Vulnerabilities > Out-of-bounds Read

DATE CVE VULNERABILITY TITLE RISK
2017-05-16 CVE-2017-6658 Out-of-bounds Read vulnerability in Cisco Sourcefire Snort 3.0
Cisco Sourcefire Snort 3.0 before build 233 has a Buffer Overread related to use of a decoder array.
network
low complexity
cisco CWE-125
7.5
2017-05-12 CVE-2017-8908 Out-of-bounds Read vulnerability in Artifex Ghostscript 9.21
The mark_line_tr function in gxscanc.c in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PostScript document.
local
low complexity
artifex CWE-125
5.5
2017-05-10 CVE-2017-8872 Out-of-bounds Read vulnerability in Xmlsoft Libxml2 2.9.4
The htmlParseTryOrFinish function in HTMLparser.c in libxml2 2.9.4 allows attackers to cause a denial of service (buffer over-read) or information disclosure.
network
low complexity
xmlsoft CWE-125
critical
9.1
2017-05-08 CVE-2017-8845 Out-of-bounds Read vulnerability in Long Range ZIP Project Long Range ZIP 0.631
The lzo1x_decompress function in lzo1x_d.ch in LZO 2.08, as used in lrzip 0.631, allows remote attackers to cause a denial of service (invalid memory read and application crash) via a crafted archive.
local
low complexity
long-range-zip-project CWE-125
5.5
2017-05-08 CVE-2017-8831 Out-of-bounds Read vulnerability in multiple products
The saa7164_bus_get function in drivers/media/pci/saa7164/saa7164-bus.c in the Linux kernel through 4.11.5 allows local users to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact by changing a certain sequence-number value, aka a "double fetch" vulnerability.
high complexity
linux canonical debian CWE-125
6.4
2017-05-05 CVE-2017-8787 Out-of-bounds Read vulnerability in Podofo Project Podofo 0.9.5
The PoDoFo::PdfXRefStreamParserObject::ReadXRefStreamEntry function in base/PdfXRefStreamParserObject.cpp:224 in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (heap-based buffer over-read) or possibly have unspecified other impact via a crafted PDF file.
network
low complexity
podofo-project CWE-125
8.8
2017-05-04 CVE-2017-3731 Out-of-bounds Read vulnerability in multiple products
If an SSL/TLS server or client is running on a 32-bit host, and a specific cipher is being used, then a truncated packet can cause that server or client to perform an out-of-bounds read, usually resulting in a crash.
network
low complexity
openssl nodejs CWE-125
7.5
2017-05-03 CVE-2017-8455 Out-of-bounds Read vulnerability in Foxitsoftware Foxit Reader
Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 have an out-of-bounds read that allows remote attackers to obtain sensitive information or possibly execute arbitrary code via a crafted font in a PDF document.
local
low complexity
foxitsoftware CWE-125
7.8
2017-05-03 CVE-2017-8454 Out-of-bounds Read vulnerability in Foxitsoftware Foxit Reader
Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 have an out-of-bounds read that allows remote attackers to obtain sensitive information or possibly execute arbitrary code via a crafted font in a PDF document.
network
low complexity
foxitsoftware CWE-125
8.8
2017-05-03 CVE-2017-8453 Out-of-bounds Read vulnerability in Foxitsoftware Foxit Reader
Foxit Reader before 8.2.1 and PhantomPDF before 8.2.1 have an out-of-bounds read that allows remote attackers to obtain sensitive information or possibly execute arbitrary code via a crafted font in a PDF document.
network
low complexity
foxitsoftware CWE-125
8.8