Vulnerabilities > Out-of-bounds Write
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-05-23 | CVE-2017-9158 | Out-of-bounds Write vulnerability in Autotrace Project Autotrace 0.31.1 libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the pnm_load_raw function in input-pnm.c:336:11. | 7.5 |
| 2017-05-23 | CVE-2017-9157 | Out-of-bounds Write vulnerability in Autotrace Project Autotrace 0.31.1 libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the pnm_load_ascii function in input-pnm.c:306:14. | 7.5 |
| 2017-05-23 | CVE-2017-9156 | Out-of-bounds Write vulnerability in Autotrace Project Autotrace 0.31.1 libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid write and SEGV), related to the pnm_load_ascii function in input-pnm.c:303:12. | 7.5 |
| 2017-05-22 | CVE-2017-6891 | Out-of-bounds Write vulnerability in multiple products Two errors in the "asn1_find_node()" function (lib/parser_aux.c) within GnuTLS libtasn1 version 4.10 can be exploited to cause a stacked-based buffer overflow by tricking a user into processing a specially crafted assignments file via the e.g. | 8.8 |
| 2017-05-22 | CVE-2017-2520 | Out-of-bounds Write vulnerability in multiple products An issue was discovered in certain Apple products. | 9.8 |
| 2017-05-12 | CVE-2017-8923 | Out-of-bounds Write vulnerability in PHP The zend_string_extend function in Zend/zend_string.h in PHP through 7.1.5 does not prevent changes to string objects that result in a negative length, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact by leveraging a script's use of .= with a long string. | 9.8 |
| 2017-05-12 | CVE-2017-0608 | Out-of-bounds Write vulnerability in Linux Kernel 3.10/3.18 An elevation of privilege vulnerability in the Qualcomm sound driver could enable a local malicious application to execute arbitrary code within the context of the kernel. | 7.0 |
| 2017-05-12 | CVE-2017-0222 | Out-of-bounds Write vulnerability in Microsoft Internet Explorer 11/9 A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet Explorer Memory Corruption Vulnerability." This CVE ID is unique from CVE-2017-0226. | 8.8 |
| 2017-05-11 | CVE-2017-5461 | Out-of-bounds Write vulnerability in Mozilla Network Security Services Mozilla Network Security Services (NSS) before 3.21.4, 3.22.x through 3.28.x before 3.28.4, 3.29.x before 3.29.5, and 3.30.x before 3.30.1 allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact by leveraging incorrect base64 operations. | 9.8 |
| 2017-05-09 | CVE-2017-3074 | Out-of-bounds Write vulnerability in multiple products Adobe Flash Player versions 25.0.0.148 and earlier have an exploitable memory corruption vulnerability in the Graphics class. | 8.8 |