Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-125 (跨界内存读) — Vulnerability Class 2873

2873 vulnerabilities classified as CWE-125 (跨界内存读). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-40549 Shim: out-of-bounds read in verify_buffer_authenticode() malformed pe file — Red Hat Enterprise Linux 7 6.2 Medium2024-01-29
CVE-2023-40550 Shim: out-of-bound read in verify_buffer_sbat() — Red Hat Enterprise Linux 7 5.5 Medium2024-01-29
CVE-2023-39197 Kernel: dccp: conntrack out-of-bounds read in nf_conntrack_dccp_packet() — Red Hat Enterprise Linux 6 4.0 Medium2024-01-23
CVE-2023-45231 Out-of-Bounds Read in EDK II Network Package — edk2 6.5 Medium2024-01-16
CVE-2023-45229 Out-of-Bounds Read in EDK II Network Package — edk2 6.5 Medium2024-01-16
CVE-2024-21640 OOB Access in CefVideoConsumerOSR::OnFrameCaptured — cef 5.4 Medium2024-01-13
CVE-2024-21639 OOB Access in CefLayeredWindowUpdaterOSR::OnAllocatedSharedMemory — cef 5.3 Medium2024-01-12
CVE-2023-6040 An out-of-bounds access vulnerability involving netfilter was reported and fixed as: f1082dd31fe4 (netfilter: nf_tables: Reject tables of unsupported family) — linux 7.8 High2024-01-12
CVE-2024-20711 Adobe Substance 3D Stager v2.1.1 Vulnerability VII — Substance3D - Stager 5.5 Medium2024-01-10
CVE-2024-20712 Adobe Substance 3D Stager v2.1.1 Vulnerability III — Substance3D - Stager 5.5 Medium2024-01-10
CVE-2024-20713 Adobe Substance 3D Stager v2.1.1 Vulnerability IV — Substance3D - Stager 5.5 Medium2024-01-10
CVE-2024-20714 Adobe Substance 3D Stager v2.1.1 Vulnerability V — Substance3D - Stager 5.5 Medium2024-01-10
CVE-2024-20710 Adobe Substance 3D Stager v2.1.1 Vulnerability I — Substance3D - Stager 5.5 Medium2024-01-10
CVE-2024-20715 Adobe Substance 3D Stager v2.1.1 Vulnerability VIII — Substance3D - Stager 5.5 Medium2024-01-10
CVE-2024-21314 Microsoft Message Queuing Information Disclosure Vulnerability — Windows 10 Version 1809 6.5 Medium2024-01-09
CVE-2024-21311 Windows Cryptographic Services Information Disclosure Vulnerability — Windows 10 Version 1809 5.5 Medium2024-01-09
CVE-2024-20687 Microsoft AllJoyn API Denial of Service Vulnerability — Windows 10 Version 1809 7.5 High2024-01-09
CVE-2024-20660 Microsoft Message Queuing Information Disclosure Vulnerability — Windows 10 Version 1809 6.5 Medium2024-01-09
CVE-2024-20653 Microsoft Common Log File System Elevation of Privilege Vulnerability — Windows Server 2022, 23H2 Edition (Server Core installation) 7.8 High2024-01-09
CVE-2024-20691 Windows Themes Information Disclosure Vulnerability — Windows 10 Version 1809 4.7 Medium2024-01-09
CVE-2024-20658 Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2024-01-09
CVE-2023-51439 Siemens JT2GO 和 Teamcenter Visualization 缓冲区错误漏洞 — JT2Go 7.8 High2024-01-09
CVE-2023-49127 Siemens Solid Edge 缓冲区错误漏洞 — Solid Edge SE2023 7.8 High2024-01-09
CVE-2023-49126 Siemens Solid Edge 缓冲区错误漏洞 — Solid Edge SE2023 7.8 High2024-01-09
CVE-2023-49124 Siemens Solid Edge 安全漏洞 — Solid Edge SE2023 7.8 High2024-01-09
CVE-2024-0322 Out-of-bounds Read in gpac/gpac — gpac/gpac 7.1AIHighAI2024-01-08
CVE-2023-38678 Segfault in paddle.mode — PaddlePaddle 4.7 Medium2024-01-03
CVE-2024-0207 Out-of-bounds Read in Wireshark — Wireshark 7.8 High2024-01-03
CVE-2023-4280 Unvalidated input in Silicon Labs TrustZone implementation leads to accessing Trusted memory region — GSDK 9.3 Critical2024-01-02
CVE-2023-4020 Unvalidated input in Silicon Labs PSA Attestation service leads to secure memory access from non-secure memory — GSDK 9.0 Critical2023-12-15

Vulnerabilities classified as CWE-125 (跨界内存读) represent 2873 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.