Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-125 (跨界内存读) — Vulnerability Class 2871

2871 vulnerabilities classified as CWE-125 (跨界内存读). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-55233 Windows Projected File System Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2025-12-09
CVE-2025-62572 Application Information Service Elevation of Privilege Vulnerability — Windows 11 Version 24H2 7.8 High2025-12-09
CVE-2025-62564 Microsoft Excel Remote Code Execution Vulnerability — Microsoft 365 Apps for Enterprise 7.8 High2025-12-09
CVE-2025-62457 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability — Windows 10 Version 1809 7.8 High2025-12-09
CVE-2025-64893 DNG SDK | Out-of-bounds Read (CWE-125) — DNG SDK 7.1 High2025-12-09
CVE-2025-66624 BACnet-stack MS/TP reply matcher OOB read — bacnet-stack 7.5 High2025-12-05
CVE-2025-14104 Util-linux: util-linux: heap buffer overread in setpwnam() when processing 256-byte usernames — util-linux 6.1 Medium2025-12-05
CVE-2025-66293 LIBPNG has an out-of-bounds read in png_image_read_composite — libpng 7.1 High2025-12-03
CVE-2025-66409 ESF-IDF has an Out-of-Bounds Read in ESP32 Bluetooth AVRCP Command Handling — esp-idf 6.5AIMediumAI2025-12-02
CVE-2025-58113 PDF-XChange Editor 安全漏洞 — PDF-XChange Editor 6.5 Medium2025-12-02
CVE-2025-11789 Out-of-bounds read vulnerability in Circutor SGE-PLC1000/SGE-PLC50 — Circutor 7.5AIHighAI2025-12-02
CVE-2025-20776 MediaTek Chipsets 安全漏洞 — MT6739, MT6761, MT6765, MT6768, MT6781, MT6789, MT6833, MT6835, MT6853, MT6855, MT6877, MT6878, MT6879, MT6883, MT6885, MT6886, MT6889, MT6893, MT6895, MT6897, MT6899, MT6983, MT6985, MT6989, MT6991, MT8186, MT8188, MT8196, MT8667, MT8673, MT8676, MT8678, MT8765, MT8766, MT8768, MT8771, MT8781, MT8791T, MT8792, MT8793, MT8795T, MT8796, MT8798, MT8873, MT8883 6.7AIMediumAI2025-12-02
CVE-2025-20768 MediaTek Chipsets 安全漏洞 — MT6739, MT6761, MT6765, MT6768, MT6781, MT6789, MT6833, MT6835, MT6853, MT6855, MT6877, MT6878, MT6879, MT6883, MT6885, MT6886, MT6889, MT6893, MT6895, MT6897, MT6899, MT6983, MT6985, MT6989, MT6991 6.7AIMediumAI2025-12-02
CVE-2025-20759 MediaTek Chipsets 安全漏洞 — MT2735, MT2737, MT6833, MT6833P, MT6853, MT6853T, MT6855, MT6855T, MT6873, MT6875, MT6875T, MT6877, MT6877T, MT6877TT, MT6879, MT6880, MT6883, MT6885, MT6886, MT6889, MT6890, MT6891, MT6893, MT6895, MT6895TT, MT6896, MT6980, MT6980D, MT6983, MT6983T, MT6985, MT6985T, MT6989, MT6989T, MT6990, MT8673, MT8675, MT8771, MT8791, MT8791T, MT8795T, MT8797, MT8798, MT8893 6.5AIMediumAI2025-12-02
CVE-2025-41739 CODESYS Control - Linux/QNX SysSocket flaw — CODESYS PLCHandler 5.9 Medium2025-12-01
CVE-2025-12183 org.lz4:lz4-java - Out-of-Bounds Memory Access 8.2 -2025-11-28
CVE-2025-58314 Huawei EMUI和Huawei HarmonyOS 安全漏洞 — HarmonyOS 6.6 Medium2025-11-28
CVE-2025-13735 Out-of-bounds Read in nr flc — Lapwing_Linux 7.4 High2025-11-26
CVE-2025-64656 Azure Application Gateway Elevation of Privilege Vulnerability — Azure App Gateway 9.4 Critical2025-11-26
CVE-2025-13502 Webkit: webkitgtk / wpe webkit: out-of-bounds read and integer underflow vulnerability leading to dos — webkitgtk 7.5 High2025-11-25
CVE-2025-64720 LIBPNG is vulnerable to a buffer overflow in `png_image_read_composite` via incorrect palette premultiplication — libpng 7.1 High2025-11-24
CVE-2025-64506 LIBPNG is vulnerable to a heap buffer over-read in `png_write_image_8bit` with grayscale+alpha or RGB/RGBA images — libpng 6.1 Medium2025-11-24
CVE-2025-64505 LIBPNG is vulnerable to a heap buffer overflow in `png_do_quantize` via malformed palette index — libpng 6.1 Medium2025-11-24
CVE-2025-65092 ESP32-P4 JPEG Decoder Header Parsing Vulnerability — esp-idf 9.1 -2025-11-21
CVE-2025-12056 Out-of-bounds Read in Shelly Pro 3EM — Pro 3EM 9.1AICriticalAI2025-11-19
CVE-2025-40936 Siemens PS/IGES Parasolid Translator Component 缓冲区错误漏洞 — PS/IGES Parasolid Translator Component 7.8 High2025-11-17
CVE-2025-9479 Google Chrome 安全漏洞 — Chrome 8.1 -2025-11-14
CVE-2025-57812 [BIGSLEEP-434612419] CUPS-Filters has heap-buffer-overflow write in `cfImageLut()` — libcupsfilters 3.7 Low2025-11-12
CVE-2025-61833 Substance3D - Stager | Out-of-bounds Read (CWE-125) — Substance3D - Stager 7.8 High2025-11-11
CVE-2025-61843 Format Plugins | Out-of-bounds Read (CWE-125) — Format Plugins 5.5 Medium2025-11-11

Vulnerabilities classified as CWE-125 (跨界内存读) represent 2871 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.