Sign in Sign up
JA · EN · FR
SecPulse

Cwe 119

🧬 CWE Related 90
slug: cwe-119

Explanation

CWE-119は「C/C++など低レベル言語で、配列の確保された範囲外にデータを読み書きしてしまう欠陥」のことです。 バッファオーバーフローやヒープオーバーフローと呼ばれる古典的な脆弱性で、攻撃者はこれを使って任意のコード実行を狙います。 ブラウザ・OS・ファームウェアなど低レベルなシステムで頻発します。
📌 Example
Heartbleed (CVE-2014-0160): OpenSSL の境界外読み取り脆弱性で、サーバーのメモリから秘密鍵やパスワードが盗み見えるようになった。世界中のWebサイトの約1/3が影響を受けた。
🔗 Related links

🔖 Related tags

Cwe 20125 Cwe 78120 Cwe 787105 Cwe 41699 Cwe 2296 Cwe 9484 Cwe 50270 Cwe 7966 Cwe 8954 Cwe 91844 Cwe 28443 Cwe 28741 Cwe 7740 Cwe 30638 Cwe 84337

🛡 Vulnerabilities tagged with this 92

ID Title
CVE-2010-2572 KEV [KEV] Buffer Overflow in Microsoft powerpoint (CVE-2010-2572)
CVE-2009-3953 KEV [KEV] Buffer Overflow in Adobe acrobat-and-reader (CVE-2009-3953)
CVE-2009-0563 KEV [KEV] Buffer Overflow in Microsoft office (CVE-2009-0563)
CVE-2015-2360 KEV [KEV] Buffer Overflow in Microsoft win32k (CVE-2015-2360)
CVE-2015-2425 KEV [KEV] Buffer Overflow in Microsoft internet-explorer (CVE-2015-2425)
CVE-2014-8439 KEV [KEV] Buffer Overflow in Adobe flash-player (CVE-2014-8439)
CVE-2017-0005 KEV [KEV] Buffer Overflow in Microsoft windows (CVE-2017-0005)
CVE-2017-0149 KEV [KEV] Buffer Overflow in Microsoft internet-explorer (CVE-2017-0149)
CVE-2016-4657 KEV [KEV] Buffer Overflow in Apple ios (CVE-2016-4657)
CVE-2016-6366 KEV [KEV] Buffer Overflow in Cisco adaptive-security-appliance-asa (CVE-2016-6366)
CVE-2019-8720 KEV [KEV] Buffer Overflow in webkitgtk (CVE-2019-8720)
CVE-2016-4523 KEV [KEV] Buffer Overflow in Trihedral vtscada-formerly-vts (CVE-2016-4523)
CVE-2015-3113 KEV [KEV] Buffer Overflow in Adobe flash-player (CVE-2015-3113)
CVE-2015-2502 KEV [KEV] Buffer Overflow in Microsoft internet-explorer (CVE-2015-2502)
CVE-2010-4398 KEV [KEV] Buffer Overflow in Microsoft windows (CVE-2010-4398)
CVE-2016-7201 KEV [KEV] Buffer Overflow in Microsoft edge (CVE-2016-7201)
CVE-2016-7200 KEV [KEV] Buffer Overflow in Microsoft edge (CVE-2016-7200)
CVE-2016-0189 KEV [KEV] Buffer Overflow in Microsoft internet-explorer (CVE-2016-0189)
CVE-2015-2426 KEV [KEV] Buffer Overflow in Microsoft windows (CVE-2015-2426)
CVE-2015-2419 KEV [KEV] Buffer Overflow in Microsoft internet-explorer (CVE-2015-2419)
CVE-2013-3660 KEV [KEV] Buffer Overflow in Microsoft win32k (CVE-2013-3660)
CVE-2013-1690 KEV [KEV] Buffer Overflow in Mozilla firefox-and-thunderbird (CVE-2013-1690)
CVE-2012-2034 KEV [KEV] Buffer Overflow in Adobe flash-player (CVE-2012-2034)
CVE-2016-10174 KEV [KEV] Buffer Overflow in Netgear wnr2000v5-router (CVE-2016-10174)
CVE-2014-6332 KEV [KEV] Buffer Overflow in Microsoft windows (CVE-2014-6332)
CVE-2010-4344 KEV [KEV] Buffer Overflow in exim (CVE-2010-4344)
CVE-2017-0101 KEV [KEV] Buffer Overflow in Microsoft windows (CVE-2017-0101)
CVE-2015-2546 KEV [KEV] Buffer Overflow in Microsoft win32k (CVE-2015-2546)
CVE-2017-6740 KEV [KEV] Buffer Overflow in Cisco ios-and-ios-xe-software (CVE-2017-6740)
CVE-2018-0175 KEV [KEV] Buffer Overflow in Cisco ios (CVE-2018-0175)

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →