Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-125 (跨界内存读) — Vulnerability Class 2872

2872 vulnerabilities classified as CWE-125 (跨界内存读). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-7265 IrfanView CADImage Plugin CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanView 7.8 -2025-07-21
CVE-2025-7264 IrfanView CADImage Plugin CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanView 7.8 -2025-07-21
CVE-2025-7263 IrfanView CADImage Plugin CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanView 7.8 -2025-07-21
CVE-2025-7262 IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanView 7.8 -2025-07-21
CVE-2025-7261 IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanView 7.8 -2025-07-21
CVE-2025-7247 IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanView 7.8 -2025-07-21
CVE-2025-7233 IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — IrfanView 5.5 -2025-07-21
CVE-2025-7242 IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanView 7.8 -2025-07-21
CVE-2025-7250 IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanView 7.8 -2025-07-21
CVE-2025-7252 IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanView 7.8 -2025-07-21
CVE-2025-7251 IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability — IrfanView 7.8 -2025-07-21
CVE-2025-54070 OpenZeppelin Contracts's Bytes's lastIndexOf function with position argument performs out-of-bound memory access on empty buffers — openzeppelin-contracts 5.3AIMediumAI2025-07-17
CVE-2025-0831 Out-Of-Bounds Read vulnerability exists in the JT file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025 — SOLIDWORKS eDrawings 7.8 High2025-07-15
CVE-2025-53019 ImageMagick has Memory Leak in magick stream — ImageMagick 3.7 Low2025-07-14
CVE-2025-53014 ImageMagick has Heap Buffer Overflow in InterpretImageFilename — ImageMagick 3.7 Low2025-07-14
CVE-2025-7464 osrg GoBGP rtr.go SplitRTR out-of-bounds — GoBGP 3.7 Low2025-07-12
CVE-2025-49525 Illustrator | Out-of-bounds Read (CWE-125) — Illustrator 5.5 Medium2025-07-08
CVE-2025-30313 Illustrator | Out-of-bounds Read (CWE-125) — Illustrator 5.5 Medium2025-07-08
CVE-2025-27165 Substance3D - Stager | Out-of-bounds Read (CWE-125) — Substance3D - Stager 5.5 Medium2025-07-08
CVE-2025-43584 Substance3D - Viewer | Out-of-bounds Read (CWE-125) — Substance3D - Viewer 5.5 Medium2025-07-08
CVE-2025-47135 Dimension | Out-of-bounds Read (CWE-125) — Dimension 5.5 Medium2025-07-08
CVE-2025-49696 Microsoft Office Remote Code Execution Vulnerability — Microsoft 365 Apps for Enterprise 8.4 High2025-07-08
CVE-2025-49681 Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability — Windows Server 2008 R2 Service Pack 1 6.5 Medium2025-07-08
CVE-2025-48822 Windows Hyper-V Discrete Device Assignment (DDA) Remote Code Execution Vulnerability — Windows 10 Version 1607 8.6 High2025-07-08
CVE-2025-47978 Windows Kerberos Denial of Service Vulnerability — Windows Server 2022 6.5 Medium2025-07-08
CVE-2025-48812 Microsoft Excel Information Disclosure Vulnerability — Microsoft 365 Apps for Enterprise 5.5 Medium2025-07-08
CVE-2025-49687 Windows Input Method Editor (IME) Elevation of Privilege Vulnerability — Windows 10 Version 1507 8.8 High2025-07-08
CVE-2025-49658 Windows Transport Driver Interface (TDI) Translation Driver Information Disclosure Vulnerability — Windows 10 Version 1507 5.5 Medium2025-07-08
CVE-2025-21168 Substance3D - Designer | Out-of-bounds Read (CWE-125) — Substance3D - Designer 5.5 Medium2025-07-08
CVE-2025-21167 Substance3D - Designer | Out-of-bounds Read (CWE-125) — Substance3D - Designer 5.5 Medium2025-07-08

Vulnerabilities classified as CWE-125 (跨界内存读) represent 2872 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.