Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
Vulnerability Details :

CVE-2017-15655

Summary
Assigner-mitre
Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca
Published At-31 Jan, 2018 | 20:00
Updated At-05 Aug, 2024 | 19:57
Rejected At-
Credits

Multiple buffer overflow vulnerabilities exist in the HTTPd server in Asus asuswrt version <=3.0.0.4.376.X. All have been fixed in version 3.0.0.4.378, but this vulnerability was not previously disclosed. Some end-of-life routers have this version as the newest and thus are vulnerable at this time. This vulnerability allows for RCE with administrator rights when the administrator visits several pages.

Vendors
-
Not available
Products
-
Metrics (CVSS)
VersionBase scoreBase severityVector
Weaknesses
Attack Patterns
Solution/Workaround
References
HyperlinkResource Type
EPSS History
Score
Latest Score
-
N/A
No data available for selected date range
Percentile
Latest Percentile
-
N/A
No data available for selected date range
Stakeholder-Specific Vulnerability Categorization (SSVC)
▼Common Vulnerabilities and Exposures (CVE)
cve.org
Assigner:mitre
Assigner Org ID:8254265b-2729-46b6-b9e3-3dfca2d5bfca
Published At:31 Jan, 2018 | 20:00
Updated At:05 Aug, 2024 | 19:57
Rejected At:
▼CVE Numbering Authority (CNA)

Multiple buffer overflow vulnerabilities exist in the HTTPd server in Asus asuswrt version <=3.0.0.4.376.X. All have been fixed in version 3.0.0.4.378, but this vulnerability was not previously disclosed. Some end-of-life routers have this version as the newest and thus are vulnerable at this time. This vulnerability allows for RCE with administrator rights when the administrator visits several pages.

Affected Products
Vendor
n/a
Product
n/a
Versions
Affected
  • n/a
Problem Types
TypeCWE IDDescription
textN/An/a
Type: text
CWE ID: N/A
Description: n/a
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://sploit.tech/2018/01/16/ASUS-part-I.html
x_refsource_MISC
http://seclists.org/fulldisclosure/2018/Jan/63
mailing-list
x_refsource_FULLDISC
http://packetstormsecurity.com/files/145921/ASUSWRT-3.0.0.4.382.18495-Session-Hijacking-Information-Disclosure.html
x_refsource_MISC
Hyperlink: http://sploit.tech/2018/01/16/ASUS-part-I.html
Resource:
x_refsource_MISC
Hyperlink: http://seclists.org/fulldisclosure/2018/Jan/63
Resource:
mailing-list
x_refsource_FULLDISC
Hyperlink: http://packetstormsecurity.com/files/145921/ASUSWRT-3.0.0.4.382.18495-Session-Hijacking-Information-Disclosure.html
Resource:
x_refsource_MISC
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://sploit.tech/2018/01/16/ASUS-part-I.html
x_refsource_MISC
x_transferred
http://seclists.org/fulldisclosure/2018/Jan/63
mailing-list
x_refsource_FULLDISC
x_transferred
http://packetstormsecurity.com/files/145921/ASUSWRT-3.0.0.4.382.18495-Session-Hijacking-Information-Disclosure.html
x_refsource_MISC
x_transferred
Hyperlink: http://sploit.tech/2018/01/16/ASUS-part-I.html
Resource:
x_refsource_MISC
x_transferred
Hyperlink: http://seclists.org/fulldisclosure/2018/Jan/63
Resource:
mailing-list
x_refsource_FULLDISC
x_transferred
Hyperlink: http://packetstormsecurity.com/files/145921/ASUSWRT-3.0.0.4.382.18495-Session-Hijacking-Information-Disclosure.html
Resource:
x_refsource_MISC
x_transferred
Information is not available yet
▼National Vulnerability Database (NVD)
nvd.nist.gov
Source:cve@mitre.org
Published At:31 Jan, 2018 | 20:29
Updated At:21 Feb, 2018 | 15:45

Multiple buffer overflow vulnerabilities exist in the HTTPd server in Asus asuswrt version <=3.0.0.4.376.X. All have been fixed in version 3.0.0.4.378, but this vulnerability was not previously disclosed. Some end-of-life routers have this version as the newest and thus are vulnerable at this time. This vulnerability allows for RCE with administrator rights when the administrator visits several pages.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.09.6CRITICAL
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Primary2.09.3HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
Type: Primary
Version: 3.0
Base score: 9.6
Base severity: CRITICAL
Vector:
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
Type: Primary
Version: 2.0
Base score: 9.3
Base severity: HIGH
Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C
CPE Matches
ASUS (ASUSTeK Computer Inc.)
asus
>>asuswrt>>Versions before 3.0.0.4.378(exclusive)
cpe:2.3:o:asus:asuswrt:*:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-119Primarynvd@nist.gov
CWE ID: CWE-119
Type: Primary
Source: nvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://packetstormsecurity.com/files/145921/ASUSWRT-3.0.0.4.382.18495-Session-Hijacking-Information-Disclosure.htmlcve@mitre.org
Third Party Advisory
VDB Entry
http://seclists.org/fulldisclosure/2018/Jan/63cve@mitre.org
Exploit
Mailing List
Third Party Advisory
http://sploit.tech/2018/01/16/ASUS-part-I.htmlcve@mitre.org
Exploit
Third Party Advisory
Hyperlink: http://packetstormsecurity.com/files/145921/ASUSWRT-3.0.0.4.382.18495-Session-Hijacking-Information-Disclosure.html
Source: cve@mitre.org
Resource:
Third Party Advisory
VDB Entry
Hyperlink: http://seclists.org/fulldisclosure/2018/Jan/63
Source: cve@mitre.org
Resource:
Exploit
Mailing List
Third Party Advisory
Hyperlink: http://sploit.tech/2018/01/16/ASUS-part-I.html
Source: cve@mitre.org
Resource:
Exploit
Third Party Advisory

Change History

0
Information is not available yet

Similar CVEs

2689Records found
CVE-2012-4924
Matching Score-10
Assigner-MITRE Corporation
ShareView Details
Matching Score-10
Assigner-MITRE Corporation
CVSS Score-9.3||HIGH
EPSS-84.28% / 99.33%
||
7 Day CHG~0.00%
Published-15 Sep, 2012 | 17:00
Updated-29 Apr, 2026 | 01:13
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Buffer overflow in the CxDbgPrint function in the ipswcom.dll ActiveX component 1.0.0.1 for ASUS Net4Switch 1.0.0020 allows remote attackers to execute arbitrary code via a long parameter to the Alert method.

Action-Not Available
Vendor-n/aASUS (ASUSTeK Computer Inc.)
Product-ipswcom_activex_componentnet4switchn/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2015-6949
Matching Score-10
Assigner-MITRE Corporation
ShareView Details
Matching Score-10
Assigner-MITRE Corporation
CVSS Score-9.3||HIGH
EPSS-7.96% / 92.16%
||
7 Day CHG~0.00%
Published-15 Sep, 2015 | 18:00
Updated-06 May, 2026 | 22:30
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Stack-based buffer overflow in the ASUS TM-AC1900 router allows remote attackers to execute arbitrary code via crafted HTTP header values.

Action-Not Available
Vendor-n/aASUS (ASUSTeK Computer Inc.)
Product-tm-1900n/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2013-3093
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-8.8||HIGH
EPSS-0.16% / 36.72%
||
7 Day CHG~0.00%
Published-28 Jan, 2020 | 20:13
Updated-06 Aug, 2024 | 16:00
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

ASUS RT-N56U devices allow CSRF.

Action-Not Available
Vendor-n/aASUS (ASUSTeK Computer Inc.)
Product-rt-n53rt-n10udsl-n55urt-n15urt-n16rt-ac66urt-n56urt-ac66u_firmwarert-n10u_firmwarert-n53_firmwarert-n16_firmwarert-n56u_firmwaredsl-n55u_firmwarert-n15u_firmwaren/a
CWE ID-CWE-352
Cross-Site Request Forgery (CSRF)
CVE-2017-6549
Matching Score-8
Assigner-MITRE Corporation
ShareView Details
Matching Score-8
Assigner-MITRE Corporation
CVSS Score-8.8||HIGH
EPSS-24.52% / 96.20%
||
7 Day CHG~0.00%
Published-09 Mar, 2017 | 09:26
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Session hijack vulnerability in httpd on ASUS RT-N56U, RT-N66U, RT-AC66U, RT-N66R, RT-AC66R, RT-AC68U, RT-AC68R, RT-N66W, RT-AC66W, RT-AC87R, RT-AC87U, RT-AC51U, RT-AC68P, RT-N11P, RT-N12+, RT-N12E B1, RT-AC3200, RT-AC53U, RT-AC1750, RT-AC1900P, RT-N300, and RT-AC750 routers with firmware before 3.0.0.4.380.7378; RT-AC68W routers with firmware before 3.0.0.4.380.7266; and RT-N600, RT-N12+ B1, RT-N11P B1, RT-N12VP B1, RT-N12E C1, RT-N300 B1, and RT-N12+ Pro routers with firmware before 3.0.0.4.380.9488; and Asuswrt-Merlin firmware before 380.65_2 allows remote attackers to steal any active admin session by sending cgi_logout and asusrouter-Windows-IFTTT-1.0 in certain HTTP headers.

Action-Not Available
Vendor-n/aASUS (ASUSTeK Computer Inc.)
Product-rt-ac53rt-ac53_firmwaren/a
CWE ID-CWE-287
Improper Authentication
CVE-2017-6548
Matching Score-6
Assigner-MITRE Corporation
ShareView Details
Matching Score-6
Assigner-MITRE Corporation
CVSS Score-9.8||CRITICAL
EPSS-48.34% / 97.78%
||
7 Day CHG~0.00%
Published-09 Mar, 2017 | 09:26
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Buffer overflows in networkmap on ASUS RT-N56U, RT-N66U, RT-AC66U, RT-N66R, RT-AC66R, RT-AC68U, RT-AC68R, RT-N66W, RT-AC66W, RT-AC87R, RT-AC87U, RT-AC51U, RT-AC68P, RT-N11P, RT-N12+, RT-N12E B1, RT-AC3200, RT-AC53U, RT-AC1750, RT-AC1900P, RT-N300, and RT-AC750 routers with firmware before 3.0.0.4.380.7378; RT-AC68W routers with firmware before 3.0.0.4.380.7266; and RT-N600, RT-N12+ B1, RT-N11P B1, RT-N12VP B1, RT-N12E C1, RT-N300 B1, and RT-N12+ Pro routers with firmware before 3.0.0.4.380.9488; and Asuswrt-Merlin firmware before 380.65_2 allow remote attackers to execute arbitrary code on the router via a long host or port in crafted multicast messages.

Action-Not Available
Vendor-n/aASUS (ASUSTeK Computer Inc.)
Product-rt-ac53rt-ac53_firmwaren/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-5711
Matching Score-6
Assigner-Intel Corporation
ShareView Details
Matching Score-6
Assigner-Intel Corporation
CVSS Score-7.8||HIGH
EPSS-0.14% / 33.39%
||
7 Day CHG-0.01%
Published-21 Nov, 2017 | 14:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Multiple buffer overflows in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to execute arbitrary code with AMT execution privilege.

Action-Not Available
Vendor-Intel CorporationASUS (ASUSTeK Computer Inc.)Siemens AG
Product-z170-arz170_pro_gamingprime_b250m-aex-b250m-v3z170m-plusb250_mining_expert_firmwaresimatic_field_pg_m5_firmwareprime_z370-aprime_b250-ab150m_pro_gaming_firmwarerog_maximus_viii_formulasimatic_ipc827dprime_b250m-d_firmwarerog_maximus_ix_extremeb150m-a_d3_firmwareprime_b250m-j_firmwareb250-mrh110i-plus_firmwarerog_maximus_viii_hero_alphasimotion_p320-4sz170_pro_gaming\/aurah110m-c_firmwarerog_maximus_x_codeh110m-k_xsimatic_ipc677cex-b250-v7_firmwarez170-kb150m-k_d3rog_strix_z370-e_gaming_firmwarerog_maximus_viii_geneh170-plus_d3b150m_pro_gamingh110m-d_firmwareh170-pro_firmwarerog_maximus_viii_rangerh110m-p\/dvi_firmwareh110m-c\/psz170-premiumsinumerik_pcu50.5-c_firmwareb150_pro_gaming_d3h110m-p\/dvirog_strix_z370-i_gaming_firmwareh110m-c\/ps_firmwareh170-prob150m-k_d3_firmwarerog_maximus_x_formula_firmwareq170m-cm-bz170-e_firmwarerog_maximus_x_formulah170i-proz170-ph110-plus_firmwareh110m-k_d3_firmwarez170m-plus\/br_firmwareb150-prob250m-c_pro_firmwarerog_strix_h270f_gamingprime_h270-proex-b150-v7rog_maximus_viii_hero_alpha_firmwareh110s2_firmwaresimatic_ipc677db250_mining_expertb150m-plus_d3rog_maximus_ix_formula_firmwareb150m-plus_firmwareb150i_pro_gaming\/wifi\/aurab150-a_firmwareprime_z270-a_firmwareb150m-c_d3b150m-v_plus_firmwareh110m-ksrog_strix_z370-h_gamingex-b150-v7_firmwareh110m-k_firmwarerog_strix_z270i_gaming_firmwareh170-plus_d3_firmwarerog_strix_z270g_gaming_firmwareprime_h270m-plus_firmwarerog_strix_b250g_gamingrog_strix_z270h_gamingex-b150m-v_firmwareprime_h110m2z170_pro_gaming_firmwareh110m-cprime_q270m-cb150-pro_d3b150_pro_gamingsimatic_ipc477ez170-deluxesimatic_ipc547db150i_pro_gaming\/auraz170-k_firmwareh170m-plus_firmwareactive_management_technology_firmwareh110m-c2_firmwareex-b250m-v3_firmwarerog_strix_b250h_gamingsimatic_ipc477d_pro_firmwarez170m-e_d3_firmwareh110tq270m-cm-ah110m-a\/m.2_firmwareprime_b250m-plus_firmwareb150m-plusprime_q270m-c_firmwareh110t-a_firmwareh110m-r_firmwareb250-sq170s1h170-pro\/usb_3.1z170-eprime_b250m-plusq170m2\/cdm\/siex-b150m-v3sinumerik_pcu50.5-p_firmwareh170m-plusprime_b250m-k_firmwareex-b250m-v5_firmwareb150m-c_d3_firmwareprime_z270m-plus_firmwareb150-ab150-plussimatic_ipc627c_firmwareh110m-a_d3_firmwarerog_strix_b250g_gaming_firmwaresimatic_field_pg_m3rog_strix_z370-g_gaming_firmwareh170m-e_d3_firmwareb150m-c\/brprime_z270-psimatic_ipc647dz170i_pro_gaming_firmwareh110m-tsz170m-plus_firmwareex-h110m-v3_firmwareh110m-e_firmwareh110t-ah110m-e\/m.2h110m-k_d3h110m-cs\/brrog_strix_z370-f_gaming_firmwarerog_strix_z370-e_gamingh110s1z170m-e_d3simatic_field_pg_m3_firmwarerog_maximus_viii_herob150m-c\/br_firmwarerog_maximus_viii_formula_firmwareh110m-c2rog_maximus_viii_impactb150m-aq170th110m-ez170-premium_firmwarez170-pro_firmwarerog_maximus_ix_herosabertooth_z170_mark_1_firmwarepio-b150m_firmwaretrooper_h110_d3_firmwareprime_z370-pz170_pro_gaming\/aura_firmwareh110m-a_d3rog_strix_z370-g_gamingtuf_z270_mark_1_firmwareprime_b250-plus_firmwareprime_z370-a_firmwarerog_strix_b250h_gaming_firmwareprime_b250m-a_firmwarerog_strix_b250f_gaming_firmwarerog_strix_h270i_gaming_firmwaresimatic_ipc427d_firmwareprime_h270m-plussimatic_field_pg_m4b150_pro_gaming\/aura_firmwarerog_maximus_ix_coderog_strix_h270f_gaming_firmwaretuf_z270_mark_1simatic_field_pg_m5h110m-cs\/br_firmwareb150_pro_gaming\/auraprime_b250-pro_firmwarez170-ar_firmwaresimatic_ipc827csimatic_ipc427dz170i_pro_gamingrog_maximus_x_code_firmwareq170t_firmwareh110m-cssimatic_ipc427e_firmwarez170-p_firmwarerog_strix_z270e_gaming_firmwaresimatic_ipc477d_proprime_z270-arrog_strix_z270h_gaming_firmwareprime_h270-pro_firmwareq170m2\/cdm\/si_firmwareb150m-k_firmwareprime_b250m-plus\/br_firmwareb150_pro_gaming_firmwareh170m-plus\/brb150m-a\/m.2_firmwareh110m-d\/exper\/sib250-mr_firmwarez170-p_d3prime_h110m2_firmwareh170m-e_d3h110m-fh110m-cs_x_firmwareh110m-e\/m.2_firmwarerog_strix_z270f_gamingex-h110m-v_firmwaresimatic_itp1000prime_h110m2\/fpt_firmwaresimatic_ipc627db150m-d_firmwarerog_maximus_x_herotuf_z370-plus_gamingb150m-f_plus_firmwareb250-s_firmwaresinumerik_pcu50.5-crog_strix_z270e_gamingrog_strix_z270h_gaming\/k1_firmwareprime_z270-ar_firmwaresimatic_ipc627csinumerik_pcu50.5-pex-h110m-v3prime_z270m-plush170m-plus\/br_firmwaretuf_z270_mark_2_firmwareb250m-f_plustuf_z370-plus_gaming_firmwareprime_b250m-dq170m-c_firmwaretuf_z370-pro_gaming_firmwarerog_strix_b250i_gaming_firmwareprime_b250-a_firmwareh110m-ks_firmwareh110s2h110m-c2\/tf_firmwareh110m-c\/br_firmwareh110m-cs_firmwareq270m-cm-a_firmwarerog_maximus_viii_hero_firmwareh170_pro_gaming_firmwaresimatic_ipc847d_firmwareh110m-ks_r1_firmwareh110m-rprime_b250-plush110s1_firmwaresimatic_ipc847c_firmwarez170-arog_maximus_viii_extreme_firmwareprime_h110m2\/fptprime_j3355i-c_firmwarerog_strix_z270i_gamingq170m-cm-b_firmwaresabertooth_z170_s_firmwaresimatic_ipc847dtrooper_b150_d3q170t_v2_firmwarerog_strix_b250f_gamingb250m-c_proz170-a_firmwarerog_maximus_viii_gene_firmwareex-b150m-v3_firmwareq170s1_firmwareex-b250m-v5b150-plus_firmwareb150_pro_gaming_d3_firmwareb150m-v_plush170i-pro_firmwareb150-pro_d3_firmwareb150i_pro_gaming\/aura_firmwaretrooper_b150_d3_firmwareh110m-c\/hdmi_firmwareh110m-f_firmwarerog_maximus_viii_extremeh110m-ks_r1rog_maximus_ix_hero_firmwareb150m-drog_maximus_x_apexb150m-kh170-pro\/usb_3.1_firmwareh110m-a\/dp_firmwareprime_b250m-plus\/brsimotion_p320-4s_firmwareh110m-cs_xsimatic_ipc827c_firmwarerog_maximus_ix_apex_firmwareh110m-a\/dpb150m-cex-h110m-vsimatic_ipc477e_firmwaresabertooth_z170_sprime_j3355i-csimatic_ipc477dprime_h270-plussabertooth_z170_mark_1h110m-c\/hdmirog_maximus_ix_extreme_firmwaresimatic_ipc677d_firmwaresimatic_ipc547erog_maximus_x_apex_firmwareex-b150m-vh110-pluspio-b250i_firmwareprime_h270-plus_firmwareprime_b250m-ch110m-ktuf_z270_mark_2b150m-c_firmwareprime_h110m-psimatic_ipc477d_firmwareex-b150m-v5manageability_engine_firmwaresimatic_ipc647ctuf_z370-pro_gamingq170t_v2rog_strix_z270f_gaming_firmwaresimatic_ipc427eq170m2_firmwarerog_strix_h270i_gamingq270-s_firmwareb150m-a_d3h110m-ts_firmwarepio-b250ih110m-k_x_firmwaresimatic_ipc547d_firmwarerog_maximus_viii_impact_firmwareex-b250m-v_firmwareq170m2b250m-f_plus_firmwareh110m-plusrog_maximus_x_hero_firmwarerog_maximus_viii_ranger_firmwareprime_z270m-plus\/brprime_b250-proprime_z270m-plus\/br_firmwarerog_strix_z370-h_gaming_firmwaretrooper_h110_d3rog_maximus_ix_apexprime_z270-k_firmwareh110m-c\/brsimatic_ipc827d_firmwareprime_h110m-p_firmwarez170-p_d3_firmwareq270-srog_strix_b250i_gamingq170m-cz170-proh110m-ab150-pro_firmwareb150m-a_firmwarerog_strix_z370-i_gamingsimatic_ipc547e_firmwareprime_b250m-kb150m-plus_d3_firmwareh110m-a_firmwaresimatic_ipc847cex-b250-v7rog_maximus_ix_formulaz170-deluxe_firmwareprime_z370-p_firmwareh110i-plush110m-d\/exper\/si_firmwarerog_strix_z370-f_gamingrog_strix_z270g_gamingsimatic_ipc647d_firmwareprime_b250m-c_firmwaresimatic_ipc677c_firmwareh110m-drog_strix_z270h_gaming\/k1prime_b250m-jb150m-f_plusex-b250m-vprime_z270-ksimatic_ipc647c_firmwarez170m-plus\/brsimatic_itp1000_firmwaresimatic_field_pg_m4_firmwareprime_z270-p_firmwarerog_maximus_ix_code_firmwareex-b150m-v5_firmwareh170_pro_gamingh110m-plus_firmwareh110m-a\/m.2pio-b150mh110t_firmwareh110m-c2\/tfsimatic_ipc627d_firmwareb150i_pro_gaming\/wifi\/aura_firmwareb150m-a\/m.2prime_z270-aActive Management Technology
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2021-41289
Matching Score-6
Assigner-TWCERT/CC
ShareView Details
Matching Score-6
Assigner-TWCERT/CC
CVSS Score-6.3||MEDIUM
EPSS-0.04% / 12.13%
||
7 Day CHG~0.00%
Published-15 Nov, 2021 | 09:30
Updated-17 Sep, 2024 | 00:36
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
ASUS P453UJ - Improper Restriction of Operations within the Bounds of a Memory Buffer

ASUS P453UJ contains the Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability. With a general user’s permission, local attackers can modify the BIOS by replacing or filling in the content of the designated Memory DataBuffer, which causing a failure of integrity verification and further resulting in a failure to boot.

Action-Not Available
Vendor-ASUS (ASUSTeK Computer Inc.)
Product-p453ujp453uj_biosP453UJ BIOS
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2008-1491
Matching Score-6
Assigner-MITRE Corporation
ShareView Details
Matching Score-6
Assigner-MITRE Corporation
CVSS Score-10||HIGH
EPSS-88.72% / 99.53%
||
7 Day CHG~0.00%
Published-25 Mar, 2008 | 19:00
Updated-23 Apr, 2026 | 00:35
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Stack-based buffer overflow in the DPC Proxy server (DpcProxy.exe) in ASUS Remote Console (aka ARC or ASMB3) 2.0.0.19 and 2.0.0.24 allows remote attackers to execute arbitrary code via a long string to TCP port 623.

Action-Not Available
Vendor-n/aASUS (ASUSTeK Computer Inc.)
Product-remote_consolen/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2018-14712
Matching Score-6
Assigner-MITRE Corporation
ShareView Details
Matching Score-6
Assigner-MITRE Corporation
CVSS Score-6.5||MEDIUM
EPSS-0.40% / 61.15%
||
7 Day CHG~0.00%
Published-13 May, 2019 | 12:21
Updated-05 Aug, 2024 | 09:38
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Buffer overflow in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows attackers to inject system commands via the "hook" URL parameter.

Action-Not Available
Vendor-n/aASUS (ASUSTeK Computer Inc.)
Product-rt-ac3200_firmwarert-ac3200n/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2013-6343
Matching Score-6
Assigner-MITRE Corporation
ShareView Details
Matching Score-6
Assigner-MITRE Corporation
CVSS Score-10||HIGH
EPSS-35.02% / 97.10%
||
7 Day CHG~0.00%
Published-22 Jan, 2014 | 02:00
Updated-29 Apr, 2026 | 01:13
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Multiple buffer overflows in web.c in httpd on the ASUS RT-N56U and RT-AC66U routers with firmware 3.0.0.4.374_979 allow remote attackers to execute arbitrary code via the (1) apps_name or (2) apps_flag parameter to APP_Installation.asp.

Action-Not Available
Vendor-n/aASUS (ASUSTeK Computer Inc.)
Product-tm-ac1900rt-ac66urt-ac66u_firmwarert-n56urt-n56u_firmwaretm-ac1900_firmwaren/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2013-4659
Matching Score-6
Assigner-MITRE Corporation
ShareView Details
Matching Score-6
Assigner-MITRE Corporation
CVSS Score-9.8||CRITICAL
EPSS-11.53% / 93.73%
||
7 Day CHG~0.00%
Published-14 Mar, 2017 | 09:02
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Buffer overflow in Broadcom ACSD allows remote attackers to execute arbitrary code via a long string to TCP port 5916. This component is used on routers of multiple vendors including ASUS RT-AC66U and TRENDnet TEW-812DRU.

Action-Not Available
Vendor-n/aTRENDnet, Inc.ASUS (ASUSTeK Computer Inc.)
Product-tew-812drurt-ac66u_firmwarert-ac66utew-812dru_firmwaren/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2022-38105
Matching Score-6
Assigner-Talos
ShareView Details
Matching Score-6
Assigner-Talos
CVSS Score-7.5||HIGH
EPSS-0.25% / 47.94%
||
7 Day CHG~0.00%
Published-10 Jan, 2023 | 20:44
Updated-14 Jan, 2023 | 04:35
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

An information disclosure vulnerability exists in the cm_processREQ_NC opcode of Asus RT-AX82U 3.0.0.4.386_49674-ge182230 router's configuration service. A specially-crafted network packets can lead to a disclosure of sensitive information. An attacker can send a network request to trigger this vulnerability.

Action-Not Available
Vendor-ASUS (ASUSTeK Computer Inc.)
Product-rt-ax82urt-ax82u_firmwareRT-AX82U
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-5712
Matching Score-6
Assigner-Intel Corporation
ShareView Details
Matching Score-6
Assigner-Intel Corporation
CVSS Score-7.2||HIGH
EPSS-2.44% / 85.37%
||
7 Day CHG-0.01%
Published-21 Nov, 2017 | 14:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Buffer overflow in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allows attacker with remote Admin access to the system to execute arbitrary code with AMT execution privilege.

Action-Not Available
Vendor-Intel CorporationASUS (ASUSTeK Computer Inc.)Siemens AG
Product-z170-arz170_pro_gamingprime_b250m-aex-b250m-v3z170m-plusb250_mining_expert_firmwaresimatic_field_pg_m5_firmwareprime_z370-aprime_b250-ab150m_pro_gaming_firmwarerog_maximus_viii_formulasimatic_ipc827dprime_b250m-d_firmwarerog_maximus_ix_extremeb150m-a_d3_firmwareprime_b250m-j_firmwareb250-mrh110i-plus_firmwarerog_maximus_viii_hero_alphasimotion_p320-4sz170_pro_gaming\/aurah110m-c_firmwarerog_maximus_x_codeh110m-k_xsimatic_ipc677cex-b250-v7_firmwarez170-kb150m-k_d3rog_strix_z370-e_gaming_firmwarerog_maximus_viii_geneh170-plus_d3b150m_pro_gamingh110m-d_firmwareh170-pro_firmwarerog_maximus_viii_rangerh110m-p\/dvi_firmwareh110m-c\/psz170-premiumsinumerik_pcu50.5-c_firmwareb150_pro_gaming_d3h110m-p\/dvirog_strix_z370-i_gaming_firmwareh110m-c\/ps_firmwareh170-prob150m-k_d3_firmwarerog_maximus_x_formula_firmwareq170m-cm-bz170-e_firmwarerog_maximus_x_formulah170i-proz170-ph110-plus_firmwareh110m-k_d3_firmwarez170m-plus\/br_firmwareb150-prob250m-c_pro_firmwarerog_strix_h270f_gamingprime_h270-proex-b150-v7rog_maximus_viii_hero_alpha_firmwareh110s2_firmwaresimatic_ipc677db250_mining_expertb150m-plus_d3rog_maximus_ix_formula_firmwareb150m-plus_firmwareb150i_pro_gaming\/wifi\/aurab150-a_firmwareprime_z270-a_firmwareb150m-c_d3b150m-v_plus_firmwareh110m-ksrog_strix_z370-h_gamingex-b150-v7_firmwareh110m-k_firmwarerog_strix_z270i_gaming_firmwareh170-plus_d3_firmwarerog_strix_z270g_gaming_firmwareprime_h270m-plus_firmwarerog_strix_b250g_gamingrog_strix_z270h_gamingex-b150m-v_firmwareprime_h110m2z170_pro_gaming_firmwareh110m-cprime_q270m-cb150-pro_d3b150_pro_gamingsimatic_ipc477ez170-deluxesimatic_ipc547db150i_pro_gaming\/auraz170-k_firmwareh170m-plus_firmwareactive_management_technology_firmwareh110m-c2_firmwareex-b250m-v3_firmwarerog_strix_b250h_gamingsimatic_ipc477d_pro_firmwarez170m-e_d3_firmwareh110tq270m-cm-ah110m-a\/m.2_firmwareprime_b250m-plus_firmwareb150m-plusprime_q270m-c_firmwareh110t-a_firmwareh110m-r_firmwareb250-sq170s1h170-pro\/usb_3.1z170-eprime_b250m-plusq170m2\/cdm\/siex-b150m-v3sinumerik_pcu50.5-p_firmwareh170m-plusprime_b250m-k_firmwareex-b250m-v5_firmwareb150m-c_d3_firmwareprime_z270m-plus_firmwareb150-ab150-plussimatic_ipc627c_firmwareh110m-a_d3_firmwarerog_strix_b250g_gaming_firmwaresimatic_field_pg_m3rog_strix_z370-g_gaming_firmwareh170m-e_d3_firmwareb150m-c\/brprime_z270-psimatic_ipc647dz170i_pro_gaming_firmwareh110m-tsz170m-plus_firmwareex-h110m-v3_firmwareh110m-e_firmwareh110t-ah110m-e\/m.2h110m-k_d3h110m-cs\/brrog_strix_z370-f_gaming_firmwarerog_strix_z370-e_gamingh110s1z170m-e_d3simatic_field_pg_m3_firmwarerog_maximus_viii_herob150m-c\/br_firmwarerog_maximus_viii_formula_firmwareh110m-c2rog_maximus_viii_impactb150m-aq170th110m-ez170-premium_firmwarez170-pro_firmwarerog_maximus_ix_herosabertooth_z170_mark_1_firmwarepio-b150m_firmwaretrooper_h110_d3_firmwareprime_z370-pz170_pro_gaming\/aura_firmwareh110m-a_d3rog_strix_z370-g_gamingtuf_z270_mark_1_firmwareprime_b250-plus_firmwareprime_z370-a_firmwarerog_strix_b250h_gaming_firmwareprime_b250m-a_firmwarerog_strix_b250f_gaming_firmwarerog_strix_h270i_gaming_firmwaresimatic_ipc427d_firmwareprime_h270m-plussimatic_field_pg_m4b150_pro_gaming\/aura_firmwarerog_maximus_ix_coderog_strix_h270f_gaming_firmwaretuf_z270_mark_1simatic_field_pg_m5h110m-cs\/br_firmwareb150_pro_gaming\/auraprime_b250-pro_firmwarez170-ar_firmwaresimatic_ipc827csimatic_ipc427dz170i_pro_gamingrog_maximus_x_code_firmwareq170t_firmwareh110m-cssimatic_ipc427e_firmwarez170-p_firmwarerog_strix_z270e_gaming_firmwaresimatic_ipc477d_proprime_z270-arrog_strix_z270h_gaming_firmwareprime_h270-pro_firmwareq170m2\/cdm\/si_firmwareb150m-k_firmwareprime_b250m-plus\/br_firmwareb150_pro_gaming_firmwareh170m-plus\/brb150m-a\/m.2_firmwareh110m-d\/exper\/sib250-mr_firmwarez170-p_d3prime_h110m2_firmwareh170m-e_d3h110m-fh110m-cs_x_firmwareh110m-e\/m.2_firmwarerog_strix_z270f_gamingex-h110m-v_firmwaresimatic_itp1000prime_h110m2\/fpt_firmwaresimatic_ipc627db150m-d_firmwarerog_maximus_x_herotuf_z370-plus_gamingb150m-f_plus_firmwareb250-s_firmwaresinumerik_pcu50.5-crog_strix_z270e_gamingrog_strix_z270h_gaming\/k1_firmwareprime_z270-ar_firmwaresimatic_ipc627csinumerik_pcu50.5-pex-h110m-v3prime_z270m-plush170m-plus\/br_firmwaretuf_z270_mark_2_firmwareb250m-f_plustuf_z370-plus_gaming_firmwareprime_b250m-dq170m-c_firmwaretuf_z370-pro_gaming_firmwarerog_strix_b250i_gaming_firmwareprime_b250-a_firmwareh110m-ks_firmwareh110s2h110m-c2\/tf_firmwareh110m-c\/br_firmwareh110m-cs_firmwareq270m-cm-a_firmwarerog_maximus_viii_hero_firmwareh170_pro_gaming_firmwaresimatic_ipc847d_firmwareh110m-ks_r1_firmwareh110m-rprime_b250-plush110s1_firmwaresimatic_ipc847c_firmwarez170-arog_maximus_viii_extreme_firmwareprime_h110m2\/fptprime_j3355i-c_firmwarerog_strix_z270i_gamingq170m-cm-b_firmwaresabertooth_z170_s_firmwaresimatic_ipc847dtrooper_b150_d3q170t_v2_firmwarerog_strix_b250f_gamingb250m-c_proz170-a_firmwarerog_maximus_viii_gene_firmwareex-b150m-v3_firmwareq170s1_firmwareex-b250m-v5b150-plus_firmwareb150_pro_gaming_d3_firmwareb150m-v_plush170i-pro_firmwareb150-pro_d3_firmwareb150i_pro_gaming\/aura_firmwaretrooper_b150_d3_firmwareh110m-c\/hdmi_firmwareh110m-f_firmwarerog_maximus_viii_extremeh110m-ks_r1rog_maximus_ix_hero_firmwareb150m-drog_maximus_x_apexb150m-kh170-pro\/usb_3.1_firmwareh110m-a\/dp_firmwareprime_b250m-plus\/brsimotion_p320-4s_firmwareh110m-cs_xsimatic_ipc827c_firmwarerog_maximus_ix_apex_firmwareh110m-a\/dpb150m-cex-h110m-vsimatic_ipc477e_firmwaresabertooth_z170_sprime_j3355i-csimatic_ipc477dprime_h270-plussabertooth_z170_mark_1h110m-c\/hdmirog_maximus_ix_extreme_firmwaresimatic_ipc677d_firmwaresimatic_ipc547erog_maximus_x_apex_firmwareex-b150m-vh110-pluspio-b250i_firmwareprime_h270-plus_firmwareprime_b250m-ch110m-ktuf_z270_mark_2b150m-c_firmwareprime_h110m-psimatic_ipc477d_firmwareex-b150m-v5manageability_engine_firmwaresimatic_ipc647ctuf_z370-pro_gamingq170t_v2rog_strix_z270f_gaming_firmwaresimatic_ipc427eq170m2_firmwarerog_strix_h270i_gamingq270-s_firmwareb150m-a_d3h110m-ts_firmwarepio-b250ih110m-k_x_firmwaresimatic_ipc547d_firmwarerog_maximus_viii_impact_firmwareex-b250m-v_firmwareq170m2b250m-f_plus_firmwareh110m-plusrog_maximus_x_hero_firmwarerog_maximus_viii_ranger_firmwareprime_z270m-plus\/brprime_b250-proprime_z270m-plus\/br_firmwarerog_strix_z370-h_gaming_firmwaretrooper_h110_d3rog_maximus_ix_apexprime_z270-k_firmwareh110m-c\/brsimatic_ipc827d_firmwareprime_h110m-p_firmwarez170-p_d3_firmwareq270-srog_strix_b250i_gamingq170m-cz170-proh110m-ab150-pro_firmwareb150m-a_firmwarerog_strix_z370-i_gamingsimatic_ipc547e_firmwareprime_b250m-kb150m-plus_d3_firmwareh110m-a_firmwaresimatic_ipc847cex-b250-v7rog_maximus_ix_formulaz170-deluxe_firmwareprime_z370-p_firmwareh110i-plush110m-d\/exper\/si_firmwarerog_strix_z370-f_gamingrog_strix_z270g_gamingsimatic_ipc647d_firmwareprime_b250m-c_firmwaresimatic_ipc677c_firmwareh110m-drog_strix_z270h_gaming\/k1prime_b250m-jb150m-f_plusex-b250m-vprime_z270-ksimatic_ipc647c_firmwarez170m-plus\/brsimatic_itp1000_firmwaresimatic_field_pg_m4_firmwareprime_z270-p_firmwarerog_maximus_ix_code_firmwareex-b150m-v5_firmwareh170_pro_gamingh110m-plus_firmwareh110m-a\/m.2pio-b150mh110t_firmwareh110m-c2\/tfsimatic_ipc627d_firmwareb150i_pro_gaming\/wifi\/aura_firmwareb150m-a\/m.2prime_z270-aActive Management Technology
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2018-1003
Matching Score-4
Assigner-Microsoft Corporation
ShareView Details
Matching Score-4
Assigner-Microsoft Corporation
CVSS Score-7.8||HIGH
EPSS-29.17% / 96.66%
||
7 Day CHG~0.00%
Published-12 Apr, 2018 | 01:00
Updated-05 Aug, 2024 | 03:44
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system, aka "Microsoft JET Database Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10.

Action-Not Available
Vendor-Microsoft Corporation
Product-windows_server_2016windows_server_2012windows_8.1windows_rt_8.1windows_7windows_10windows_server_2008Windows Server 2008 R2Windows Server 2012 R2Windows Server 2016Windows 10Windows Server 2012Windows 8.1Windows 7Windows RT 8.1Windows Server 2008
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2015-4493
Matching Score-4
Assigner-Mozilla Corporation
ShareView Details
Matching Score-4
Assigner-Mozilla Corporation
CVSS Score-9.3||HIGH
EPSS-6.98% / 91.56%
||
7 Day CHG~0.00%
Published-16 Aug, 2015 | 01:00
Updated-06 May, 2026 | 22:30
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Heap-based buffer overflow in the stagefright::ESDS::parseESDescriptor function in libstagefright in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 allows remote attackers to execute arbitrary code via an invalid size field in an esds chunk in MPEG-4 video data, a related issue to CVE-2015-1539.

Action-Not Available
Vendor-n/aCanonical Ltd.openSUSEOracle CorporationMozilla Corporation
Product-solarisfirefoxubuntu_linuxopensusen/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2012-5006
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-9.3||HIGH
EPSS-6.49% / 91.21%
||
7 Day CHG-1.36%
Published-19 Sep, 2012 | 21:00
Updated-29 Apr, 2026 | 01:13
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Heap-based buffer overflow in npdjvu.dll in Caminova DjVu Browser Plug-in 6.1.4 Build 27351 and other versions before 6.1.4.27993 allows remote attackers to execute arbitrary code via a crafted Sjbz chunk in a djvu file.

Action-Not Available
Vendor-caminovan/a
Product-djvu_browser_plug-inn/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2008-5492
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-9.3||HIGH
EPSS-70.18% / 98.70%
||
7 Day CHG~0.00%
Published-12 Dec, 2008 | 16:00
Updated-23 Apr, 2026 | 00:35
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Heap-based buffer overflow in the PDFVIEW.PdfviewCtrl.1 ActiveX control in pdfview.ocx 2.0.0.1 in VeryDOC PDF Viewer OCX Control allows remote attackers to execute arbitrary code via a long first argument to the OpenPDF method. NOTE: some of these details are obtained from third party information.

Action-Not Available
Vendor-verypdfn/a
Product-verydoc_pdf_viewern/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2012-5833
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-9.3||HIGH
EPSS-1.43% / 80.92%
||
7 Day CHG~0.00%
Published-21 Nov, 2012 | 11:00
Updated-29 Apr, 2026 | 01:13
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

The texImage2D implementation in the WebGL subsystem in Mozilla Firefox before 17.0, Firefox ESR 10.x before 10.0.11, Thunderbird before 17.0, Thunderbird ESR 10.x before 10.0.11, and SeaMonkey before 2.14 does not properly interact with Mesa drivers, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via function calls involving certain values of the level parameter.

Action-Not Available
Vendor-n/aCanonical Ltd.openSUSESUSERed Hat, Inc.Mozilla Corporation
Product-thunderbirdfirefoxubuntu_linuxseamonkeylinux_enterprise_desktopenterprise_linux_serverenterprise_linux_workstationthunderbird_esrenterprise_linux_desktoplinux_enterprise_serverenterprise_linux_euslinux_enterprise_software_development_kitopensusen/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2004-1114
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-9.3||HIGH
EPSS-14.86% / 94.61%
||
7 Day CHG~0.00%
Published-01 Dec, 2004 | 05:00
Updated-16 Apr, 2026 | 00:27
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Buffer overflow in the handling of command line arguments in Skype 1.0.x.94 through 1.0.x.98 allows remote attackers to execute arbitrary code via a callto:// URL with a long non-existent username, a different vulnerability than CVE-2004-1777.

Action-Not Available
Vendor-skype_technologiesn/a
Product-skypen/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2009-0227
Matching Score-4
Assigner-Microsoft Corporation
ShareView Details
Matching Score-4
Assigner-Microsoft Corporation
CVSS Score-9.3||HIGH
EPSS-67.80% / 98.61%
||
7 Day CHG~0.00%
Published-12 May, 2009 | 22:00
Updated-23 Apr, 2026 | 00:35
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Stack-based buffer overflow in the PowerPoint 4.2 conversion filter (PP4X32.DLL) in Microsoft Office PowerPoint 2000 SP3, 2002 SP3, and 2003 SP3 allows remote attackers to execute arbitrary code via a large number of structures in sound data in a file that uses a PowerPoint 4.0 native file format, leading to memory corruption, aka "Legacy File Format Vulnerability," a different vulnerability than CVE-2009-0222, CVE-2009-0223, CVE-2009-0226, and CVE-2009-1137.

Action-Not Available
Vendor-n/aMicrosoft Corporation
Product-office_powerpointn/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2005-2310
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-9.3||HIGH
EPSS-7.72% / 92.02%
||
7 Day CHG~0.00%
Published-19 Jul, 2005 | 04:00
Updated-16 Apr, 2026 | 00:27
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Buffer overflow in Winamp 5.03a, 5.09 and 5.091, and other versions before 5.094, allows remote attackers to execute arbitrary code via an MP3 file with a long ID3v2 tag such as (1) ARTIST or (2) TITLE.

Action-Not Available
Vendor-nullsoftn/a
Product-winampn/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-7845
Matching Score-4
Assigner-Mozilla Corporation
ShareView Details
Matching Score-4
Assigner-Mozilla Corporation
CVSS Score-8.8||HIGH
EPSS-0.76% / 73.63%
||
7 Day CHG~0.00%
Published-11 Jun, 2018 | 21:00
Updated-25 Nov, 2025 | 17:50
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A buffer overflow occurs when drawing and validating elements using Direct 3D 9 with the ANGLE graphics library, used for WebGL content. This is due to an incorrect value being passed within the library during checks and results in a potentially exploitable crash. Note: This attack only affects Windows operating systems. Other operating systems are unaffected. This vulnerability affects Thunderbird < 52.5.2, Firefox ESR < 52.5.2, and Firefox < 57.0.2.

Action-Not Available
Vendor-Mozilla CorporationMicrosoft Corporation
Product-windowsthunderbirdfirefoxThunderbirdFirefox ESRFirefox
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-8632
Matching Score-4
Assigner-Microsoft Corporation
ShareView Details
Matching Score-4
Assigner-Microsoft Corporation
CVSS Score-7.8||HIGH
EPSS-19.05% / 95.42%
||
7 Day CHG~0.00%
Published-13 Sep, 2017 | 01:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A remote code execution vulnerability exists in Microsoft Excel 2010 Service Pack 2, Microsoft Excel 2013 Service Pack 1, Microsoft Excel 2013 RT Service Pack 1, Microsoft Excel 2016, Microsoft Office Web Apps 2013, Microsoft Excel for Mac 2011, Microsoft Excel 2016 for Mac, and Microsoft Office Compatibility Pack Service Pack 3, when they fail to properly handle objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8630, CVE-2017-8631, and CVE-2017-8744.

Action-Not Available
Vendor-Microsoft Corporation
Product-office_compatibility_packexcel_for_macoffice_web_appsexcelMicrosoft Office
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2021-40710
Matching Score-4
Assigner-Adobe Systems Incorporated
ShareView Details
Matching Score-4
Assigner-Adobe Systems Incorporated
CVSS Score-7.8||HIGH
EPSS-4.00% / 88.56%
||
7 Day CHG~0.00%
Published-29 Sep, 2021 | 15:41
Updated-16 Sep, 2024 | 17:48
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available
Adobe Premiere Pro 2021 SVG File Parsing Leads to Memory Corruption

Adobe Premiere Pro version 15.4 (and earlier) is affected by a memory corruption vulnerability due to insecure handling of a malicious .svg file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required in that the victim must open a specially crafted file to exploit this vulnerability.

Action-Not Available
Vendor-Microsoft CorporationAdobe Inc.
Product-windowspremiere_proPremiere
CWE ID-CWE-788
Access of Memory Location After End of Buffer
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2018-0103
Matching Score-4
Assigner-Cisco Systems, Inc.
ShareView Details
Matching Score-4
Assigner-Cisco Systems, Inc.
CVSS Score-7.8||HIGH
EPSS-0.38% / 59.69%
||
7 Day CHG~0.00%
Published-04 Jan, 2018 | 06:00
Updated-02 Dec, 2024 | 21:47
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A Buffer Overflow vulnerability in Cisco WebEx Network Recording Player for Advanced Recording Format (ARF) files could allow a local attacker to execute arbitrary code on the system of a user. The attacker could exploit this vulnerability by sending the user a link or email attachment with a malicious ARF file and persuading the user to follow the link or launch the file. Successful exploitation could allow the attacker to execute arbitrary code on the user's system. This vulnerability affects Cisco WebEx Business Suite meeting sites, Cisco WebEx Meetings sites, Cisco WebEx Meetings Server, and Cisco WebEx ARF players. Cisco Bug IDs: CSCvg78835, CSCvg78837, CSCvg78839.

Action-Not Available
Vendor-n/aCisco Systems, Inc.
Product-webex_business_suitewebex_meetings_serverwebex_meetingswebex_network_recording_playerCisco WebEx Network Recording Player
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-9678
Matching Score-4
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-4
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.03% / 10.65%
||
7 Day CHG~0.00%
Published-18 Aug, 2017 | 19:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In all Qualcomm products with Android releases from CAF using the Linux kernel, in a video driver, memory corruption can potentially occur due to lack of bounds checking in a memcpy().

Action-Not Available
Vendor-Google LLCQualcomm Technologies, Inc.
Product-androidAll Qualcomm products
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2015-2442
Matching Score-4
Assigner-Microsoft Corporation
ShareView Details
Matching Score-4
Assigner-Microsoft Corporation
CVSS Score-9.3||HIGH
EPSS-22.82% / 95.96%
||
7 Day CHG~0.00%
Published-14 Aug, 2015 | 10:00
Updated-06 May, 2026 | 22:30
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Microsoft Internet Explorer 8 through 11 and Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Memory Corruption Vulnerability," a different vulnerability than CVE-2015-2444.

Action-Not Available
Vendor-n/aMicrosoft Corporation
Product-internet_exploreredgen/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2003-1336
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-9.3||HIGH
EPSS-78.41% / 99.05%
||
7 Day CHG~0.00%
Published-23 Sep, 2007 | 23:00
Updated-16 Apr, 2026 | 00:27
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Buffer overflow in mIRC before 6.11 allows remote attackers to execute arbitrary code via a long irc:// URL.

Action-Not Available
Vendor-mircn/a
Product-mircn/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-3055
Matching Score-4
Assigner-Adobe Systems Incorporated
ShareView Details
Matching Score-4
Assigner-Adobe Systems Incorporated
CVSS Score-7.8||HIGH
EPSS-2.23% / 84.75%
||
7 Day CHG~0.00%
Published-12 Apr, 2017 | 14:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable heap overflow vulnerability in JPEG 2000 parsing of the fragment list tag. Successful exploitation could lead to arbitrary code execution.

Action-Not Available
Vendor-n/aApple Inc.Microsoft CorporationAdobe Inc.
Product-acrobatmac_os_xacrobat_reader_dcreaderwindowsacrobat_dcAdobe Acrobat Reader 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier.
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2008-4825
Matching Score-4
Assigner-Flexera Software LLC
ShareView Details
Matching Score-4
Assigner-Flexera Software LLC
CVSS Score-9.3||HIGH
EPSS-1.53% / 81.56%
||
7 Day CHG~0.00%
Published-01 Apr, 2009 | 17:00
Updated-23 Apr, 2026 | 00:35
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Multiple buffer overflows in UltraISO 9.3.1.2633, and possibly other versions before 9.3.3.2685, allow user-assisted attackers to execute arbitrary code via a crafted (1) CIF, (2) C2D, or (3) GI file.

Action-Not Available
Vendor-ezbsystemsn/a
Product-ultraison/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2018-10750
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-8.8||HIGH
EPSS-1.45% / 81.00%
||
7 Day CHG~0.00%
Published-04 May, 2018 | 18:00
Updated-17 Sep, 2024 | 03:37
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

An issue was discovered on D-Link DSL-3782 EU 1.01 devices. An authenticated user can pass a long buffer as a 'staticGet' parameter to the '/userfs/bin/tcapi' binary (in the Diagnostics component) using the 'staticGet <node_name attr>' function and cause memory corruption. Furthermore, it is possible to redirect the flow of the program and execute arbitrary code.

Action-Not Available
Vendor-n/aD-Link Corporation
Product-dsl-3782_firmwaredsl-3782n/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2009-0235
Matching Score-4
Assigner-Microsoft Corporation
ShareView Details
Matching Score-4
Assigner-Microsoft Corporation
CVSS Score-9.3||HIGH
EPSS-72.26% / 98.78%
||
7 Day CHG~0.00%
Published-15 Apr, 2009 | 03:49
Updated-23 Apr, 2026 | 00:35
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Stack-based buffer overflow in the Word 97 text converter in WordPad in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2 allows remote attackers to execute arbitrary code via a crafted Word 97 file that triggers memory corruption, related to use of inconsistent integer data sizes for an unspecified length field, aka "WordPad Word 97 Text Converter Stack Overflow Vulnerability."

Action-Not Available
Vendor-n/aMicrosoft Corporation
Product-windows_2000windows_2003_serverwindows_xpn/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2012-6349
Matching Score-4
Assigner-IBM Corporation
ShareView Details
Matching Score-4
Assigner-IBM Corporation
CVSS Score-9.3||HIGH
EPSS-6.33% / 91.08%
||
7 Day CHG~0.00%
Published-18 Jul, 2013 | 16:00
Updated-29 Apr, 2026 | 01:13
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Buffer overflow in the .mdb parser in Autonomy KeyView IDOL, as used in IBM Notes 8.5.x before 8.5.3 FP4, allows remote attackers to execute arbitrary code via a crafted file, aka SPR KLYH92XL3W.

Action-Not Available
Vendor-autonomyn/aIBM Corporation
Product-keyview_idollotus_notesn/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2003-0662
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-9.3||HIGH
EPSS-46.11% / 97.69%
||
7 Day CHG~0.00%
Published-17 Oct, 2003 | 04:00
Updated-16 Apr, 2026 | 00:27
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Buffer overflow in Troubleshooter ActiveX Control (Tshoot.ocx) in Microsoft Windows 2000 SP4 and earlier allows remote attackers to execute arbitrary code via an HTML document with a long argument to the RunQuery2 method.

Action-Not Available
Vendor-n/aMicrosoft Corporation
Product-windows_2000n/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-8538
Matching Score-4
Assigner-Microsoft Corporation
ShareView Details
Matching Score-4
Assigner-Microsoft Corporation
CVSS Score-7.8||HIGH
EPSS-62.58% / 98.39%
||
7 Day CHG~0.00%
Published-26 May, 2017 | 20:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016, Microsoft Exchange Server 2013 and 2016, does not properly scan a specially crafted file leading to memory corruption. aka "Microsoft Malware Protection Engine Remote Code Execution Vulnerability", a different vulnerability than CVE-2017-8540 and CVE-2017-8541.

Action-Not Available
Vendor-Microsoft Corporation
Product-windows_10windows_7windows_8.1windows_server_2008forefront_securityexchange_serverwindows_defenderwindows_server_2016malware_protection_enginewindows_rt_8.1windows_server_2012Malware Protection Engine
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-8630
Matching Score-4
Assigner-Microsoft Corporation
ShareView Details
Matching Score-4
Assigner-Microsoft Corporation
CVSS Score-7.8||HIGH
EPSS-22.84% / 95.96%
||
7 Day CHG~0.00%
Published-13 Sep, 2017 | 01:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Microsoft Office 2016 allows a remote code execution vulnerability when it fails to properly handle objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8631, CVE-2017-8632, and CVE-2017-8744.

Action-Not Available
Vendor-Microsoft Corporation
Product-officeMicrosoft Office
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-8170
Matching Score-4
Assigner-Huawei Technologies
ShareView Details
Matching Score-4
Assigner-Huawei Technologies
CVSS Score-7.8||HIGH
EPSS-0.18% / 38.75%
||
7 Day CHG~0.00%
Published-22 Nov, 2017 | 19:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Huawei smart phones with software earlier than VIE-L09C40B360 versions have a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP which has the root privilege; the APP can send a specific parameter to the smart phone, causing the smartphone restart or arbitrary code execution.

Action-Not Available
Vendor-Huawei Technologies Co., Ltd.
Product-vie-l09vie-l09_firmwareVIE-L09
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-8208
Matching Score-4
Assigner-Huawei Technologies
ShareView Details
Matching Score-4
Assigner-Huawei Technologies
CVSS Score-7.8||HIGH
EPSS-0.18% / 38.75%
||
7 Day CHG~0.00%
Published-22 Nov, 2017 | 19:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

The driver of honor 5C,honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP which has the root privilege of the Android system, the APP can send a specific parameter to the driver of the smart phone, causing a system reboot or arbitrary code execution.

Action-Not Available
Vendor-Huawei Technologies Co., Ltd.
Product-honor_6xhonor_6x_firmwarehonor_5c_firmwarehonor_5chonor 5C,honor 6x
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-8207
Matching Score-4
Assigner-Huawei Technologies
ShareView Details
Matching Score-4
Assigner-Huawei Technologies
CVSS Score-7.8||HIGH
EPSS-0.18% / 38.75%
||
7 Day CHG~0.00%
Published-22 Nov, 2017 | 19:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

The driver of honor 5C, honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP which has the root privilege of the Android system, the APP can send a specific parameter to the driver of the smart phone, causing a system reboot or arbitrary code execution.

Action-Not Available
Vendor-Huawei Technologies Co., Ltd.
Product-honor_6xhonor_6x_firmwarehonor_5c_firmwarehonor_5chonor 5C,honor 6x
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-8567
Matching Score-4
Assigner-Microsoft Corporation
ShareView Details
Matching Score-4
Assigner-Microsoft Corporation
CVSS Score-7.8||HIGH
EPSS-32.41% / 96.92%
||
7 Day CHG~0.00%
Published-13 Sep, 2017 | 01:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A remote code execution vulnerability exists in Microsoft Excel for Mac 2011 when it fails to properly handle objects in memory, aka "Microsoft Office Remote Code Execution".

Action-Not Available
Vendor-Microsoft Corporation
Product-excel_for_macMicrosoft Office
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-8527
Matching Score-4
Assigner-Microsoft Corporation
ShareView Details
Matching Score-4
Assigner-Microsoft Corporation
CVSS Score-8.8||HIGH
EPSS-28.83% / 96.63%
||
7 Day CHG~0.00%
Published-15 Jun, 2017 | 01:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Graphics in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows a remote code execution vulnerability due to the way it handles objects in memory, aka "Windows Graphics Remote Code Execution Vulnerability".

Action-Not Available
Vendor-Microsoft Corporation
Product-windows_10windows_7windows_8.1windows_server_2008lyncskype_for_businesssilverlightofficewindows_server_2016windows_rt_8.1windows_server_2012Graphics
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-8241
Matching Score-4
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-4
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.05% / 14.40%
||
7 Day CHG~0.00%
Published-13 Jun, 2017 | 20:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in a WLAN function due to an incorrect message length.

Action-Not Available
Vendor-Google LLCQualcomm Technologies, Inc.
Product-androidAll Qualcomm products
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-8743
Matching Score-4
Assigner-Microsoft Corporation
ShareView Details
Matching Score-4
Assigner-Microsoft Corporation
CVSS Score-7.8||HIGH
EPSS-32.44% / 96.92%
||
7 Day CHG~0.00%
Published-13 Sep, 2017 | 01:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A remote code execution vulnerability exists in Microsoft PowerPoint 2016, Microsoft SharePoint Enterprise Server 2016, and Office Online Server when they fail to properly handle objects in memory, aka "PowerPoint Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-8742.

Action-Not Available
Vendor-Microsoft Corporation
Product-powerpointoffice_online_serversharepoint_serverMicrosoft Office
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2012-6468
Matching Score-4
Assigner-MITRE Corporation
ShareView Details
Matching Score-4
Assigner-MITRE Corporation
CVSS Score-9.3||HIGH
EPSS-6.42% / 91.16%
||
7 Day CHG~0.00%
Published-02 Jan, 2013 | 11:00
Updated-29 Apr, 2026 | 01:13
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Heap-based buffer overflow in Opera before 12.11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a long HTTP response.

Action-Not Available
Vendor-n/aOpera
Product-opera_browsern/a
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-8691
Matching Score-4
Assigner-Microsoft Corporation
ShareView Details
Matching Score-4
Assigner-Microsoft Corporation
CVSS Score-8.8||HIGH
EPSS-41.64% / 97.47%
||
7 Day CHG~0.00%
Published-08 Aug, 2017 | 21:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allow an attacker to execute code remotely on a target system when the Windows font library fails to properly handle specially crafted embedded fonts, aka "Express Compressed Fonts Remote Code Execution Vulnerability."

Action-Not Available
Vendor-Microsoft Corporation
Product-windows_7windows_server_2008Windows Kernel-Mode Drivers
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-8725
Matching Score-4
Assigner-Microsoft Corporation
ShareView Details
Matching Score-4
Assigner-Microsoft Corporation
CVSS Score-7.8||HIGH
EPSS-32.41% / 96.92%
||
7 Day CHG~0.00%
Published-13 Sep, 2017 | 01:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A remote code execution vulnerability exists in Microsoft Publisher 2007 Service Pack 3 and Microsoft Publisher 2010 Service Pack 2 when they fail to properly handle objects in memory, aka "Microsoft Office Publisher Remote Code Execution".

Action-Not Available
Vendor-Microsoft Corporation
Product-publisherMicrosoft Office
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-8513
Matching Score-4
Assigner-Microsoft Corporation
ShareView Details
Matching Score-4
Assigner-Microsoft Corporation
CVSS Score-7.8||HIGH
EPSS-36.53% / 97.19%
||
7 Day CHG~0.00%
Published-15 Jun, 2017 | 01:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A remote code execution vulnerability exists in Microsoft PowerPoint when the software fails to properly handle objects in memory, aka "Microsoft PowerPoint Remote Code Execution Vulnerability".

Action-Not Available
Vendor-Microsoft Corporation
Product-powerpointsharepoint_serverMicrosoft PowerPoint
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-8238
Matching Score-4
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-4
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.05% / 14.96%
||
7 Day CHG~0.00%
Published-13 Jun, 2017 | 20:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in a camera function.

Action-Not Available
Vendor-Google LLCQualcomm Technologies, Inc.
Product-androidAll Qualcomm products
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-8236
Matching Score-4
Assigner-Qualcomm, Inc.
ShareView Details
Matching Score-4
Assigner-Qualcomm, Inc.
CVSS Score-7.8||HIGH
EPSS-0.05% / 14.96%
||
7 Day CHG~0.00%
Published-13 Jun, 2017 | 20:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in an IPA driver.

Action-Not Available
Vendor-Google LLCQualcomm Technologies, Inc.
Product-androidAll Qualcomm products
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE-2017-8528
Matching Score-4
Assigner-Microsoft Corporation
ShareView Details
Matching Score-4
Assigner-Microsoft Corporation
CVSS Score-8.8||HIGH
EPSS-26.84% / 96.43%
||
7 Day CHG~0.00%
Published-15 Jun, 2017 | 01:00
Updated-13 May, 2026 | 00:24
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

Uniscribe in Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, Windows Server 2016, Microsoft Office 2007 SP3, and Microsoft Office 2010 SP2 allows a remote code execution vulnerability due to the way it handles objects in memory, aka "Windows Uniscribe Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-0283.

Action-Not Available
Vendor-Microsoft Corporation
Product-windows_7windows_8.1windows_server_2008officewindows_rt_8.1windows_server_2012Uniscribe
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
  • Previous
  • 1
  • 2
  • 3
  • ...
  • 53
  • 54
  • Next
Details not found