CWE-125 (跨界内存读) — Vulnerability Class 2875

2875 vulnerabilities classified as CWE-125 (跨界内存读). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-52938	Potential heap-based buffer over-read vulnerability in NotepadNext — NotepadNext	7.7^AI	High^AI	2025-06-23
CVE-2025-6271	swftools wav2swf wav.c wav_convert2mono out-of-bounds — swftools	3.3	Low	2025-06-19
CVE-2025-20234	ClamAV UDF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability — Cisco Secure Endpoint	5.3	Medium	2025-06-18
CVE-2025-32412	Fuji Electric Smart Editor Out-of-bounds Read — Smart Editor	7.8	High	2025-06-17
CVE-2025-49849	Out-of-bounds Read in Write in LS Electric GMWin 4 — GMWin 4	7.8^AI	High^AI	2025-06-17
CVE-2025-49175	Xorg-x11-server-xwayland: xorg-x11-server: tigervnc: out-of-bounds read in x rendering extension animated cursors — xwayland	6.1	Medium	2025-06-17
CVE-2025-5777	NetScaler ADC and NetScaler Gateway - Insufficient input validation leading to memory overread — ADC	7.5^AI	High^AI	2025-06-17
CVE-2025-49796	Libxml: type confusion leads to denial of service (dos)	9.1	Critical	2025-06-16
CVE-2025-24311	Dell ControlVault3/ControlVault3 Plus cv_send_blockdata out-of-bounds read vulnerability — BCM5820X	8.4	High	2025-06-13
CVE-2025-49133	Libtpms contains a possible out-of-bound access and abort due to HMAC signing issue — libtpms	5.9	Medium	2025-06-10
CVE-2025-47112	Acrobat Reader \| Out-of-bounds Read (CWE-125) — Acrobat Reader	5.5	Medium	2025-06-10
CVE-2025-43578	Acrobat Reader \| Out-of-bounds Read (CWE-125) — Acrobat Reader	5.5	Medium	2025-06-10
CVE-2025-33055	Windows Storage Management Provider Information Disclosure Vulnerability — Windows 10 Version 1507	5.5	Medium	2025-06-10
CVE-2025-24065	Windows Storage Management Provider Information Disclosure Vulnerability — Windows 10 Version 1507	5.5	Medium	2025-06-10
CVE-2025-24069	Windows Storage Management Provider Information Disclosure Vulnerability — Windows 10 Version 1507	5.5	Medium	2025-06-10
CVE-2025-33065	Windows Storage Management Provider Information Disclosure Vulnerability — Windows 10 Version 1507	5.5	Medium	2025-06-10
CVE-2025-33063	Windows Storage Management Provider Information Disclosure Vulnerability — Windows 10 Version 1809	5.5	Medium	2025-06-10
CVE-2025-33062	Windows Storage Management Provider Information Disclosure Vulnerability — Windows 10 Version 1607	5.5	Medium	2025-06-10
CVE-2025-33061	Windows Storage Management Provider Information Disclosure Vulnerability — Windows 10 Version 1607	5.5	Medium	2025-06-10
CVE-2025-33060	Windows Storage Management Provider Information Disclosure Vulnerability — Windows 10 Version 1507	5.5	Medium	2025-06-10
CVE-2025-33059	Windows Storage Management Provider Information Disclosure Vulnerability — Windows 10 Version 1507	5.5	Medium	2025-06-10
CVE-2025-33058	Windows Storage Management Provider Information Disclosure Vulnerability — Windows 10 Version 1507	5.5	Medium	2025-06-10
CVE-2025-32720	Windows Storage Management Provider Information Disclosure Vulnerability — Windows 10 Version 1507	5.5	Medium	2025-06-10
CVE-2025-32719	Windows Storage Management Provider Information Disclosure Vulnerability — Windows 10 Version 1507	5.5	Medium	2025-06-10
CVE-2025-32716	Windows Media Elevation of Privilege Vulnerability — Windows 10 Version 1507	7.8	High	2025-06-10
CVE-2025-32715	Remote Desktop Protocol Client Information Disclosure Vulnerability — Remote Desktop client for Windows Desktop	6.5	Medium	2025-06-10
CVE-2025-47105	InDesign Desktop \| Out-of-bounds Read (CWE-125) — InDesign Desktop	5.5	Medium	2025-06-10
CVE-2025-47104	InDesign Desktop \| Out-of-bounds Read (CWE-125) — InDesign Desktop	5.5	Medium	2025-06-10
CVE-2025-5918	Libarchive: reading past eof may be triggered for piped file streams	3.9	Low	2025-06-09
CVE-2025-23235	arkcompiler_ets_runtime has an out-of-bounds write vulnerability — OpenHarmony	3.3	Low	2025-06-08

Vulnerabilities classified as CWE-125 (跨界内存读) represent 2875 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-125 (跨界内存读) — Vulnerability Class 2875