Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

CVEs (14,114)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-49595 2Level1 Realtek 2Rtl819x Jungle Software Development Kit Wbr 6013 Firmware Nov 4, 2025 Jul 8, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 A stack-based buffer overflow vulnerability exists in the boa rollback_control_code functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to arbitrary code execution...Show more A stack-based buffer overflow vulnerability exists in the boa rollback_control_code functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability.Show less
CVE-2023-49073 2Level1 Realtek 2Rtl819x Jungle Software Development Kit Wbr 6013 Firmware Nov 4, 2025 Jul 8, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 A stack-based buffer overflow vulnerability exists in the boa formFilter functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary code execution. An attacker...Show more A stack-based buffer overflow vulnerability exists in the boa formFilter functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability.Show less
CVE-2023-48270 2Level1 Realtek 2Rtl819x Jungle Software Development Kit Wbr 6013 Firmware Nov 4, 2025 Jul 8, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 A stack-based buffer overflow vulnerability exists in the boa formDnsv6 functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to arbitrary code execution. An attacke...Show more A stack-based buffer overflow vulnerability exists in the boa formDnsv6 functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability.Show less
CVE-2023-47856 2Level1 Realtek 2Rtl819x Jungle Software Development Kit Wbr 6013 Firmware Nov 4, 2025 Jul 8, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 A stack-based buffer overflow vulnerability exists in the boa set_RadvdPrefixParam functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to remote code execution. An...Show more A stack-based buffer overflow vulnerability exists in the boa set_RadvdPrefixParam functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to remote code execution. An attacker can send a sequence of requests to trigger this vulnerability.Show less
CVE-2023-45215 2Level1 Realtek 2Rtl819x Jungle Software Development Kit Wbr 6013 Firmware Nov 4, 2025 Jul 8, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 A stack-based buffer overflow vulnerability exists in the boa setRepeaterSsid functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to arbitrary code execution. An a...Show more A stack-based buffer overflow vulnerability exists in the boa setRepeaterSsid functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of network requests can lead to arbitrary code execution. An attacker can send a sequence of requests to trigger this vulnerability.Show less
CVE-2023-41251 2Level1 Realtek 2Rtl819x Jungle Software Development Kit Wbr 6013 Firmware Nov 4, 2025 Jul 8, 2024 N/A· v4 7.2 HIGH· v3 N/A· v2 A stack-based buffer overflow vulnerability exists in the boa formRoute functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can...Show more A stack-based buffer overflow vulnerability exists in the boa formRoute functionality of Realtek rtl819x Jungle SDK v3.4.11. A specially crafted series of HTTP requests can lead to remote code execution. An attacker can send an HTTP request to trigger this vulnerability.Show less
CVE-2024-27459 1Openvpn 1Openvpn Nov 21, 2024 Jul 8, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 The interactive service in OpenVPN 2.6.9 and earlier allows an attacker to send data causing a stack overflow which can be used to execute arbitrary code with more privileges.
CVE-2024-29509 1Artifex 1Ghostscript Mar 20, 2025 Jul 3, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Artifex Ghostscript before 10.03.0 has a heap-based overflow when PDFPassword (e.g., for runpdf) has a \000 byte in the middle.
CVE-2024-29506 1Artifex 1Ghostscript Nov 21, 2024 Jul 3, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Artifex Ghostscript before 10.03.0 has a stack-based buffer overflow in the pdfi_apply_filter() function via a long PDF filter name.
CVE-2022-25480 1Realtek 2Rtsper Rtsuer Mar 25, 2025 Jul 2, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Vulnerability in Realtek RtsPer driver for PCIe Card Reader (RtsPer.sys) before 10.0.22000.21355 and Realtek RtsUer driver for USB Card Reader (RtsUer.sys) before 10.0.22000.31274 allows writing to kernel memory beyond t...Show more Vulnerability in Realtek RtsPer driver for PCIe Card Reader (RtsPer.sys) before 10.0.22000.21355 and Realtek RtsUer driver for USB Card Reader (RtsUer.sys) before 10.0.22000.31274 allows writing to kernel memory beyond the SystemBuffer of the IRP.Show less
CVE-2024-4467 - - Feb 25, 2026 Jul 2, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 A flaw was found in the QEMU disk image utility (qemu-img) 'info' command. A specially crafted image file containing a `json:{}` value describing block devices in QMP could cause the qemu-img process on the host to consu...Show more A flaw was found in the QEMU disk image utility (qemu-img) 'info' command. A specially crafted image file containing a `json:{}` value describing block devices in QMP could cause the qemu-img process on the host to consume large amounts of memory or CPU time, leading to denial of service or read/write to an existing external file.Show less
CVE-2024-22104 2Jungo Mitsubishielectric 35Cpu Module Logging Configuration Tool Cw ConfiguratorData Transfer+32 more Nov 21, 2024 Jul 2, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.5.1 allows local attackers to cause a Windows blue screen error and Denial of Service (DoS).
CVE-2024-22103 2Jungo Mitsubishielectric 35Cpu Module Logging Configuration Tool Cw ConfiguratorData Transfer+32 more Nov 21, 2024 Jul 2, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.6.0 allows local attackers to cause a Windows blue screen error and Denial of Service (DoS).
CVE-2023-51778 2Jungo Mitsubishielectric 35Cpu Module Logging Configuration Tool Cw ConfiguratorData Transfer+32 more Mar 13, 2025 Jul 2, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.1.0 allows local attackers to cause a Windows blue screen error and Denial of Service (DoS).
CVE-2024-20901 1Samsung 1Android Nov 21, 2024 Jul 2, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Improper input validation in copying data to buffer cache in libsaped prior to SMR Jul-2024 Release 1 allows local attackers to write out-of-bounds memory.
CVE-2024-20893 1Samsung 1Android Nov 21, 2024 Jul 2, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Improper input validation in libmediaextractorservice.so prior to SMR Jul-2024 Release 1 allows local attackers to trigger memory corruption.
CVE-2024-37185 1Openatom 1Openharmony Nov 21, 2024 Jul 2, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds write.
CVE-2024-37077 1Openatom 1Openharmony Nov 21, 2024 Jul 2, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds write.
CVE-2024-36260 1Openatom 1Openharmony Nov 21, 2024 Jul 2, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds write.
CVE-2024-36243 1Openatom 1Openharmony Nov 21, 2024 Jul 2, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds read and write.

Previous 1...147148149...706 Next