CWE-125— Out-of-bounds Read
7,893 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-125page 137 of 158
- CVE-2025-30306MEDIUMCVSS 5.5EG 5.52025-04-08
XMP Toolkit versions 2023.12 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation …
- CVE-2025-30307MEDIUMCVSS 5.5EG 5.52025-04-08
XMP Toolkit versions 2023.12 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation …
- CVE-2025-30308MEDIUMCVSS 5.5EG 5.52025-04-08
XMP Toolkit versions 2023.12 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation …
- CVE-2025-30309MEDIUMCVSS 5.5EG 5.52025-04-08
XMP Toolkit versions 2023.12 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation …
- CVE-2025-30313MEDIUMCVSS 5.5EG 5.52025-07-08
Illustrator versions 28.7.6, 29.5.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. Exploitation of this issue requires user interaction in that a victim must open a malici…
- CVE-2025-30347MEDIUMCVSS 4.0EG 4.02025-03-21
Varnish Enterprise before 6.0.13r13 allows remote attackers to obtain sensitive information via an out-of-bounds read for range requests on ephemeral MSE4 stevedore objects.
- CVE-2025-30376HIGHCVSS 7.8EG 7.82025-05-13
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-30381HIGHCVSS 7.8EG 7.82025-05-13
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-30419HIGHCVSS 7.8EG 7.82025-05-15
There is a memory corruption vulnerability due to an out of bounds read in GetSymbolBorderRectSize() when using the SymbolEditor in NI Circuit Design Suite. This vulnerability may result in information disclosure or arbitrary code execut…
- CVE-2025-30420HIGHCVSS 7.8EG 7.82025-05-15
There is a memory corruption vulnerability due to an out of bounds read in Bitmap::InternalDraw() when using the SymbolEditor in NI Circuit Design Suite. This vulnerability may result in information disclosure or arbitrary code execution…
- CVE-2025-30458CRITICALCVSS 9.8EG 9.82025-03-31
A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.4. An app may be able to read files outside of its sandbox.
- CVE-2025-31196MEDIUMCVSS 5.5EG 5.52025-05-12
An out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.7, macOS Sequoia 15.4, macOS Sonoma 14.7.6, macOS Ventura 13.7.6, tvOS 18.4, visionOS 2.4, watchOS 11.4. Proce…
- CVE-2025-31209MEDIUMCVSS 6.3EG 6.32025-05-12
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7, macOS Sequoia 15.5, macOS Sonoma 14.7.6, macOS Ventura 13.7.6, tvOS 18.5, visionOS 2.5, watchOS 11.5. Parsin…
- CVE-2025-31354MEDIUMCVSS 4.3EG 4.32025-04-11
Subnet Solutions PowerSYSTEM Center's SMTPS notification service can be affected by importing an EC certificate with crafted F2m parameters, which can lead to excessive CPU consumption during the evaluation of the curve parameters.
- CVE-2025-3160LOWCVSS 3.3EG 3.32025-04-03
A vulnerability has been found in Open Asset Import Library Assimp 5.4.3 and classified as problematic. This vulnerability affects the function Assimp::SceneCombiner::AddNodeHashes of the file code/Common/SceneCombiner.cpp of the component…
- CVE-2025-31937MEDIUMCVSS 5.6EG 5.62025-11-11
Out-of-bounds read for some Intel(R) QAT Windows software before version 2.6.0. within Ring 3: User Applications may allow a denial of service. System software adversary with an authenticated user combined with a high complexity attack may…
- CVE-2025-32003MEDIUMCVSS 6.5EG 6.52026-02-10
Out-of-bounds read in the firmware for some 100GbE Intel(R) Ethernet Network Adapter E810 before version cvl fw 1.7.6, cpk 1.3.7 within Ring 0: Bare Metal OS may allow a denial of service. Network adversary with an authenticated user combi…
- CVE-2025-32007MEDIUMCVSS 4.4EG 4.42026-02-10
Out-of-bounds read for some TDX before version tdx module 1.5.24 within Ring 0: Hypervisor may allow an information disclosure. Authorized adversary with a privileged user combined with a low complexity attack may enable data exposure. Thi…
- CVE-2025-32100MEDIUMCVSS 6.5EG 6.52025-09-02
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 1580, 9110, W920, W930, W1000, Modem 5123, Modem 5300, and Modem 5400. A programming m…
- CVE-2025-32365MEDIUMCVSS 4.0EG 4.02025-04-05
Poppler before 25.04.0 allows crafted input files to trigger out-of-bounds reads in the JBIG2Bitmap::combine function in JBIG2Stream.cc because of a misplaced isOk check.
- CVE-2025-32412HIGHCVSS 7.8EG 7.82025-06-17
Fuji Electric Smart Editor is vulnerable to an out-of-bounds read, which may allow an attacker to execute arbitrary code.
- CVE-2025-32415LOWCVSS 2.9EG 2.92025-04-17
In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap-based buffer under-read. To exploit this, a crafted XML document must be validated against an XML schema with certain identity constra…
- CVE-2025-32454HIGHCVSS 7.8EG 7.82025-05-13
A vulnerability has been identified in Teamcenter Visualization V14.3 (All versions < V14.3.0.14), Teamcenter Visualization V2312 (All versions < V2312.0010), Teamcenter Visualization V2406 (All versions < V2406.0008), Teamcenter Visualiza…
- CVE-2025-32460MEDIUMCVSS 4.0EG 4.02025-04-09
GraphicsMagick before 8e56520 has a heap-based buffer over-read in ReadJXLImage in coders/jxl.c, related to an ImportViewPixelArea call.
- CVE-2025-32704HIGHCVSS 8.4EG 8.42025-05-13
Buffer over-read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-32705HIGHCVSS 7.8EG 7.82025-05-13
Out-of-bounds read in Microsoft Office Outlook allows an unauthorized attacker to execute code locally.
- CVE-2025-32707HIGHCVSS 7.8EG 7.82025-05-13
Out-of-bounds read in Windows NTFS allows an unauthorized attacker to elevate privileges locally.
- CVE-2025-32715MEDIUMCVSS 6.5EG 6.52025-06-10
Out-of-bounds read in Remote Desktop Client allows an unauthorized attacker to disclose information over a network.
- CVE-2025-32716HIGHCVSS 7.8EG 7.82025-06-10
Out-of-bounds read in Windows Media allows an authorized attacker to elevate privileges locally.
- CVE-2025-32719MEDIUMCVSS 5.5EG 5.52025-06-10
Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
- CVE-2025-32720MEDIUMCVSS 5.5EG 5.52025-06-10
Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
- CVE-2025-32776MEDIUMCVSS 5.5EG 5.52025-04-15
OpenRazer is an open source driver and user-space daemon to control Razer device lighting and other features on GNU/Linux. By writing specially crafted data to the `matrix_custom_frame` file, an attacker can cause the custom kernel driver …
- CVE-2025-3285HIGHCVSS 7.8EG 7.82025-04-08
A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to read outside of the allocated memory buffer. The flaw is a result of improper validation of user-supplied data. If explo…
- CVE-2025-3286HIGHCVSS 7.8EG 7.82025-04-08
A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to read outside of the allocated memory buffer. The flaw is a result of improper validation of user-supplied data. If explo…
- CVE-2025-3287HIGHCVSS 7.8EG 7.82025-04-08
A local code execution vulnerability exists in the Rockwell Automation Arena® due to a stack-based memory buffer overflow. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose informat…
- CVE-2025-3288HIGHCVSS 7.8EG 7.82025-04-08
A local code execution vulnerability exists in the Rockwell Automation Arena® due to a threat actor being able to read outside of the allocated memory buffer. The flaw is a result of improper validation of user-supplied data. If explo…
- CVE-2025-32906HIGHCVSS 7.5EG 7.52025-04-14
A flaw was found in libsoup, where the soup_headers_parse_request() function may be vulnerable to an out-of-bound read. This flaw allows a malicious user to use a specially crafted HTTP request to crash the HTTP server.
- CVE-2025-32914HIGHCVSS 7.4EG 7.42025-04-14
A flaw was found in libsoup, where the soup_multipart_new_from_message() function is vulnerable to an out-of-bounds read. This flaw allows a malicious HTTP client to induce the libsoup server to read out of bounds.
- CVE-2025-33055MEDIUMCVSS 5.5EG 5.52025-06-10
Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
- CVE-2025-33058MEDIUMCVSS 5.5EG 5.52025-06-10
Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
- CVE-2025-33059MEDIUMCVSS 5.5EG 5.52025-06-10
Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
- CVE-2025-33060MEDIUMCVSS 5.5EG 5.52025-06-10
Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
- CVE-2025-33061MEDIUMCVSS 5.5EG 5.52025-06-10
Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
- CVE-2025-33062MEDIUMCVSS 5.5EG 5.52025-06-10
Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
- CVE-2025-33063MEDIUMCVSS 5.5EG 5.52025-06-10
Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
- CVE-2025-33065MEDIUMCVSS 5.5EG 5.52025-06-10
Out-of-bounds read in Windows Storage Management Provider allows an authorized attacker to disclose information locally.
- CVE-2025-3406MEDIUMCVSS 4.3EG 4.32025-04-08
A vulnerability was found in Nothings stb up to f056911. It has been classified as problematic. Affected is the function stbhw_build_tileset_from_image of the component Header Array Handler. The manipulation of the argument w leads to out-…
- CVE-2025-3407MEDIUMCVSS 6.3EG 6.32025-04-08
A vulnerability was found in Nothings stb up to f056911. It has been declared as critical. Affected by this vulnerability is the function stbhw_build_tileset_from_image. The manipulation of the argument h_count/v_count leads to out-of-boun…
- CVE-2025-35967HIGHCVSS 7.4EG 7.42025-11-11
Out-of-bounds read for some Intel(R) PROSet/Wireless WiFi Software for Windows before version 23.160 within Ring 2: Device Drivers may allow a denial of service. Unprivileged software adversary with an unauthenticated user combined with a …
- CVE-2025-35995HIGHCVSS 7.5EG 7.52025-05-07
When a BIG-IP PEM system is licensed with URL categorization, and the URL categorization policy or an iRule with the urlcat command is enabled on a virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) to…
Map vulnerabilities like CWE-125 to your infrastructure
EchelonGraph correlates every CVE — across CWE-125 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →