Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

CVEs (14,114)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-7538 1Ofono Project 1Ofono Aug 29, 2024 Aug 6, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 oFono CUSD AT Command Stack-based Buffer Overflow Code Execution Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected installations of oFono. An attacker must first obtain the ab...Show more oFono CUSD AT Command Stack-based Buffer Overflow Code Execution Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected installations of oFono. An attacker must first obtain the ability to execute code on the target modem in order to exploit this vulnerability. The specific flaw exists within the parsing of responses from AT Commands. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-23190.Show less
CVE-2024-21980 1Amd 86Epyc 7203 Firmware Epyc 7203p FirmwareEpyc 72f3 Firmware+83 more Nov 26, 2024 Aug 5, 2024 N/A· v4 7.9 HIGH· v3 N/A· v2 Improper restriction of write operations in SNP firmware could allow a malicious hypervisor to potentially overwrite a guest's memory or UMC seed resulting in loss of confidentiality and integrity.
CVE-2023-31355 1Amd 86Epyc 7203 Firmware Epyc 7203p FirmwareEpyc 72f3 Firmware+83 more Nov 26, 2024 Aug 5, 2024 N/A· v4 6.0 MEDIUM· v3 N/A· v2 Improper restriction of write operations in SNP firmware could allow a malicious hypervisor to overwrite a guest's UMC seed potentially allowing reading of memory from a decommissioned guest.
CVE-2024-23356 1Qualcomm 208Aqt1000 Firmware Ar8031 FirmwareAr8035 Firmware+205 more Nov 26, 2024 Aug 5, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption during session sign renewal request calls in HLOS.
CVE-2024-23355 1Qualcomm 141Ar8035 Firmware Fastconnect 6200 FirmwareFastconnect 6700 Firmware+138 more Nov 26, 2024 Aug 5, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption when keymaster operation imports a shared key.
CVE-2024-21481 1Qualcomm 165Aqt1000 Firmware Ar8035 FirmwareFastconnect 6200 Firmware+162 more Aug 11, 2025 Aug 5, 2024 N/A· v4 8.4 HIGH· v3 N/A· v2 Memory corruption when preparing a shared memory notification for a memparcel in Resource Manager.
CVE-2024-40723 1Changingtec 1Hwatai Servisign Aug 9, 2024 Aug 2, 2024 N/A· v4 4.3 MEDIUM· v3 N/A· v2 The specific API in HWATAIServiSign Windows Version from CHANGING Information Technology does not properly validate the length of server-side inputs. When a user visits a spoofed website, unauthenticated remote attackers...Show more The specific API in HWATAIServiSign Windows Version from CHANGING Information Technology does not properly validate the length of server-side inputs. When a user visits a spoofed website, unauthenticated remote attackers can cause a stack-based buffer overflow in the HWATAIServiSign, temporarily disrupting its service.Show less
CVE-2024-40722 1Changingtec 1Tcb Servisign Aug 9, 2024 Aug 2, 2024 N/A· v4 4.3 MEDIUM· v3 N/A· v2 The specific API in TCBServiSign Windows Version from CHANGING Information Technology does does not properly validate the length of server-side input. When a user visits a spoofed website, unauthenticated remote attacker...Show more The specific API in TCBServiSign Windows Version from CHANGING Information Technology does does not properly validate the length of server-side input. When a user visits a spoofed website, unauthenticated remote attackers can cause a stack-based buffer overflow in the TCBServiSign, temporarily disrupting its service.Show less
CVE-2024-39392 1Adobe 1Indesign Dec 2, 2024 Aug 2, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 InDesign Desktop versions ID18.5.2, ID19.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this iss...Show more InDesign Desktop versions ID18.5.2, ID19.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2024-38490 1Dell 1Emc Idrac Service Module Aug 2, 2024 Aug 1, 2024 N/A· v4 4.4 MEDIUM· v3 N/A· v2 Dell iDRAC Service Module version 5.3.0.0 and prior, contain a Out of bound Write Vulnerability. A privileged local attacker could execute arbitrary code potentially resulting in a denial of service event.
CVE-2024-38489 1Dell 1Emc Idrac Service Module Aug 2, 2024 Aug 1, 2024 N/A· v4 4.4 MEDIUM· v3 N/A· v2 Dell iDRAC Service Module version 5.3.0.0 and prior contains Out of bound write Vulnerability. A privileged local attacker could execute arbitrary code potentially resulting in a denial of service (partial) event.
CVE-2024-25948 1Dell 1Emc Idrac Service Module Aug 2, 2024 Aug 1, 2024 N/A· v4 4.4 MEDIUM· v3 N/A· v2 Dell iDRAC Service Module version 5.3.0.0 and prior, contain a Out of bound Write Vulnerability. A privileged local attacker could execute arbitrary code potentially resulting in a denial of service event.
CVE-2024-25947 1Dell 1Emc Idrac Service Module Aug 2, 2024 Aug 1, 2024 N/A· v4 4.4 MEDIUM· v3 N/A· v2 Dell iDRAC Service Module version 5.3.0.0 and prior, contain an Out of bound Read Vulnerability. A privileged local attacker could execute arbitrary code potentially resulting in a denial of service event.
CVE-2024-31203 1Proges 1Thermoscan Ip Sep 30, 2024 Jul 31, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A “CWE-121: Stack-based Buffer Overflow” in the wd210std.dll dynamic library packaged with the ThermoscanIP installer allows a local attacker to possibly trigger a Denial-of-Service (DoS) condition on the target componen...Show more A “CWE-121: Stack-based Buffer Overflow” in the wd210std.dll dynamic library packaged with the ThermoscanIP installer allows a local attacker to possibly trigger a Denial-of-Service (DoS) condition on the target component.Show less
CVE-2024-41443 1Dbohdan 1Hicolor Mar 19, 2025 Jul 30, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A stack overflow in the function cp_dynamic() (/vendor/cute_png.h) of hicolor v0.5.0 allows attackers to cause a Denial of Service (DoS) via a crafted PNG file.
CVE-2024-41439 1Dbohdan 1Hicolor Nov 21, 2024 Jul 30, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A heap buffer overflow in the function cp_block() (/vendor/cute_png.h) of hicolor v0.5.0 allows attackers to cause a Denial of Service (DoS) via a crafted PNG file.
CVE-2024-41437 1Dbohdan 1Hicolor Mar 13, 2025 Jul 30, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A heap buffer overflow in the function cp_unfilter() (/vendor/cute_png.h) of hicolor v0.5.0 allows attackers to cause a Denial of Service (DoS) via a crafted PNG file.
CVE-2024-40777 1Apple 6Ipados Iphone OsMacos+3 more Apr 2, 2026 Jul 29, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing a maliciously crafted file...Show more An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, watchOS 10.6. Processing a maliciously crafted file may lead to unexpected app termination.Show less
CVE-2024-27873 1Apple 3Ipados Iphone OsMacos Apr 2, 2026 Jul 29, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8. Pr...Show more An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Monterey 12.7.6, macOS Sonoma 14.6, macOS Ventura 13.6.8. Processing a maliciously crafted video file may lead to unexpected app termination.Show less
CVE-2024-42094 1Linux 1Linux Kernel May 12, 2026 Jul 29, 2024 N/A· v4 7.1 HIGH· v3 N/A· v2 In the Linux kernel, the following vulnerability has been resolved: net/iucv: Avoid explicit cpumask var allocation on stack For CONFIG_CPUMASK_OFFSTACK=y kernel, explicit allocation of cpumask variable on stack is not...Show more In the Linux kernel, the following vulnerability has been resolved: net/iucv: Avoid explicit cpumask var allocation on stack For CONFIG_CPUMASK_OFFSTACK=y kernel, explicit allocation of cpumask variable on stack is not recommended since it can cause potential stack overflow. Instead, kernel code should always use cpumask_var API(s) to allocate cpumask var in config-neutral way, leaving allocation strategy to CONFIG_CPUMASK_OFFSTACK. Use cpumask_var API(s) to address it.Show less

Previous 1...142143144...706 Next