Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

CVEs (14,114)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-2184 - - Nov 21, 2024 Mar 11, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Buffer overflow in identifier field of WSD probe request process of Small Office Multifunction Printers and Laser Printers() which may allow an attacker on the network segment to trigger the affected product being unres...Show more Buffer overflow in identifier field of WSD probe request process of Small Office Multifunction Printers and Laser Printers() which may allow an attacker on the network segment to trigger the affected product being unresponsive or to execute arbitrary code.*:Satera MF740C Series/Satera MF640C Series/Satera LBP660C Series/Satera LBP620C Series firmware v12.07 and earlier, and Satera MF750C Series/Satera LBP670C Series firmware v03.09 and earlier sold in Japan.Color imageCLASS MF740C Series/Color imageCLASS MF640C Series/Color imageCLASS X MF1127C/Color imageCLASS LBP664Cdw/Color imageCLASS LBP622Cdw/Color imageCLASS X LBP1127C firmware v12.07 and earlier, and Color imageCLASS MF750C Series/Color imageCLASS X MF1333C/Color imageCLASS LBP674Cdw/Color imageCLASS X LBP1333C firmware v03.09 and earlier sold in US.i-SENSYS MF740C Series/i-SENSYS MF640C Series/C1127i Series/i-SENSYS LBP660C Series/i-SENSYS LBP620C Series/C1127P firmware v12.07 and earlier, and i-SENSYS MF750C Series/C1333i Series/i-SENSYS LBP673Cdw/C1333P firmware v03.09 and earlier sold in Europe. Show less
CVE-2024-23270 1Apple 4Ipad Os Iphone OsMacos+1 more Apr 2, 2026 Mar 8, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 The issue was addressed with improved memory handling. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5, tvOS 17.4. An app may be able to execute arbitrary c...Show more The issue was addressed with improved memory handling. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5, tvOS 17.4. An app may be able to execute arbitrary code with kernel privileges.Show less
CVE-2024-23265 1Apple 6Ipados Iphone OsMacos+3 more Apr 2, 2026 Mar 8, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 A memory corruption vulnerability was addressed with improved locking. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5, tvOS 1...Show more A memory corruption vulnerability was addressed with improved locking. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5, tvOS 17.4, visionOS 1.1, watchOS 10.4. An app may be able to cause unexpected system termination or write kernel memory.Show less
CVE-2024-23234 1Apple 1Macos Apr 2, 2026 Mar 8, 2024 N/A· v4 6.7 MEDIUM· v3 N/A· v2 An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5. An app may be able to execute arbitrary code with kernel p...Show more An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5. An app may be able to execute arbitrary code with kernel privileges.Show less
CVE-2024-23226 1Apple 6Ipad Os Iphone OsMacos+3 more Apr 2, 2026 Mar 8, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 The issue was addressed with improved memory handling. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, visionOS 1.1, watchOS 10.4. Processing web content may lead to arbitrary code executio...Show more The issue was addressed with improved memory handling. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4, tvOS 17.4, visionOS 1.1, watchOS 10.4. Processing web content may lead to arbitrary code execution.Show less
CVE-2023-48725 1Netgear 1Rax30 Firmware Nov 4, 2025 Mar 7, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 A stack-based buffer overflow vulnerability exists in the JSON Parsing getblockschedule() functionality of Netgear RAX30 1.0.11.96 and 1.0.7.78. A specially crafted HTTP request can lead to code execution. An attacker ca...Show more A stack-based buffer overflow vulnerability exists in the JSON Parsing getblockschedule() functionality of Netgear RAX30 1.0.11.96 and 1.0.7.78. A specially crafted HTTP request can lead to code execution. An attacker can make an authenticated HTTP request to trigger this vulnerability.Show less
CVE-2023-51395 - - Nov 21, 2024 Mar 7, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 The vulnerability described by CVE-2023-0972 has been additionally discovered in Silicon Labs Z-Wave end devices. This vulnerability may allow an unauthenticated attacker within Z-Wave range to overflow a stack buffer, l...Show more The vulnerability described by CVE-2023-0972 has been additionally discovered in Silicon Labs Z-Wave end devices. This vulnerability may allow an unauthenticated attacker within Z-Wave range to overflow a stack buffer, leading to arbitrary code execution.Show less
CVE-2024-2174 2Fedoraproject Google 2Chrome Fedora Dec 19, 2024 Mar 6, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Inappropriate implementation in V8 in Google Chrome prior to 122.0.6261.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-2173 2Fedoraproject Google 2Chrome Fedora Mar 21, 2025 Mar 6, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Out of bounds memory access in V8 in Google Chrome prior to 122.0.6261.111 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: High)
CVE-2023-52596 1Linux 1Linux Kernel Feb 14, 2025 Mar 6, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In the Linux kernel, the following vulnerability has been resolved: sysctl: Fix out of bounds access for empty sysctl registers When registering tables to the sysctl subsystem there is a check to see if header is a per...Show more In the Linux kernel, the following vulnerability has been resolved: sysctl: Fix out of bounds access for empty sysctl registers When registering tables to the sysctl subsystem there is a check to see if header is a permanently empty directory (used for mounts). This check evaluates the first element of the ctl_table. This results in an out of bounds evaluation when registering empty directories. The function register_sysctl_mount_point now passes a ctl_table of size 1 instead of size 0. It now relies solely on the type to identify a permanently empty register. Make sure that the ctl_table has at least one element before testing for permanent emptiness.Show less
CVE-2024-1220 1Moxa 4Nport W2150a T Firmware Nport W2150a FirmwareNport W2250a T Firmware+1 more Feb 25, 2025 Mar 6, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 A stack-based buffer overflow in the built-in web server in Moxa NPort W2150A/W2250A Series firmware version 2.3 and prior allows a remote attacker to exploit the vulnerability by sending crafted payload to the web servi...Show more A stack-based buffer overflow in the built-in web server in Moxa NPort W2150A/W2250A Series firmware version 2.3 and prior allows a remote attacker to exploit the vulnerability by sending crafted payload to the web service. Successful exploitation of the vulnerability could result in denial of service. Show less
CVE-2024-23296 1Apple 6Ipados Iphone OsMacos+3 more Apr 3, 2026 Mar 5, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, iOS 17.4 and iPadOS 17.4, macOS Monterey 12.7.6, macOS Sonoma 14.4, macOS Ventura 13.6.7, tvOS 17.4,...Show more A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 16.7.8 and iPadOS 16.7.8, iOS 17.4 and iPadOS 17.4, macOS Monterey 12.7.6, macOS Sonoma 14.4, macOS Ventura 13.6.7, tvOS 17.4, visionOS 1.1, watchOS 10.4. An attacker with arbitrary kernel read and write capability may be able to bypass kernel memory protections. Apple is aware of a report that this issue may have been exploited.Show less
CVE-2024-23225 1Apple 6Ipados Iphone OsMacos+3 more Apr 3, 2026 Mar 5, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5, tvOS 17.4,...Show more A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5, tvOS 17.4, visionOS 1.1, watchOS 10.4. An attacker with arbitrary kernel read and write capability may be able to bypass kernel memory protections. Apple is aware of a report that this issue may have been exploited.Show less
CVE-2024-22254 1Vmware 2Cloud Foundation Esxi May 7, 2025 Mar 5, 2024 N/A· v4 8.2 HIGH· v3 N/A· v2 VMware ESXi contains an out-of-bounds write vulnerability. A malicious actor with privileges within the VMX process may trigger an out-of-bounds write leading to an escape of the sandbox.
CVE-2023-45591 1Ailux 1Imx6 Apr 10, 2025 Mar 5, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 A CWE-122 “Heap-based Buffer Overflow” vulnerability in the “logger_generic” function of the “Ax_rtu” binary allows a remote authenticated attacker to trigger a memory corruption in the context of the binary. This may re...Show more A CWE-122 “Heap-based Buffer Overflow” vulnerability in the “logger_generic” function of the “Ax_rtu” binary allows a remote authenticated attacker to trigger a memory corruption in the context of the binary. This may result in a Denial-of-Service (DoS) condition, possibly in the execution of arbitrary code with the same privileges of the process (root), or have other unspecified impacts on the device. This issue affects: AiLux imx6 bundle below version imx6_1.0.7-2.Show less
CVE-2024-20832 1Samsung 1Android Feb 10, 2025 Mar 5, 2024 N/A· v4 6.7 MEDIUM· v3 N/A· v2 Heap overflow in Little Kernel in bootloader prior to SMR Mar-2024 Release 1 allows local privileged attackers to execute arbitrary code.
CVE-2024-20831 1Samsung 1Android Feb 10, 2025 Mar 5, 2024 N/A· v4 6.7 MEDIUM· v3 N/A· v2 Stack overflow in Little Kernel in bootloader prior to SMR Mar-2024 Release 1 allows local privileged attackers to execute arbitrary code.
CVE-2023-52432 1Samsung 1Android Feb 10, 2025 Mar 5, 2024 N/A· v4 7.1 HIGH· v3 N/A· v2 Improper input validation in IpcTxSndSetLoopbackCtrl in libsec-ril prior to SMR Sep-2023 Release 1 allows local attackers to write out-of-bounds memory.
CVE-2023-43549 1Qualcomm 136Ar8035 Firmware Csr8811 FirmwareFastconnect 6700 Firmware+133 more Jan 10, 2025 Mar 4, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while processing TPC target power table in FTM TPC.
CVE-2023-43548 1Qualcomm 136Aqt1000 Firmware Fastconnect 6200 FirmwareFastconnect 6700 Firmware+133 more Aug 11, 2025 Mar 4, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Memory corruption while parsing qcp clip with invalid chunk data size.

Previous 1...188189190...706 Next