Falhas do tipo CWE-787
4.463 resultadosCVE-2021-3517HIGHThere is a flaw in the xml entity encoding functionality of libxml2 in versions before 2.9.11. An attacker who is able to supply a crafted fEPSS 8.3%CVE-2022-40942CRITICALTenda TX3 US_TX3V1.0br_V16.03.13.11 is vulnerable to stack overflow via compare_parentcontrol_time.EPSS 8.1%CVE-2019-12900CRITICALBZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors.EPSS 8.0%CVE-2018-12115—In all versions of Node.js prior to 6.14.4, 8.11.4 and 10.9.0 when used with UCS-2 encoding (recognized by Node.js under the names `'ucs2'`,EPSS 8.0%CVE-2021-40731HIGHAdobe Acrobat Reader DC JPEG2000 Parsing Out-Of-Bounds Write Remote Code Execution VulnerabilityEPSS 8.0%CVE-2021-45061HIGHAdobe Acrobat Reader DC Font Parsing Out-Of-Bounds Write Remote Code Execution VulnerabilityEPSS 7.9%CVE-2018-8788—FreeRDP prior to version 2.0.0-rc4 contains an Out-Of-Bounds Write of up to 4 bytes in function nsc_rle_decode() that results in a memory coEPSS 7.4%CVE-2023-7024HIGHHeap buffer overflow in WebRTC in Google Chrome prior to 120.0.6099.129 allowed a remote attacker to potentially exploit heap corruption viaEPSS 7.4%KEVCVE-2022-24521HIGHWindows Common Log File System Driver Elevation of Privilege VulnerabilityEPSS 7.3%KEVCVE-2026-28819MEDIUMAn out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 18.7.9 and iPadOS 18.7.9, macOS SequoiaEPSS 7.1%CVE-2023-26369HIGH[Google Project Zero] Adobe Acrobat DC OOBW 0-day actively exploited in the wildEPSS 7.0%KEVCVE-2019-13333HIGHThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.5.0.20723. User interacEPSS 6.8%CVE-2023-46224CRITICALAn attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial ofEPSS 6.8%CVE-2025-43400MEDIUMAn out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 18.7.1 and iPadOS 18.7.1, iOS 26.0.1 anEPSS 6.5%CVE-2025-5419HIGHOut of bounds read and write in V8 in Google Chrome prior to 137.0.7151.68 allowed a remote attacker to potentially exploit heap corruption EPSS 6.5%KEVCVE-2026-40688MEDIUMAn out-of-bounds write vulnerability [CWE-787] vulnerability in Fortinet FortiWeb 8.0.0 through 8.0.3, FortiWeb 7.6.0 through 7.6.6, FortiWeEPSS 6.4%CVE-2020-15795HIGHA vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions <EPSS 6.4%CVE-2022-20968HIGHA vulnerability in the Cisco Discovery Protocol processing feature of Cisco IP Phone 7800 and 8800 Series firmware could allow an unauthentiEPSS 6.4%CVE-2020-15629HIGHThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Studio Photo 3.6.6.922. User interacEPSS 6.3%CVE-2023-28879CRITICALIn Artifex Ghostscript through 10.01.0, there is a buffer overflow leading to potential corruption of data internal to the PostScript interpEPSS 6.3%