Vulnerabilities (CVE)

CWE filter

CWE-119

Filter

12387 total CVE
CVE Vendors Products Updated CVSS
CVE-2018-5912 1 Qualcomm 9 Msm8996au Firmware, Sd 450 Firmware, Sd 625 Firmware and 6 more 2019-06-14 7.2
Potential buffer overflow in Video due to lack of input validation in input and output values in Snapdragon Automobile, Snapdragon Mobile in MSM8996AU, SD 450, SD 625, SD 820, SD 820A, SD 835, SD 845, SD 850, SDA660
CVE-2019-1035 1 Microsoft 4 Office, Office 365 Proplus, Office Online Server and 1 more 2019-06-14 9.3
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1034.
CVE-2019-5439 1 Videolan 1 Vlc Media Player 2019-06-14 4.3
A Buffer Overflow in VLC Media Player < 3.0.7 causes a crash which can possibly be further developed into a remote code execution exploit.
CVE-2019-7524 4 Dovecot, Debian, Canonical and 1 more 4 Dovecot, Debian Linux, Ubuntu Linux and 1 more 2019-06-14 7.2
In Dovecot before 2.2.36.3 and 2.3.x before 2.3.5.1, a local attacker can cause a buffer overflow in the indexer-worker process, which can be used to elevate to root. This occurs because of missing checks in the fts and pop3-uidl components.
CVE-2016-2148 1 Busybox 1 Busybox 2019-06-13 7.5
Heap-based buffer overflow in the DHCP client (udhcpc) in BusyBox before 1.25.0 allows remote attackers to have unspecified impact via vectors involving OPTION_6RD parsing.
CVE-2015-1472 2 Canonical, Gnu 2 Ubuntu Linux, Glibc 2019-06-13 7.5
The ADDW macro in stdio-common/vfscanf.c in the GNU C Library (aka glibc or libc6) before 2.21 does not properly consider data-type size during memory allocation, which allows context-dependent attackers to cause a denial of service (buffer...
CVE-2015-0235 2 Oracle, Gnu 3 Glibc, Communications Applications, Oracle Pillar Axiom 2019-06-13 10.0
Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2)...
CVE-2014-9984 1 Gnu 1 Glibc 2019-06-13 7.5
nscd in the GNU C Library (aka glibc or libc6) before version 2.20 does not correctly compute the size of an internal buffer when processing netgroup requests, possibly leading to an nscd daemon crash or code execution as the user running nscd.
CVE-2014-9761 6 Gnu, Suse, Fedoraproject and 3 more 10 Linux Enterprise Software Development Kit, Ubuntu Linux, Linux Enterprise Desktop and 7 more 2019-06-13 7.5
Multiple stack-based buffer overflows in the GNU C Library (aka glibc or libc6) before 2.23 allow context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long argument to the (1) nan,...
CVE-2019-1043 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2019-06-13 8.5
A remote code execution vulnerability exists in the way that comctl32.dll handles objects in memory, aka 'Comctl32 Remote Code Execution Vulnerability'.
CVE-2019-6530 1 Panasonic 1 Control Fpwin Pro 2019-06-13 6.8
Panasonic FPWIN Pro version 7.3.0.0 and prior allows attacker-created project files to be loaded by an authenticated user causing heap-based buffer overflows, which may lead to remote code execution.
CVE-2019-1024 1 Microsoft 2 Chakracore, Edge 2019-06-13 7.6
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0989,...
CVE-2019-1025 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2019-06-13 7.8
A denial of service vulnerability exists when Windows improperly handles objects in memory, aka 'Windows Denial of Service Vulnerability'.
CVE-2019-1038 1 Microsoft 2 Edge, Internet Explorer 2019-06-13 7.6
A remote code execution vulnerability exists in the way that Microsoft browsers access objects in memory, aka 'Microsoft Browser Memory Corruption Vulnerability'.
CVE-2019-1055 1 Microsoft 1 Internet Explorer 2019-06-13 7.6
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0920, CVE-2019-0988,...
CVE-2019-1005 1 Microsoft 1 Internet Explorer 2019-06-13 7.6
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0920, CVE-2019-0988,...
CVE-2019-0988 1 Microsoft 1 Internet Explorer 2019-06-13 7.6
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0920, CVE-2019-1005,...
CVE-2019-0985 1 Microsoft 2 Windows 7, Windows Server 2008 2019-06-13 6.8
A remote code execution vulnerability exists when the Microsoft Speech API (SAPI) improperly handles text-to-speech (TTS) input, aka 'Microsoft Speech API Remote Code Execution Vulnerability'.
CVE-2019-1034 1 Microsoft 7 Office, Office 365 Proplus, Office Online Server and 4 more 2019-06-13 9.3
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1035.
CVE-2019-1080 1 Microsoft 1 Internet Explorer 2019-06-13 7.6
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is unique from CVE-2019-0920, CVE-2019-0988,...