Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-125 (跨界内存读) — Vulnerability Class 2871

2871 vulnerabilities classified as CWE-125 (跨界内存读). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-33636 LIBPNG has ARM NEON Palette Expansion Out-of-Bounds Read on AArch64 — libpng 7.6 High2026-03-26
CVE-2026-26008 EVerest has OOB via EVSE ID Indexing Mismatch in OCPP 2.0.1 UpdateAllowedEnergyTransferModes — everest-core 7.5 High2026-03-26
CVE-2026-33515 Squid has issues in ICP message handling — squid 5.3 -2026-03-26
CVE-2026-32853 LibVNCServer UltraZip Encoding Heap Out-of-bounds Read — LibVNCServer 9.1 -2026-03-24
CVE-2026-32647 NGINX ngx_http_mp4_module vulnerability — NGINX Open Source 7.8 High2026-03-24
CVE-2026-4753 Out-of-bounds Read in slajerek RetroDebugger — RetroDebugger 9.1 Critical2026-03-24
CVE-2026-4750 Out-of-bounds Read in fabiangreffrath woof — woof 9.1 Critical2026-03-24
CVE-2026-4744 Notepad3 Bundled Oniguruma compile_string_node() Heap Buffer Overflow via Crafted Regex Pattern Allows Arbitrary Code Execution — Notepad3 5.5 -2026-03-24
CVE-2026-4732 Out-of-bounds Read Overflow in tildearrow/furnace — furnace 7.7 -2026-03-24
CVE-2026-4677 Google Chrome 安全漏洞 — Chrome 8.8 -2026-03-24
CVE-2026-4674 Google Chrome 安全漏洞 — Chrome 8.1 -2026-03-24
CVE-2026-3055 Insufficient input validation leading to memory overread — ADC--2026-03-23
CVE-2026-4647 Binutils: out-of-bounds read in xcoff relocation processing in gnu binutils bfd library — Red Hat Enterprise Linux 10 6.1 Medium2026-03-23
CVE-2026-4437 gethostbyaddr and gethostbyaddr_r may incorrectly handle DNS response — glibc 7.5 -2026-03-20
CVE-2026-33069 PJSIP has an Out-of-bounds Read in SIP multipart parsing — pjproject 9.1 -2026-03-20
CVE-2026-4462 Google Chrome 安全漏洞 — Chrome 8.1 -2026-03-20
CVE-2026-4460 Google Chrome 安全漏洞 — Chrome 8.1 -2026-03-20
CVE-2026-4159 wc_PKCS7_DecodeEnvelopedData 1 byte out-of-bounds read — wolfSSL 9.1 -2026-03-19
CVE-2026-3547 wolfSSL: out-of-bounds read (DoS) in ALPN parsing due to incomplete validation — wolfSSL 7.5 High2026-03-19
CVE-2026-4424 Libarchive: libarchive: information disclosure via heap out-of-bounds read in rar archive processing — Red Hat Enterprise Linux 10 7.5 High2026-03-19
CVE-2026-31967 HTSlib CRAM reader has out-of-bounds read due to improper validation of input — htslib 9.8 -2026-03-18
CVE-2026-31966 HTSlib CRAM reader has out-of-bounds read due to improper validation of input — htslib 8.2 -2026-03-18
CVE-2026-31965 HTSlib CRAM reader has out-of-bounds reads due to improper validation of input — htslib 9.1 -2026-03-18
CVE-2025-62500 Canva Affinity 安全漏洞 — Affinity 6.1 Medium2026-03-17
CVE-2025-61979 Canva Affinity 安全漏洞 — Affinity 6.1 Medium2026-03-17
CVE-2025-64733 Canva Affinity 安全漏洞 — Affinity 6.1 Medium2026-03-17
CVE-2025-66000 Canva Affinity 安全漏洞 — Affinity 6.1 Medium2026-03-17
CVE-2025-64776 Canva Affinity 安全漏洞 — Affinity 6.1 Medium2026-03-17
CVE-2025-64735 Canva Affinity 安全漏洞 — Affinity 6.1 Medium2026-03-17
CVE-2025-66633 Canva Affinity 安全漏洞 — Affinity 6.1 Medium2026-03-17

Vulnerabilities classified as CWE-125 (跨界内存读) represent 2871 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.