Falhas do tipo CWE-787

4.463 resultados

CVE-2020-13580HIGHAn exploitable heap-based buffer overflow vulnerability exists in the PlanMaker document parsing functionality of SoftMaker Office 2021’s PlEPSS 72.6%CVE-2017-8540HIGHThe Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SPEPSS 72.0%KEV CVE-2010-4344CRITICALHeap-based buffer overflow in the string_vformat function in string.c in Exim before 4.70 allows remote attackers to execute arbitrary code EPSS 71.8%KEV CVE-2013-3163HIGHMicrosoft Internet Explorer 8 through 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) EPSS 70.7%KEV CVE-2022-2294HIGHHeap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption viaEPSS 70.5%KEV CVE-2021-21220HIGHInsufficient validation of untrusted input in V8 in Google Chrome prior to 89.0.4389.128 allowed a remote attacker to potentially exploit heEPSS 70.4%KEV CVE-2020-0938HIGHA remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a speciallyEPSS 69.2%KEV CVE-2022-0435—A stack overflow flaw was found in the Linux kernel's TIPC protocol functionality in the way a user sends a packet with malicious content whEPSS 68.0%CVE-2016-4657HIGHWebKit in Apple iOS before 9.3.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crEPSS 66.8%KEV CVE-2020-1020HIGHA remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles a speciallyEPSS 65.0%KEV CVE-2021-30632HIGHOut of bounds write in V8 in Google Chrome prior to 93.0.4577.82 allowed a remote attacker to potentially exploit heap corruption via a crafEPSS 64.5%KEV CVE-2023-45878—GibbonEdu Gibbon version 25.0.1 and before allows Arbitrary File Write because rubrics_visualise_saveAjax.phps does not require authenticatiEPSS 63.1%CVE-2009-0563HIGHStack-based buffer overflow in Microsoft Office Word 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Microsoft Office for Mac 2004 and 2008; Open EPSS 63.1%KEV CVE-2018-8373HIGHA remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "ScripEPSS 61.9%KEV CVE-2021-33742HIGHWindows MSHTML Platform Remote Code Execution VulnerabilityEPSS 59.1%KEV CVE-2019-5825MEDIUMOut of bounds write in JavaScript in Google Chrome prior to 73.0.3683.86 allowed a remote attacker to potentially exploit heap corruption viEPSS 55.9%KEV CVE-2022-21882HIGHWin32k Elevation of Privilege VulnerabilityEPSS 55.7%KEV CVE-2015-1642HIGHMicrosoft Office 2007 SP3, 2010 SP2, and 2013 SP1 allows remote attackers to execute arbitrary code via a crafted document, aka "Microsoft OEPSS 53.2%KEV CVE-2012-2539HIGHMicrosoft Word 2003 SP3, 2007 SP2 and SP3, and 2010 SP1; Word Viewer; Office Compatibility Pack SP2 and SP3; and Office Web Apps 2010 SP1 alEPSS 53.2%KEV CVE-2020-1054HIGHAn elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, akEPSS 52.8%KEV

← anteriorpágina 3 / 224próxima →