Falhas do tipo CWE-125

4.318 resultados
CVE-2025-65119MEDIUMAn out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker coEPSS 0.3%CVE-2024-41870MEDIUMMedia Encoder | Out-of-bounds Read (CWE-125)EPSS 0.3%CVE-2026-22882MEDIUMAn out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker coEPSS 0.3%CVE-2025-66633MEDIUMAn out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker coEPSS 0.3%CVE-2025-62403MEDIUMAn out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker coEPSS 0.3%CVE-2025-58427MEDIUMAn out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker coEPSS 0.3%CVE-2025-66000MEDIUMAn out-of-bounds read vulnerability exists in the EMF functionality of Canva Affinity. By using a specially crafted EMF file, an attacker coEPSS 0.3%CVE-2025-4087MEDIUMUnsafe attribute access during XPath parsingEPSS 0.3%CVE-2025-15661HIGHlibssh2 - Heap Buffer Over-read via sftp_symlink() in sftp.cEPSS 0.3%CVE-2021-47044HIGHsched/fair: Fix shift-out-of-bounds in load_balance()EPSS 0.3%CVE-2024-52998MEDIUMSubstance3D - Stager | Out-of-bounds Read (CWE-125)EPSS 0.3%CVE-2026-48682MEDIUMFastNetMon Community Edition through 1.2.9 contains an out-of-bounds read in the IPv4 packet parser. In src/simple_packet_parser_ng.cpp, aftEPSS 0.3%CVE-2026-44808HIGHWindows DWM Core Library Elevation of Privilege VulnerabilityEPSS 0.3%CVE-2022-27821MEDIUMImproper boundary check in Quram Agif library prior to SMR Apr-2022 Release 1 allows attackers to cause denial of service via crafted image EPSS 0.3%CVE-2026-48112MEDIUMGHSL-2026-122 7-Zip Ar SYMDEF OOB ReadEPSS 0.3%CVE-2025-68431MEDIUMlibheif has Potential Heap Buffer Over-ReadEPSS 0.3%CVE-2025-69693MEDIUMOut-of-bounds read in FFmpeg 8.0 and 8.0.1 RV60 video decoder (libavcodec/rv60dec.c). The quantization parameter (qp) validation at line 226EPSS 0.3%CVE-2023-31239HIGHStack-based buffer overflow vulnerability in V-Server v4.0.15.0 and V-Server Lite v4.0.15.0 and earlier allows an attacker to execute arbitrEPSS 0.3%CVE-2024-27529HIGHwasm3 139076a contains memory leaks in Read_utf8.EPSS 0.3%CVE-2021-44696LOWAdobe Prelude JPEG File Parsing Out-Of-Bounds Read Information Disclosure VulnerabilityEPSS 0.3%