Vulnerabilities > Out-of-bounds Read
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-06-11 | CVE-2017-5446 | Out-of-bounds Read vulnerability in multiple products An out-of-bounds read when an HTTP/2 connection to a servers sends "DATA" frames with incorrect data content. | 9.8 |
| 2018-06-11 | CVE-2017-5418 | Out-of-bounds Read vulnerability in Mozilla Firefox An out of bounds read error occurs when parsing some HTTP digest authorization responses, resulting in information leakage through the reading of random memory containing matches to specifically set patterns. | 5.3 |
| 2018-06-11 | CVE-2018-12092 | Out-of-bounds Read vulnerability in Tinyexr Project Tinyexr 0.9.5 tinyexr 0.9.5 has a heap-based buffer over-read in tinyexr::DecodePixelData in tinyexr.h, related to OpenEXR code. | 9.8 |
| 2018-06-11 | CVE-2018-10360 | Out-of-bounds Read vulnerability in multiple products The do_core_note function in readelf.c in libmagic.a in file 5.33 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted ELF file. | 6.5 |
| 2018-06-08 | CVE-2018-4253 | Out-of-bounds Read vulnerability in Apple mac OS X An issue was discovered in certain Apple products. | 5.5 |
| 2018-06-08 | CVE-2018-4222 | Out-of-bounds Read vulnerability in multiple products An issue was discovered in certain Apple products. | 8.8 |
| 2018-06-08 | CVE-2018-10506 | Out-of-bounds Read vulnerability in Trendmicro Officescan 11.0/Xg A out-of-bounds read information disclosure vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a local attacker to disclose sensitive information on vulnerable installations due to a flaw within the processing of IOCTL 0x220004 by the TMWFP driver. | 4.7 |
| 2018-06-08 | CVE-2018-12064 | Out-of-bounds Read vulnerability in Tinyexr Project Tinyexr 0.9.5 tinyexr 0.9.5 has a heap-based buffer over-read via tinyexr::ReadChannelInfo in tinyexr.h. | 9.8 |
| 2018-06-07 | CVE-2018-3739 | Out-of-bounds Read vulnerability in Https-Proxy-Agent Project Https-Proxy-Agent https-proxy-agent before 2.1.1 passes auth option to the Buffer constructor without proper sanitization, resulting in DoS and uninitialized memory leak in setups where an attacker could submit typed input to the 'auth' parameter (e.g. | 9.1 |
| 2018-06-05 | CVE-2018-11740 | Out-of-bounds Read vulnerability in Sleuthkit the Sleuth KIT An issue was discovered in libtskbase.a in The Sleuth Kit (TSK) from release 4.0.2 through to 4.6.1. | 8.1 |