Vulnerabilities > Out-of-bounds Read

DATE CVE VULNERABILITY TITLE RISK
2018-02-24 CVE-2018-7455 Out-of-bounds Read vulnerability in Xpdfreader Xpdf 4.00
An out-of-bounds read in JPXStream::readTilePart in JPXStream.cc in xpdf 4.00 allows attackers to launch denial of service via a specific pdf file, as demonstrated by pdftohtml.
local
low complexity
xpdfreader CWE-125
5.5
5.5
2018-02-24 CVE-2017-18198 Out-of-bounds Read vulnerability in GNU Libcdio
print_iso9660_recurse in iso-info.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted iso file.
network
low complexity
gnu CWE-125
8.8
8.8
2018-02-23 CVE-2017-14910 Out-of-bounds Read vulnerability in Qualcomm products
In Snapdragon Automobile, Snapdragon IoT and Snapdragon Mobile MDM9206 MDM9607, MDM9650, S820A, S820Am, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 820, SD 835, and SD 845, a buffer overread is possible if there are no newlines in an input file.
network
low complexity
qualcomm CWE-125
critical
 9.8
9.8
2018-02-23 CVE-2018-7439 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in FreeXL before 1.0.5.
network
low complexity
freexl-project debian CWE-125
8.8
8.8
2018-02-23 CVE-2018-7438 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in FreeXL before 1.0.5.
network
low complexity
freexl-project debian CWE-125
8.8
8.8
2018-02-23 CVE-2018-7437 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in FreeXL before 1.0.5.
network
low complexity
freexl-project debian CWE-125
8.8
8.8
2018-02-23 CVE-2018-7436 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in FreeXL before 1.0.5.
network
low complexity
freexl-project debian CWE-125
8.8
8.8
2018-02-23 CVE-2018-7435 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in FreeXL before 1.0.5.
network
low complexity
freexl-project debian CWE-125
8.8
8.8
2018-02-19 CVE-2018-7254 Out-of-bounds Read vulnerability in multiple products
The ParseCaffHeaderConfig function of the cli/caff.c file of WavPack 5.1.0 allows a remote attacker to cause a denial-of-service (global buffer over-read), or possibly trigger a buffer overflow or incorrect memory allocation, via a maliciously crafted CAF file.
local
low complexity
wavpack debian CWE-125
7.8
7.8
2018-02-19 CVE-2018-7253 Out-of-bounds Read vulnerability in multiple products
The ParseDsdiffHeaderConfig function of the cli/dsdiff.c file of WavPack 5.1.0 allows a remote attacker to cause a denial-of-service (heap-based buffer over-read) or possibly overwrite the heap via a maliciously crafted DSDIFF file.
local
low complexity
wavpack debian canonical CWE-125
7.8
7.8