Weaknesses of type CWE-125

4,339 results
CVE-2026-21278MEDIUMInDesign Desktop | Out-of-bounds Read (CWE-125)EPSS 0.2%CVE-2025-31196MEDIUMAn out-of-bounds read was addressed with improved input validation. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.7, macOS SeEPSS 0.2%CVE-2024-37086MEDIUMVMware ESXi contains an out-of-bounds read vulnerability. A malicious actor with local administrative privileges on a virtual machine withEPSS 0.2%CVE-2025-7997HIGHAshlar-Vellum Cobalt XE File Parsing Out-Of-Bounds Read Remote Code Execution VulnerabilityEPSS 0.2%CVE-2025-54201MEDIUMSubstance3D - Modeler | Out-of-bounds Read (CWE-125)EPSS 0.2%CVE-2023-22808LOWAn issue was discovered in the Arm Android Gralloc Module. A non-privileged user can read a small portion of the allocator process memory. TEPSS 0.2%CVE-2025-54191MEDIUMSubstance3D - Painter | Out-of-bounds Read (CWE-125)EPSS 0.2%CVE-2026-12033MEDIUMOut of bounds read in VideoCapture in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the GPU process toEPSS 0.2%CVE-2026-32927HIGHV-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6MemInIF!set_temp_type_default. Opening a crafted V7 fileEPSS 0.2%CVE-2025-11414MEDIUMGNU Binutils Linker elflink.c get_link_hash_entry out-of-boundsEPSS 0.2%CVE-2026-14406MEDIUMOut of bounds read in V8 in Google Chrome prior to 150.0.7871.46 allowed an attacker who convinced a user to install a malicious extension tEPSS 0.2%CVE-2025-7989HIGHAshlar-Vellum Cobalt AR File Parsing Out-Of-Bounds Read Remote Code Execution VulnerabilityEPSS 0.2%CVE-2025-8003HIGHAshlar-Vellum Cobalt CO File Parsing Out-Of-Bounds Read Remote Code Execution VulnerabilityEPSS 0.2%CVE-2026-32926HIGHV-SFT versions 6.2.10.0 and prior contain an out-of-bounds read vulnerability in VS6ComFile!load_link_inf. Opening a crafted V7 file may leaEPSS 0.2%CVE-2025-8006HIGHAshlar-Vellum Cobalt XE File Parsing Out-Of-Bounds Read Remote Code Execution VulnerabilityEPSS 0.2%CVE-2025-46716MEDIUMSandboxie Arbitrary Kernel Read in SbieDrv.sys API (API_SET_SECURE_PARAM)EPSS 0.2%CVE-2025-54205MEDIUMSubstance3D - Sampler | Out-of-bounds Read (CWE-125)EPSS 0.2%CVE-2025-54194MEDIUMSubstance3D - Painter | Out-of-bounds Read (CWE-125)EPSS 0.2%CVE-2025-54193MEDIUMSubstance3D - Painter | Out-of-bounds Read (CWE-125)EPSS 0.2%CVE-2026-8535MEDIUMOut of bounds read in Media in Google Chrome on Linux and ChromeOS prior to 148.0.7778.168 allowed a remote attacker who had compromised theEPSS 0.2%