Vulnerabilities > Out-of-bounds Write

DATE CVE VULNERABILITY TITLE RISK
2024-05-28 CVE-2023-52548 Out-of-bounds Write vulnerability in Huawei Curiem-Wfg9B Firmware Otacuriembbios2.28
Huawei Matebook D16(Model: CREM-WXX9, BIOS: v2.26) Arbitrary Memory Corruption in SMI Handler of ThisiServicesSmm SMM module.
local
low complexity
huawei CWE-787
7.8
2024-05-27 CVE-2024-3933 Out-of-bounds Write vulnerability in Eclipse Openj9
In Eclipse OpenJ9 release versions prior to 0.44.0 and after 0.13.0, when running with JVM option -Xgc:concurrentScavenge, the sequence generated for System.arrayCopy on the IBM Z platform with hardware and software support for guarded storage [1], could allow access to a buffer with an incorrect length value when executing an arraycopy sequence while the Concurrent Scavenge Garbage Collection cycle is active and the source and destination memory regions for arraycopy overlap.
local
low complexity
eclipse CWE-787
7.3
2024-05-22 CVE-2024-5160 Out-of-bounds Write vulnerability in multiple products
Heap buffer overflow in Dawn in Google Chrome prior to 125.0.6422.76 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page.
network
low complexity
google fedoraproject CWE-787
8.8
2024-05-22 CVE-2021-47489 Out-of-bounds Write vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix even more out of bound writes from debugfs CVE-2021-42327 was fixed by: commit f23750b5b3d98653b31d4469592935ef6364ad67 Author: Thelford Williams <tdwilliamsiv@gmail.com> Date: Wed Oct 13 16:04:13 2021 -0400 drm/amdgpu: fix out of bounds write but amdgpu_dm_debugfs.c contains more of the same issue so fix the remaining ones. v2: * Add missing fix in dp_max_bpc_write (Harry Wentland)
local
low complexity
linux CWE-787
7.8
2024-05-21 CVE-2024-22273 Out-of-bounds Write vulnerability in VMWare products
The storage controllers on VMware ESXi, Workstation, and Fusion have out-of-bounds read/write vulnerability. A malicious actor with access to a virtual machine with storage controllers enabled may exploit this issue to create a denial of service condition or execute code on the hypervisor from a virtual machine in conjunction with other issues.
local
low complexity
vmware CWE-787
7.8
2024-05-21 CVE-2021-47404 Out-of-bounds Write vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: HID: betop: fix slab-out-of-bounds Write in betop_probe Syzbot reported slab-out-of-bounds Write bug in hid-betopff driver. The problem is the driver assumes the device must have an input report but some malicious devices violate this assumption. So this patch checks hid_device's input is non empty before it's been used.
local
low complexity
linux CWE-787
7.8
2024-05-16 CVE-2024-30274 Out-of-bounds Write vulnerability in Adobe Substance 3D Painter
Substance3D - Painter versions 9.1.2 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user.
local
low complexity
adobe CWE-787
7.8
2024-05-15 CVE-2024-4976 Out-of-bounds Write vulnerability in Xpdfreader Xpdf
Out-of-bounds array write in Xpdf 4.05 and earlier, due to missing object type check in AcroForm field reference.
local
low complexity
xpdfreader CWE-787
5.5
2024-05-15 CVE-2023-6322 Out-of-bounds Write vulnerability in multiple products
A stack-based buffer overflow vulnerability exists in the message parsing functionality of the Roku Indoor Camera SE version 3.0.2.4679 and Wyze Cam v3 version 4.36.11.5859.
network
low complexity
wyze roku throughtek CWE-787
8.8
2024-05-14 CVE-2024-4777 Out-of-bounds Write vulnerability in multiple products
Memory safety bugs present in Firefox 125, Firefox ESR 115.10, and Thunderbird 115.10.
network
low complexity
mozilla debian CWE-787
8.8