, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Heap-based out-of-bounds write in Samsung Notes prior to version 4.4.21.62 allows local attackers to execute arbitrary code.
CVE-2024-34657 1Samsung 1Notes Sep 5, 2024 Sep 4, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Stack-based out-of-bounds write in Samsung Notes prior to version 4.4.21.62 allows remote attackers to execute arbitrary code.
CVE-2024-7970 1Google 1Chrome Jan 2, 2025 Sep 3, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Out of bounds write in V8 in Google Chrome prior to 128.0.6613.119 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-8389 1Mozilla 1Firefox Sep 4, 2024 Sep 3, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Memory safety bugs present in Firefox 129. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability...Show more Memory safety bugs present in Firefox 129. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 130.Show less
CVE-2024-8387 1Mozilla 3Firefox Firefox EsrThunderbird Sep 6, 2024 Sep 3, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Memory safety bugs present in Firefox 129, Firefox ESR 128.1, and Thunderbird 128.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited...Show more Memory safety bugs present in Firefox 129, Firefox ESR 128.1, and Thunderbird 128.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, and Thunderbird < 128.2.Show less
CVE-2024-8384 1Mozilla 2Firefox Firefox Esr Nov 4, 2025 Sep 3, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 The JavaScript garbage collector could mis-color cross-compartment objects if OOM conditions were detected at the right point between two passes. This could have led to memory corruption. This vulnerability affects Firef...Show more The JavaScript garbage collector could mis-color cross-compartment objects if OOM conditions were detected at the right point between two passes. This could have led to memory corruption. This vulnerability affects Firefox < 130, Firefox ESR < 128.2, Firefox ESR < 115.15, Thunderbird < 128.2, and Thunderbird < 115.15.Show less
CVE-2024-45306 1Vim 1Vim Nov 21, 2024 Sep 2, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Vim is an open source, command line text editor. Patch v9.1.0038 optimized how the cursor position is calculated and removed a loop, that verified that the cursor position always points inside a line and does not become...Show more Vim is an open source, command line text editor. Patch v9.1.0038 optimized how the cursor position is calculated and removed a loop, that verified that the cursor position always points inside a line and does not become invalid by pointing beyond the end of a line. Back then we assumed this loop is unnecessary. However, this change made it possible that the cursor position stays invalid and points beyond the end of a line, which would eventually cause a heap-buffer-overflow when trying to access the line pointer at the specified cursor position. It's not quite clear yet, what can lead to this situation that the cursor points to an invalid position. That's why patch v9.1.0707 does not include a test case. The only observed impact has been a program crash. This issue has been addressed in with the patch v9.1.0707. All users are advised to upgrade.Show less
CVE-2024-33054 1Qualcomm 32Fastconnect 6700 Firmware Fastconnect 6900 FirmwareFastconnect 7800 Firmware+29 more Aug 11, 2025 Sep 2, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption during the handshake between the Primary Virtual Machine and Trusted Virtual Machine.
CVE-2024-33052 1Qualcomm 197205 Mobile Firmware 215 Mobile FirmwareApq8017 Firmware+194 more Aug 11, 2025 Sep 2, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption when user provides data for FM HCI command control operations.
CVE-2024-33045 1Qualcomm 175Ar8035 Firmware Csra6620 FirmwareCsra6640 Firmware+172 more Aug 11, 2025 Sep 2, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption when BTFM client sends new messages over Slimbus to ADSP.
CVE-2024-33042 1Qualcomm 196205 Firmware 215 FirmwareApq8017 Firmware+193 more Aug 11, 2025 Sep 2, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption when Alternative Frequency offset value is set to 255.
CVE-2024-33038 1Qualcomm 43Fastconnect 6700 Firmware Fastconnect 6900 FirmwareFastconnect 7800 Firmware+40 more Aug 11, 2025 Sep 2, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while passing untrusted/corrupted pointers from DSP to EVA.
CVE-2024-39816 1Openatom 1Openharmony Sep 4, 2024 Sep 2, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 in OpenHarmony v4.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write.
CVE-2024-38386 1Openatom 1Openharmony Sep 4, 2024 Sep 2, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 in OpenHarmony v4.1.0 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write.
CVE-2024-20087 1Google 1Android Sep 5, 2024 Sep 2, 2024 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. P...Show more In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08932916; Issue ID: MSV-1550.Show less
CVE-2024-20086 1Google 1Android Sep 5, 2024 Sep 2, 2024 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. P...Show more In vdec, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS08932916; Issue ID: MSV-1551.Show less
CVE-2024-45508 1Htmldoc Project 1Htmldoc Sep 4, 2024 Sep 1, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 HTMLDOC before 1.9.19 has an out-of-bounds write in parse_paragraph in ps-pdf.cxx because of an attempt to strip leading whitespace from a whitespace-only node.

Previous 1...134135136...706 Next