Vulnerabilities > Out-of-bounds Read

DATE CVE VULNERABILITY TITLE RISK
2016-11-16 CVE-2016-7915 Out-of-bounds Read vulnerability in Linux Kernel
The hid_input_field function in drivers/hid/hid-core.c in the Linux kernel before 4.6 allows physically proximate attackers to obtain sensitive information from kernel memory or cause a denial of service (out-of-bounds read) by connecting a device, as demonstrated by a Logitech DJ receiver.
local
low complexity
linux CWE-125
5.5
2016-10-31 CVE-2016-8878 Out-of-bounds Read vulnerability in Foxitsoftware Phantompdf and Reader
Out-of-Bounds read vulnerability in Foxit Reader and PhantomPDF before 8.1 on Windows, when the gflags app is enabled, allows remote attackers to execute arbitrary code via a crafted BMP image embedded in the XFA stream in a PDF document, aka "Data from Faulting Address may be used as a return value starting at FOXITREADER."
network
low complexity
foxitsoftware CWE-125
8.8
2016-10-31 CVE-2016-8876 Out-of-bounds Read vulnerability in Foxitsoftware Phantompdf and Reader
Out-of-Bounds read vulnerability in Foxit Reader and PhantomPDF before 8.1 on Windows, when the gflags app is enabled, allows remote attackers to execute arbitrary code via a crafted TIFF image embedded in the XFA stream in a PDF document, aka "Read Access Violation starting at FoxitReader."
network
high complexity
foxitsoftware CWE-125
7.5
2016-10-31 CVE-2016-8875 Out-of-bounds Read vulnerability in Foxitsoftware Phantompdf and Reader
The ConvertToPDF plugin in Foxit Reader and PhantomPDF before 8.1 on Windows, when the gflags app is enabled, allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted TIFF image, aka "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at ConvertToPDF_x86!CreateFXPDFConvertor."
network
high complexity
foxitsoftware CWE-125
5.3
2016-10-29 CVE-2016-7506 Out-of-bounds Read vulnerability in Artifex Mujs
An out-of-bounds read vulnerability was observed in Sp_replace_regexp function of Artifex Software, Inc.
network
low complexity
artifex CWE-125
7.5
2016-10-28 CVE-2016-9017 Out-of-bounds Read vulnerability in Artifex Mujs
Artifex Software, Inc.
network
low complexity
artifex CWE-125
7.5
2016-10-03 CVE-2016-6905 Out-of-bounds Read vulnerability in multiple products
The read_image_tga function in gd_tga.c in the GD Graphics Library (aka libgd) before 2.2.3 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TGA image.
network
low complexity
libgd opensuse CWE-125
6.5
2016-10-03 CVE-2016-3658 Out-of-bounds Read vulnerability in Libtiff
The TIFFWriteDirectoryTagLongLong8Array function in tif_dirwrite.c in the tiffset tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via vectors involving the ma variable.
network
low complexity
libtiff CWE-125
7.5
2016-10-03 CVE-2016-3634 Out-of-bounds Read vulnerability in Libtiff
The tagCompare function in tif_dirinfo.c in the thumbnail tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to field_tag matching.
network
low complexity
libtiff CWE-125
7.5
2016-10-03 CVE-2016-3633 Out-of-bounds Read vulnerability in Libtiff
The setrow function in the thumbnail tool in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the src variable.
network
low complexity
libtiff CWE-125
7.5