Vulnerabilities > Out-of-bounds Read

DATE CVE VULNERABILITY TITLE RISK
2018-10-19 CVE-2018-18224 Out-of-bounds Read vulnerability in multiple products
A vulnerability exists in the file reading procedure in Open Design Alliance Drawings SDK 2019Update1 on non-Windows platforms in which attackers could perform read operations past the end, or before the beginning, of the intended buffer.
network
low complexity
opendesign oracle CWE-125
8.1
8.1
2018-10-18 CVE-2018-18481 Out-of-bounds Read vulnerability in Libopencad Project Libopencad 0.2.0
A heap-based buffer over-read exists in libopencad 0.2.0 in the ReadCHAR function in lib/dwg/io.cpp, resulting in an application crash.
network
low complexity
libopencad-project CWE-125
6.5
6.5
2018-10-18 CVE-2018-18480 Out-of-bounds Read vulnerability in Libopencad Project Libopencad 0.2.0
A heap-based buffer over-read exists in libopencad 0.2.0 in the ReadMCHAR function in lib/dwg/io.cpp, resulting in an application crash.
network
low complexity
libopencad-project CWE-125
6.5
6.5
2018-10-18 CVE-2018-12366 Out-of-bounds Read vulnerability in multiple products
An invalid grid size during QCMS (color profile) transformations can result in the out-of-bounds read interpreted as a float value.
network
low complexity
redhat debian canonical mozilla CWE-125
6.5
6.5
2018-10-18 CVE-2018-18456 Out-of-bounds Read vulnerability in Xpdfreader Xpdf 4.00
The function Object::isName() in Object.h (called from Gfx::opSetFillColorN) in Xpdf 4.00 allows remote attackers to cause a denial of service (stack-based buffer over-read) via a crafted pdf file, as demonstrated by pdftoppm.
local
low complexity
xpdfreader CWE-125
5.5
5.5
2018-10-18 CVE-2018-18455 Out-of-bounds Read vulnerability in Xpdfreader Xpdf 4.00
The GfxImageColorMap class in GfxState.cc in Xpdf 4.00 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted pdf file, as demonstrated by pdftoppm.
local
low complexity
xpdfreader CWE-125
5.5
5.5
2018-10-18 CVE-2018-18454 Out-of-bounds Read vulnerability in Xpdfreader Xpdf 4.00
CCITTFaxStream::readRow() in Stream.cc in Xpdf 4.00 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted pdf file, as demonstrated by pdftoppm.
local
low complexity
xpdfreader CWE-125
5.5
5.5
2018-10-17 CVE-2018-18445 Out-of-bounds Read vulnerability in multiple products
In the Linux kernel 4.14.x, 4.15.x, 4.16.x, 4.17.x, and 4.18.x before 4.18.13, faulty computation of numeric bounds in the BPF verifier permits out-of-bounds memory accesses because adjust_scalar_min_max_vals in kernel/bpf/verifier.c mishandles 32-bit right shifts.
local
low complexity
linux canonical redhat CWE-125
7.8
7.8
2018-10-17 CVE-2018-12821 Out-of-bounds Read vulnerability in Adobe Digital Editions
Adobe Digital Editions versions 4.5.8 and below have an out of bounds read vulnerability.
network
low complexity
adobe CWE-125
7.5
7.5
2018-10-17 CVE-2018-12820 Out-of-bounds Read vulnerability in Adobe Digital Editions
Adobe Digital Editions versions 4.5.8 and below have an out of bounds read vulnerability.
network
low complexity
adobe CWE-125
7.5
7.5