Vulnerabilities > Out-of-bounds Write

DATE CVE VULNERABILITY TITLE RISK
2019-05-13 CVE-2018-18912 Out-of-bounds Write vulnerability in Sharing-File Easy File Sharing web Server 7.2
An issue was discovered in Easy File Sharing (EFS) Web Server 7.2.
network
low complexity
sharing-file CWE-787
critical
9.8
2019-05-13 CVE-2018-4029 Out-of-bounds Write vulnerability in Anker-In Roav Dashcam A1 Firmware 1.9
An exploitable code execution vulnerability exists in the HTTP request-parsing function of the NT9665X Chipset firmware running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9.
network
low complexity
anker-in CWE-787
critical
9.8
2019-05-13 CVE-2018-4023 Out-of-bounds Write vulnerability in Anker-In Roav Dashcam A1 Firmware 1.9
An exploitable code execution vulnerability exists in the XML_UploadFile Wi-Fi command of the NT9665X Chipset firmware, running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9.
network
low complexity
anker-in CWE-787
critical
9.8
2019-05-13 CVE-2018-4016 Out-of-bounds Write vulnerability in Anker-In Roav Dashcam A1 Firmware Roava1Swv1.9
An exploitable code execution vulnerability exists in the URL-parsing functionality of the Roav A1 Dashcam running version RoavA1SWV1.9.
low complexity
anker-in CWE-787
8.8
2019-05-13 CVE-2018-4014 Out-of-bounds Write vulnerability in Anker-In Roav Dashcam A1 Firmware Roava1Swv1.9
An exploitable code execution vulnerability exists in Wi-Fi Command 9999 of the Roav A1 Dashcam running version RoavA1SWV1.9.
network
low complexity
anker-in CWE-787
critical
9.8
2019-05-09 CVE-2019-11839 Out-of-bounds Write vulnerability in F5 NJS
njs through 0.3.1, used in NGINX, has a heap-based buffer overflow in Array.prototype.push after a resize, related to njs_array_prototype_push in njs/njs_array.c, because of njs_array_expand size mishandling.
network
low complexity
f5 CWE-787
critical
9.8
2019-05-09 CVE-2019-11838 Out-of-bounds Write vulnerability in F5 NJS
njs through 0.3.1, used in NGINX, has a heap-based buffer overflow in Array.prototype.splice after a resize, related to njs_array_prototype_splice in njs/njs_array.c, because of njs_array_expand size mishandling.
network
low complexity
f5 CWE-787
critical
9.8
2019-05-09 CVE-2019-11835 Out-of-bounds Write vulnerability in multiple products
cJSON before 1.7.11 allows out-of-bounds access, related to multiline comments.
network
low complexity
cjson-project oracle CWE-787
critical
9.8
2019-05-09 CVE-2019-11834 Out-of-bounds Write vulnerability in multiple products
cJSON before 1.7.11 allows out-of-bounds access, related to \x00 in a string literal.
network
low complexity
cjson-project oracle CWE-787
critical
9.8
2019-05-08 CVE-2019-8285 Out-of-bounds Write vulnerability in Kaspersky Antivirus Engine
Kaspersky Lab Antivirus Engine version before 04.apr.2019 has a heap-based buffer overflow vulnerability that potentially allow arbitrary code execution
network
low complexity
kaspersky CWE-787
8.8