Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

CVEs (14,079)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2026-0030 1Google 1Android Mar 6, 2026 Mar 2, 2026 N/A· v4 8.4 HIGH· v3 N/A· v2 In __host_check_page_state_range of mem_protect.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed...Show more In __host_check_page_state_range of mem_protect.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Show less
CVE-2026-0010 1Google 1Android Mar 6, 2026 Mar 2, 2026 N/A· v4 8.4 HIGH· v3 N/A· v2 In onTransact of IDrmManagerService.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User intera...Show more In onTransact of IDrmManagerService.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Show less
CVE-2025-32313 1Google 1Android Mar 6, 2026 Mar 2, 2026 N/A· v4 8.4 HIGH· v3 N/A· v2 In UsageEvents of UsageEvents.java, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interact...Show more In UsageEvents of UsageEvents.java, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Show less
CVE-2025-59603 1Qualcomm 29Cologne Firmware Fastconnect 6900 FirmwareFastconnect 7800 Firmware+26 more Mar 4, 2026 Mar 2, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory Corruption when processing invalid user address with nonstandard buffer address.
CVE-2025-47373 1Qualcomm 184Ar8035 Firmware Cologne FirmwareFastconnect 6200 Firmware+181 more Mar 4, 2026 Mar 2, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory Corruption when accessing buffers with invalid length during TA invocation.
CVE-2026-20444 1Google 1Android Mar 3, 2026 Mar 2, 2026 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In display, there is a possible memory corruption due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not ne...Show more In display, there is a possible memory corruption due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10436995; Issue ID: MSV-5721.Show less
CVE-2026-20441 1Google 1Android Mar 3, 2026 Mar 2, 2026 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In MAE, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not need...Show more In MAE, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10432500; Issue ID: MSV-5803.Show less
CVE-2026-20440 1Google 1Android Mar 3, 2026 Mar 2, 2026 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In MAE, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not need...Show more In MAE, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10431968; Issue ID: MSV-5824.Show less
CVE-2026-20434 1Mediatek 5Lr12a Lr13Nr15+2 more Mar 2, 2026 Mar 2, 2026 N/A· v4 7.5 HIGH· v3 N/A· v2 In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additi...Show more In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of privilege, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: MOLY00782946; Issue ID: MSV-4135.Show less
CVE-2026-20430 2Mediatek Openwrt 2Openwrt Software Development Kit Mar 2, 2026 Mar 2, 2026 N/A· v4 8.8 HIGH· v3 N/A· v2 In wlan AP FW, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/adjacent) escalation of privilege with no additional execution privileges needed. User interact...Show more In wlan AP FW, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote (proximal/adjacent) escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00467553; Issue ID: MSV-5151.Show less
CVE-2026-20428 1Google 1Android Mar 3, 2026 Mar 2, 2026 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not...Show more In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5536.Show less
CVE-2026-20427 1Google 1Android Mar 3, 2026 Mar 2, 2026 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In display, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is...Show more In display, there is a possible escalation of privilege due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5537.Show less
CVE-2026-20426 1Google 1Android Mar 3, 2026 Mar 2, 2026 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not...Show more In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5538.Show less
CVE-2026-20425 1Google 1Android Mar 3, 2026 Mar 2, 2026 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not...Show more In display, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10320471; Issue ID: MSV-5539.Show less
CVE-2026-20423 1Mediatek 1Nbiot Sdk Mar 3, 2026 Mar 2, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 In wlan STA driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploi...Show more In wlan STA driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00465314; Issue ID: MSV-4956.Show less
CVE-2026-20416 1Google 1Android Mar 3, 2026 Mar 2, 2026 N/A· v4 7.2 HIGH· v3 N/A· v2 In pcie, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not nee...Show more In pcie, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10315038 / ALPS10340155; Issue ID: MSV-5155.Show less
CVE-2026-3408 1Openbabel 1Open Babel Apr 29, 2026 Mar 2, 2026 2.1 LOW· v4 6.5 MEDIUM· v3 5.0 MEDIUM· v2 A vulnerability was identified in Open Babel up to 3.1.1. This impacts the function OBAtom::GetExplicitValence of the file isrc/atom.cpp of the component CDXML File Handler. Such manipulation leads to null pointer derefe...Show more A vulnerability was identified in Open Babel up to 3.1.1. This impacts the function OBAtom::GetExplicitValence of the file isrc/atom.cpp of the component CDXML File Handler. Such manipulation leads to null pointer dereference. The attack can be launched remotely. The exploit is publicly available and might be used. The name of the patch is e23a224b8fd9d7c2a7cde9ef4ec6afb4c05aa08a. It is best practice to apply a patch to resolve this issue.Show less
CVE-2026-3400 1Tenda 1Ac15 Firmware Mar 3, 2026 Mar 2, 2026 7.4 HIGH· v4 9.8 CRITICAL· v3 9.0 HIGH· v2 A security flaw has been discovered in Tenda AC15 up to 15.13.07.13. Affected by this issue is some unknown functionality of the file /goform/TextEditingConversion. The manipulation of the argument wpapsk_crypto2_4g resu...Show more A security flaw has been discovered in Tenda AC15 up to 15.13.07.13. Affected by this issue is some unknown functionality of the file /goform/TextEditingConversion. The manipulation of the argument wpapsk_crypto2_4g results in stack-based buffer overflow. The attack may be launched remotely. The exploit has been released to the public and may be used for attacks.Show less
CVE-2026-3382 1Chaiscript 1Chaiscript Apr 29, 2026 Mar 1, 2026 1.9 LOW· v4 5.5 MEDIUM· v3 1.7 LOW· v2 A security flaw has been discovered in ChaiScript up to 6.1.0. The impacted element is the function chaiscript::Boxed_Number::get_as of the file include/chaiscript/dispatchkit/boxed_number.hpp. Performing a manipulation...Show more A security flaw has been discovered in ChaiScript up to 6.1.0. The impacted element is the function chaiscript::Boxed_Number::get_as of the file include/chaiscript/dispatchkit/boxed_number.hpp. Performing a manipulation results in memory corruption. The attack requires a local approach. The exploit has been released to the public and may be used for attacks. The project was informed of the problem early through an issue report but has not responded yet.Show less
CVE-2026-22716 - - Mar 2, 2026 Feb 27, 2026 N/A· v4 5.0 MEDIUM· v3 N/A· v2 Out-of-bound write vulnerability in VMware Workstation 25H1 and below on any platform allows an actor with non-administrative privileges on a guest VM to terminate certain Workstation processes.

Previous 1...313233...704 Next