Vulnerabilities > Out-of-bounds Read

DATE CVE VULNERABILITY TITLE RISK
2018-03-23 CVE-2018-8960 Out-of-bounds Read vulnerability in multiple products
The ReadTIFFImage function in coders/tiff.c in ImageMagick 7.0.7-26 Q16 does not properly restrict memory allocation, leading to a heap-based buffer over-read.
network
low complexity
imagemagick canonical CWE-125
8.8
8.8
2018-03-23 CVE-2017-18246 Out-of-bounds Read vulnerability in Libav 12.2
The pcm_encode_frame function in libavcodec/pcm.c in Libav 12.2 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted media file.
network
low complexity
libav CWE-125
6.5
6.5
2018-03-23 CVE-2017-18245 Out-of-bounds Read vulnerability in Libav 12.2
The mpc8_probe function in libavformat/mpc8.c in Libav 12.2 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted audio file.
network
low complexity
libav CWE-125
6.5
6.5
2018-03-22 CVE-2017-18244 Out-of-bounds Read vulnerability in Libav 12.2
The stereo_processing function in libavcodec/aacps.c in Libav 12.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted aac file, related to ff_ps_apply.
network
low complexity
libav CWE-125
6.5
6.5
2018-03-22 CVE-2017-18242 Out-of-bounds Read vulnerability in Libav 12.2
The apply_dependent_coupling function in libavcodec/aacdec.c in Libav 12.2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted aac file.
network
low complexity
libav CWE-125
6.5
6.5
2018-03-20 CVE-2018-8883 Out-of-bounds Read vulnerability in Nasm Netwide Assembler 2.13.02
Netwide Assembler (NASM) 2.13.02rc2 has a buffer over-read in the parse_line function in asm/parser.c via uncontrolled access to nasm_reg_flags.
local
low complexity
nasm CWE-125
7.8
7.8
2018-03-20 CVE-2018-8881 Out-of-bounds Read vulnerability in multiple products
Netwide Assembler (NASM) 2.13.02rc2 has a heap-based buffer over-read in the function tokenize in asm/preproc.c, related to an unterminated string.
local
low complexity
nasm canonical CWE-125
7.3
7.3
2018-03-20 CVE-2014-2032 Out-of-bounds Read vulnerability in multiple products
Deadwood before 2.3.09, 3.x before 3.2.05, and as used in MaraDNS before 1.4.14 and 2.x before 2.0.09, allow remote attackers to cause a denial of service (out-of-bounds read and crash) by leveraging permission to perform recursive queries against Deadwood, related to missing input validation.
network
high complexity
maradns-project deadwood-project CWE-125
5.9
5.9
2018-03-20 CVE-2014-2031 Out-of-bounds Read vulnerability in multiple products
Deadwood before 2.3.09, 3.x before 3.2.05, and as used in MaraDNS before 1.4.14 and 2.x before 2.0.09, allow remote attackers to cause a denial of service (out-of-bounds read and crash) by leveraging permission to perform recursive queries against Deadwood, related to a logic error.
network
high complexity
maradns-project deadwood-project CWE-125
5.9
5.9
2018-03-20 CVE-2017-17307 Out-of-bounds Read vulnerability in Huawei Vns-L21 Firmware Vnsl21Autc555B141
Some Huawei Smartphones with software of VNS-L21AUTC555B141 have an out-of-bounds read vulnerability.
local
low complexity
huawei CWE-125
5.5
5.5