Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CAPEC-123:Buffer Manipulation
Attack Pattern ID:123
Version:v3.9
Attack Pattern Name:Buffer Manipulation
Abstraction:Meta
Status:Draft
Likelihood of Attack:High
Typical Severity:Very High
DetailsContent HistoryRelated WeaknessesReports
1Weaknesses found
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
ShareView Details
Improper Restriction of Operations within the Bounds of a Memory Buffer
Likelihood of Exploit-High
Mapping-Discouraged
Abstraction-Class
Found in13967CVEs

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

Impacts-
DoS: Crash, Exit, or RestartDoS: Resource Consumption (CPU)Execute Unauthorized Code or CommandsDoS: Resource Consumption (Memory)Read MemoryModify Memory
Tags-
High exploitEnvironment HardeningLibraries or FrameworksLanguage SelectionAssemblyExecute Unauthorized Code or Commands (impact)DoS: Resource Consumption (CPU) (impact)Read Memory (impact)DoS: Crash, Exit, or Restart (impact)DoS: Resource Consumption (Memory) (impact)Modify Memory (impact)
As Seen In-
2019 CWE Top 25 Most Dangerous Software Errors2021 CWE Top 25 Most Dangerous SoftwareCISQ Data Protection Measures2020 CWE Top 25 Most Dangerous Software2022 CWE Top 25 Most Dangerous Software2023 CWE Top 25 Most Dangerous Software2024 CWE Top 25 Most Dangerous SoftwareOriginally Used by NVD from 2008 to 2016Simplified Mapping of Published Vulnerabilities