Cwe 787

🧬 CWE Related 105

slug: cwe-787

Explanation

CWE-787はCWE-119の中でも特に「メモリの確保された範囲外に書き込んでしまう」欠陥です。書き込みできるとプログラムを完全に乗っ取れる (任意コード実行) ことが多く、CVSSスコアが極めて高くなりがちです。 MITREの「危険な脆弱性Top 25」で常に上位を占めています。

📌 Example

CVE-2024-30088 (Windows Kernel): Windowsカーネルの境界外書き込みで、攻撃者がローカル権限昇格を達成できた。CISA KEV入り。

🔗 Related links

MITRE CWE-787 公式ページ ↗

🔖 Related tags

Cwe 20125 Cwe 78120 Cwe 41699 Cwe 2296 Cwe 11990 Cwe 9484 Cwe 50270 Cwe 7966 Cwe 8954 Cwe 91844 Cwe 28443 Cwe 28741 Cwe 7740 Cwe 30638 Cwe 84337

🛡 Vulnerabilities tagged with this 107

ID	Title	Severity	Detected
CVE-2023-20109 KEV	[KEV] Out-of-Bounds Write in Cisco ios-and-ios-xe (CVE-2023-20109)	High	2 years ago
CVE-2023-5217 KEV	[KEV] Out-of-Bounds Write in Google chromium-libvpx (CVE-2023-5217)	High	2 years ago
CVE-2023-26369 KEV	[KEV] Out-of-Bounds Write in Adobe acrobat-and-reader (CVE-2023-26369)	High	2 years ago
CVE-2023-4863 KEV	[KEV] Out-of-Bounds Write in Google chromium-webp (CVE-2023-4863)	High	2 years ago
CVE-2021-25372 KEV	[KEV] Out-of-Bounds Write in Samsung mobile-devices (CVE-2021-25372)	High	2 years ago
CVE-2023-32435 KEV	[KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2023-32435)	High	2 years ago
CVE-2023-28206 KEV	[KEV] Out-of-Bounds Write in Apple ios (CVE-2023-28206)	High	3 years ago
CVE-2021-30900 KEV	[KEV] Vulnerability in Apple ios (CVE-2021-30900)	High	3 years ago
CVE-2022-4135 KEV	[KEV] Out-of-Bounds Write in Google chromium-gpu (CVE-2022-4135)	High	3 years ago
CVE-2022-41073 KEV	[KEV] Out-of-Bounds Write in Microsoft windows (CVE-2022-41073)	High	3 years ago
CVE-2022-41125 KEV	[KEV] Out-of-Bounds Write in Microsoft windows (CVE-2022-41125)	High	3 years ago
CVE-2022-41128 KEV	[KEV] Out-of-Bounds Write in Microsoft windows (CVE-2022-41128)	High	3 years ago
CVE-2022-42827 KEV	[KEV] Vulnerability in Apple ios-and-ipados (CVE-2022-42827)	High	3 years ago
CVE-2022-37969 KEV	[KEV] Vulnerability in Microsoft windows (CVE-2022-37969)	High	3 years ago
CVE-2022-32917 KEV	[KEV] Vulnerability in Apple ios (CVE-2022-32917)	High	3 years ago
CVE-2021-38406 KEV	[KEV] Out-of-Bounds Write in Delta electronics delta-electronics (CVE-2021-38406)	High	3 years ago
CVE-2022-32894 KEV	[KEV] Vulnerability in Apple ios-and-macos (CVE-2022-32894)	High	3 years ago
CVE-2022-32893 KEV	[KEV] Vulnerability in Apple ios-and-macos (CVE-2022-32893)	High	3 years ago
CVE-2021-4034 KEV	[KEV] Out-of-Bounds Write in Red hat red-hat (CVE-2021-4034)	High	3 years ago
CVE-2020-3837 KEV	[KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2020-3837)	High	3 years ago
CVE-2020-9907 KEV	[KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2020-9907)	High	3 years ago
CVE-2019-5825 KEV	[KEV] Out-of-Bounds Write in Google chromium-v8 (CVE-2019-5825)	High	3 years ago
CVE-2018-6065 KEV	[KEV] Vulnerability in Google chromium-v8 (CVE-2018-6065)	High	3 years ago
CVE-2018-17480 KEV	[KEV] Out-of-Bounds Write in Google chromium-v8 (CVE-2018-17480)	High	3 years ago
CVE-2016-5198 KEV	[KEV] Out-of-Bounds Read in Google chromium-v8 (CVE-2016-5198)	High	3 years ago
CVE-2012-0754 KEV	[KEV] Out-of-Bounds Write in Adobe flash-player (CVE-2012-0754)	High	3 years ago
CVE-2011-2462 KEV	[KEV] Out-of-Bounds Write in Adobe reader-and-acrobat (CVE-2011-2462)	High	3 years ago
CVE-2010-1297 KEV	[KEV] Out-of-Bounds Write in Adobe flash-player (CVE-2010-1297)	High	3 years ago
CVE-2021-30883 KEV	[KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2021-30883)	High	3 years ago
CVE-2020-1027 KEV	[KEV] Out-of-Bounds Write in Microsoft windows (CVE-2020-1027)	High	3 years ago

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →