CWE-126— Buffer Over-read
436 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-126page 1 of 9
- CVE-2006-7197NONECVSS 0.0EG 0.02007-04-25
The AJP connector in Apache Tomcat 5.5.15 uses an incorrect length for chunks, which can cause a buffer over-read in the ajp_process_callback in mod_jk, which allows remote attackers to read portions of sensitive memory.
- CVE-2009-2495MEDIUMCVSS 6.5EG 6.52009-07-29
The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005 SP1 and 2008 Gold and SP1, and Visual C++ 2005 SP1 and 2008 Gold and SP1 does not properly enforce string termination, which allows remote attac…
- CVE-2017-17772CRITICALCVSS 9.8EG 9.82024-11-26
In multiple functions that process 802.11 frames, out-of-bounds reads can occur due to insufficient validation.
- CVE-2018-14790CRITICALCVSS 9.8EG 9.82018-10-01
Fuji Electric FRENIC LOADER v3.3 v7.3.4.1a of FRENIC-Mini (C1), FRENIC-Mini (C2), FRENIC-Eco, FRENIC-Multi, FRENIC-MEGA, FRENIC-Ace. A buffer over-read vulnerability may allow remote code execution on the device.
- CVE-2018-5852HIGHCVSS 8.4EG 8.42024-11-26
An unsigned integer underflow vulnerability in IPA driver result into a buffer over-read while reading NAT entry using debugfs command 'cat /sys/kernel/debug/ipa/ip4_nat'
- CVE-2018-8789HIGHCVSS 7.5EG 7.52018-11-29
FreeRDP prior to version 2.0.0-rc4 contains several Out-Of-Bounds Reads in the NTLM Authentication module that results in a Denial of Service (segfault).
- CVE-2018-8791HIGHCVSS 7.5EG 7.52019-02-05
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function rdpdr_process() that results in an information leak.
- CVE-2018-8792HIGHCVSS 7.5EG 7.52019-02-05
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function cssp_read_tsrequest() that results in a Denial of Service (segfault).
- CVE-2018-8796HIGHCVSS 7.5EG 7.52019-02-05
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function process_bitmap_updates() that results in a Denial of Service (segfault).
- CVE-2018-8798HIGHCVSS 7.5EG 7.52019-02-05
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function rdpsnd_process_ping() that results in an information leak.
- CVE-2018-8799HIGHCVSS 7.5EG 7.52019-02-05
rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function process_secondary_order() that results in a Denial of Service (segfault).
- CVE-2019-1010220LOWCVSS 3.3EG 3.32019-07-22
tcpdump.org tcpdump 4.9.2 is affected by: CWE-126: Buffer Over-read. The impact is: May expose Saved Frame Pointer, Return Address etc. on stack. The component is: line 234: "ND_PRINT((ndo, "%s", buf));", in function named "print_prefix", …
- CVE-2019-11036CRITICALCVSS 9.1EG 9.12019-05-03
When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.29, 7.2.x below 7.2.18 and 7.3.x below 7.3.5 can be caused to read past allocated buffer in exif_process_IFD_TAG function. This may lead to information disclosur…
- CVE-2019-3563CRITICALCVSS 9.8EG 9.82019-04-29
Wangle's LineBasedFrameDecoder contains logic for identifying newlines which incorrectly advances a buffer, leading to a potential underflow. This affects versions of Wangle prior to v2019.04.22.00
- CVE-2019-5432HIGHCVSS 7.5EG 7.52019-05-06
A specifically malformed MQTT Subscribe packet crashes MQTT Brokers using the mqtt-packet module versions < 3.5.1, 4.0.0 - 4.1.3, 5.0.0 - 5.6.1, 6.0.0 - 6.1.2 for decoding.
- CVE-2020-25853HIGHCVSS 7.5EG 7.52021-02-03
The function CheckMic() in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 (up to and excluding 2.08) does not validate the size parameter for an internal function, _rt_md5_hmac_veneer() or _rt_hmac_sha1_veneer()…
- CVE-2020-3399HIGHCVSS 8.6EG 8.62020-09-24
A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allow an unauthenticated, remote attacker to cause a …
- CVE-2020-35511HIGHCVSS 7.8EG 7.82022-08-23
A global buffer overflow was discovered in pngcheck function in pngcheck-2.4.0(5 patches applied) via a crafted png file.
- CVE-2020-8244MEDIUMCVSS 6.5EG 6.52020-08-30
A buffer over-read vulnerability exists in bl <4.0.3, <3.0.1, <2.2.1, and <1.2.3 which could allow an attacker to supply user input (even typed) that if it ends up in consume() argument and can become negative, the BufferList state can be …
- CVE-2021-1373HIGHCVSS 8.6EG 8.62021-03-24
A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, rem…
- CVE-2021-1588HIGHCVSS 8.6EG 8.62021-08-25
A vulnerability in the MPLS Operation, Administration, and Maintenance (OAM) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerabi…
- CVE-2021-1614MEDIUMCVSS 5.3EG 5.32021-07-22
A vulnerability in the Multiprotocol Label Switching (MPLS) packet handling function of Cisco SD-WAN Software could allow an unauthenticated, remote attacker to gain access to information stored in MPLS buffer memory. This vulnerability is…
- CVE-2021-22552MEDIUMCVSS 5.3EG 5.32021-08-02
An untrusted memory read vulnerability in Asylo versions up to 0.6.1 allows an untrusted attacker to pass a syscall number in MessageReader that is then used by sysno() and can bypass validation. This can allow the attacker to read memory …
- CVE-2021-22563MEDIUMCVSS 4.5EG 4.52021-11-01
Invalid JPEG XL images using libjxl can cause an out of bounds access on a std::vector<std::vector<T>> when rendering splines. The OOB read access can either lead to a segfault, or rendering splines based on other process memory. It is rec…
- CVE-2021-34299MEDIUMCVSS 5.5EG 5.52021-07-13
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Tiff_loader.dll library in affected applications lacks proper validation of user-supplied data when parsing TIFF file…
- CVE-2021-34302MEDIUMCVSS 5.5EG 5.52021-07-13
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The BMP_Loader.dll library in affected applications lacks proper validation of user-supplied data when parsing BMP files.…
- CVE-2021-34303MEDIUMCVSS 5.5EG 5.52021-07-13
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Tiff_Loader.dll library in affected applications lacks proper validation of user-supplied data when parsing TIFF file…
- CVE-2021-34304MEDIUMCVSS 5.5EG 5.52021-07-13
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Tiff_Loader.dll library in affected applications lacks proper validation of user-supplied data when parsing TIFF file…
- CVE-2021-34307MEDIUMCVSS 5.5EG 5.52021-07-13
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Tiff_Loader.dll library in affected applications lacks proper validation of user-supplied data when parsing TIFF file…
- CVE-2021-34308MEDIUMCVSS 5.5EG 5.52021-07-13
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The BMP_Loader.dll library in affected applications lacks proper validation of user-supplied data when parsing BMP files.…
- CVE-2021-34320MEDIUMCVSS 5.5EG 5.52021-07-13
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Jt981.dll library in affected applications lacks proper validation of user-supplied data when parsing JT files. This …
- CVE-2021-34321MEDIUMCVSS 5.5EG 5.52021-07-13
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The VisDraw.dll library in affected applications lacks proper validation of user-supplied data when parsing J2K files. Th…
- CVE-2021-34322MEDIUMCVSS 5.5EG 5.52021-07-13
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The JPEG2K_Loader.dll library in affected applications lacks proper validation of user-supplied data when parsing J2K fil…
- CVE-2021-34325MEDIUMCVSS 5.5EG 5.52021-07-13
A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Jt981.dll library in affected applications lacks proper validation of user-supplied data when parsing JT files. This …
- CVE-2021-34584CRITICALCVSS 9.1EG 9.12021-10-26
Crafted web server requests can be utilised to read partial stack or heap memory or may trigger a denial-of- service condition due to a crash in the CODESYS V2 web server prior to V1.1.9.22.
- CVE-2022-1533HIGHCVSS 7.8EG 7.82022-04-29
Buffer Over-read in GitHub repository bfabiszewski/libmobi prior to 0.11. This vulnerability is capable of arbitrary code execution.
- CVE-2022-1534HIGHCVSS 7.1EG 7.12022-04-29
Buffer Over-read at parse_rawml.c:1416 in GitHub repository bfabiszewski/libmobi prior to 0.11. The bug causes the program reads data past the end of the intented buffer. Typically, this can allow attackers to read sensitive information fr…
- CVE-2022-1629HIGHCVSS 7.8EG 7.82022-05-10
Buffer Over-read in function find_next_quote in GitHub repository vim/vim prior to 8.2.4925. This vulnerabilities are capable of crashing software, Modify Memory, and possible remote execution
- CVE-2022-1720HIGHCVSS 7.8EG 7.82022-06-20
Buffer Over-read in function grab_file_name in GitHub repository vim/vim prior to 8.2.4956. This vulnerability is capable of crashing the software, memory modification, and possible remote execution.
- CVE-2022-1769HIGHCVSS 7.8EG 7.82022-05-17
Buffer Over-read in GitHub repository vim/vim prior to 8.2.4974.
- CVE-2022-1907HIGHCVSS 8.1EG 8.12022-05-27
Buffer Over-read in GitHub repository bfabiszewski/libmobi prior to 0.11.
- CVE-2022-1908HIGHCVSS 8.1EG 8.12022-05-27
Buffer Over-read in GitHub repository bfabiszewski/libmobi prior to 0.11.
- CVE-2022-1927HIGHCVSS 7.8EG 9.82022-05-29
Buffer Over-read in GitHub repository vim/vim prior to 8.2.
- CVE-2022-1987HIGHCVSS 8.1EG 8.12022-06-03
Buffer Over-read in GitHub repository bfabiszewski/libmobi prior to 0.11.
- CVE-2022-20714HIGHCVSS 8.6EG 8.62022-04-15
A vulnerability in the data plane microcode of Lightspeed-Plus line cards for Cisco ASR 9000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to cause the line card to reset. This vulnerability is due to …
- CVE-2022-20823HIGHCVSS 8.6EG 8.62022-08-25
A vulnerability in the OSPF version 3 (OSPFv3) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to incomplete inpu…
- CVE-2022-2124HIGHCVSS 7.8EG 7.82022-06-19
Buffer Over-read in GitHub repository vim/vim prior to 8.2.
- CVE-2022-2175HIGHCVSS 7.8EG 8.82022-06-23
Buffer Over-read in GitHub repository vim/vim prior to 8.2.
- CVE-2022-22519HIGHCVSS 7.5EG 6.52022-04-07
A remote, unauthenticated attacker can send a specific crafted HTTP or HTTPS requests causing a buffer over-read resulting in a crash of the webserver of the CODESYS Control runtime system.
- CVE-2022-2301MEDIUMCVSS 5.5EG 5.52022-07-04
Buffer Over-read in GitHub repository hpjansson/chafa prior to 1.10.3.
Map vulnerabilities like CWE-126 to your infrastructure
EchelonGraph correlates every CVE — across CWE-126 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →