Cwe 787

🧬 CWE Related 105
slug: cwe-787

Explanation

CWE-787はCWE-119の中でも特に「メモリの確保された範囲外に書き込んでしまう」欠陥です。 書き込みできるとプログラムを完全に乗っ取れる (任意コード実行) ことが多く、CVSSスコアが極めて高くなりがちです。 MITREの「危険な脆弱性Top 25」で常に上位を占めています。
📌 Example
CVE-2024-30088 (Windows Kernel): Windowsカーネルの境界外書き込みで、攻撃者がローカル権限昇格を達成できた。CISA KEV入り。

🔖 Related tags

🛡 Vulnerabilities tagged with this 1,015

ID Title
CVE-2022-42827 KEV [KEV] Vulnerability in Apple ios-and-ipados (CVE-2022-42827)
CVE-2022-41415 Out-of-Bounds Write in dos (CVE-2022-41415)
CVE-2022-2347 Vulnerability in denx (CVE-2022-2347)
CVE-2022-30426 Out-of-Bounds Write in acer (CVE-2022-30426)
CVE-2022-37969 KEV [KEV] Vulnerability in Microsoft windows (CVE-2022-37969)
CVE-2022-32917 KEV [KEV] Vulnerability in Apple ios (CVE-2022-32917)
CVE-2022-38555 Linksys E1200 v1.0.04 is vulnerable to Buffer Overflow via ej_get_web_page_name.
CVE-2021-38406 KEV [KEV] Out-of-Bounds Write in Delta electronics delta-electronics (CVE-2021-38406)
CVE-2021-4040 Vulnerability in redhat (CVE-2021-4040)
CVE-2022-36233 Out-of-Bounds Write in tendacn (CVE-2022-36233)
CVE-2022-32894 KEV [KEV] Vulnerability in Apple ios-and-macos (CVE-2022-32894)
CVE-2022-32893 KEV [KEV] Vulnerability in Apple ios-and-macos (CVE-2022-32893)
CVE-2022-33047 OTFCC v0.10.4 was discovered to contain a heap buffer overflow after free via otfccbuild.c.
CVE-2022-32385 Out-of-Bounds Write in tendacn (CVE-2022-32385)
CVE-2022-32386 Tenda AC23 v16.03.07.44 was discovered to contain a buffer overflow via fromAdvSetMacMtuWan.
CVE-2022-32384 Out-of-Bounds Write in tendacn (CVE-2022-32384)
CVE-2022-34835 Out-of-Bounds Write in denx (CVE-2022-34835)
CVE-2021-4034 KEV [KEV] Out-of-Bounds Write in Red hat red-hat (CVE-2021-4034)
CVE-2020-3837 KEV [KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2020-3837)
CVE-2020-9907 KEV [KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2020-9907)
CVE-2022-30790 Das U-Boot 2022.01 has a Buffer Overflow, a different issue than CVE-2022-30552.
CVE-2019-5825 KEV [KEV] Out-of-Bounds Write in Google chromium-v8 (CVE-2019-5825)
CVE-2018-6065 KEV [KEV] Vulnerability in Google chromium-v8 (CVE-2018-6065)
CVE-2018-17480 KEV [KEV] Out-of-Bounds Write in Google chromium-v8 (CVE-2018-17480)
CVE-2016-5198 KEV [KEV] Out-of-Bounds Read in Google chromium-v8 (CVE-2016-5198)
CVE-2012-0754 KEV [KEV] Out-of-Bounds Write in Adobe flash-player (CVE-2012-0754)
CVE-2011-2462 KEV [KEV] Out-of-Bounds Write in Adobe reader-and-acrobat (CVE-2011-2462)
CVE-2010-1297 KEV [KEV] Out-of-Bounds Write in Adobe flash-player (CVE-2010-1297)
CVE-2021-22791 Out-of-Bounds Write in dos (CVE-2021-22791)
CVE-2021-33289 Out-of-Bounds Write in tuxera (CVE-2021-33289)

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →