Fallos del tipo CWE-125
4339 resultadosCVE-2026-28364HIGHIn OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization (runtime/intern.c) enables remote code execution EPSS 0.2%CVE-2025-9454HIGHPRT File Parsing Out-of-Bounds Read VulnerabilityEPSS 0.2%CVE-2023-22846LOWDatakit CrossCAD/WareEPSS 0.2%CVE-2025-9459HIGHSLDPRT File Parsing Out-of-Bounds Read VulnerabilityEPSS 0.2%CVE-2025-9453HIGHPRT File Parsing Out-of-Bounds Read VulnerabilityEPSS 0.2%CVE-2025-9455HIGHCATPRODUCT File Parsing Out-of-Bounds Read VulnerabilityEPSS 0.2%CVE-2025-54262HIGHSubstance3D - Stager | Out-of-bounds Read (CWE-125)EPSS 0.2%CVE-2025-9460HIGHSLDPRT File Parsing Out-of-Bounds Read VulnerabilityEPSS 0.2%CVE-2026-1764MEDIUMLocalsearch: tracker-miners: gnome localsearch mp3 extractor: heap buffer overflow leads to denial of service or information disclosure when parsing mp3 filesEPSS 0.2%CVE-2025-7233LOWIrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Information Disclosure VulnerabilityEPSS 0.2%CVE-2026-21303MEDIUMSubstance3D - Modeler | Out-of-bounds Read (CWE-125)EPSS 0.2%CVE-2026-9943MEDIUMOut of bounds read in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crEPSS 0.2%CVE-2026-3391MEDIUMFascinatedBox lily lily_emitter.c clear_storages out-of-boundsEPSS 0.2%CVE-2025-1254HIGHOut-of-bounds Read, Out-of-bounds Write vulnerability in RTI Connext Professional (Recording Service) allows Overflow Buffers, Overread Buffers.EPSS 0.2%CVE-2026-11301HIGHInappropriate implementation in LiveCaption in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform out of EPSS 0.2%CVE-2025-7319HIGHIrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Remote Code Execution VulnerabilityEPSS 0.2%CVE-2025-7324HIGHIrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Read Remote Code Execution VulnerabilityEPSS 0.2%CVE-2026-9907MEDIUMOut of bounds read in Dawn in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a craEPSS 0.2%CVE-2024-50123HIGHbpf: Add the missing BPF_LINK_TYPE invocation for sockmapEPSS 0.2%CVE-2025-21742HIGHusbnet: ipheth: use static NDP16 location in URBEPSS 0.2%