Falhas do tipo CWE-190
1.282 resultadosCVE-2022-22721—core: Possible buffer overflow with very large or unlimited LimitXMLRequestBodyEPSS 41.9%CVE-2011-1823HIGHThe vold volume manager daemon on Android 3.0 and 2.x before 2.3.4 trusts messages that are received from a PF_NETLINK socket, which allows EPSS 41.6%KEVCVE-2015-5621HIGHThe snmp_pdu_parse function in snmp_api.c in net-snmp 5.7.2 and earlier does not remove the varBind variable in a netsnmp_variable_list itemEPSS 40.0%CVE-2011-2013CRITICALInteger overflow in the TCP/IP implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold anEPSS 33.7%CVE-2024-38144HIGHKernel Streaming WOW Thunk Service Driver Elevation of Privilege VulnerabilityEPSS 31.2%CVE-2020-8844HIGHThis vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.6.0.25114. User interactionEPSS 30.8%CVE-2022-1812HIGHInteger Overflow or Wraparound in publify/publifyEPSS 30.8%CVE-2011-0663HIGHMultiple integer overflows in the Microsoft (1) JScript 5.6 through 5.8 and (2) VBScript 5.6 through 5.8 scripting engines allow remote attaEPSS 26.2%CVE-2022-0185HIGHA heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of the Linux EPSS 25.2%KEVCVE-2023-24949HIGHWindows Kernel Elevation of Privilege VulnerabilityEPSS 24.6%CVE-2022-40303HIGHAn issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML document with the XML_PARSE_HUGE parser option enabled, EPSS 24.2%CVE-2010-1883HIGHInteger overflow in the Embedded OpenType (EOT) Font Engine in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 EPSS 23.3%CVE-2026-47291CRITICALHTTP.sys Remote Code Execution VulnerabilityEPSS 21.5%CVE-2012-5054HIGHInteger overflow in the copyRawDataTo method in the Matrix3D class in Adobe Flash Player before 11.4.402.265 allows remote attackers to execEPSS 21.2%KEVCVE-2016-1010HIGHInteger overflow in Adobe Flash Player before 18.0.0.333 and 19.x through 21.x before 21.0.0.182 on Windows and OS X and before 11.2.202.577EPSS 19.8%KEVCVE-2023-6345CRITICALInteger overflow in Skia in Google Chrome prior to 119.0.6045.199 allowed a remote attacker who had compromised the renderer process to poteEPSS 19.6%KEVCVE-2024-1305CRITICALtap-windows6 driver version 9.26 and earlier does not properly
check the size data of incomming write operations which an attacker can
useEPSS 15.4%CVE-2007-1383CRITICALInteger overflow in the 16 bit variable reference counter in PHP 4 allows context-dependent attackers to execute arbitrary code by overflowiEPSS 15.2%CVE-2024-55656HIGHRedisBloom Integer Overflow Remote Code Execution VulnerabilityEPSS 15.0%CVE-2018-14634HIGHAn integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otEPSS 14.8%KEV