Cwe 787

🧬 CWE Related 105
slug: cwe-787

Explanation

CWE-787はCWE-119の中でも特に「メモリの確保された範囲外に書き込んでしまう」欠陥です。 書き込みできるとプログラムを完全に乗っ取れる (任意コード実行) ことが多く、CVSSスコアが極めて高くなりがちです。 MITREの「危険な脆弱性Top 25」で常に上位を占めています。
📌 Example
CVE-2024-30088 (Windows Kernel): Windowsカーネルの境界外書き込みで、攻撃者がローカル権限昇格を達成できた。CISA KEV入り。

🔖 Related tags

🛡 Vulnerabilities tagged with this 1,015

ID Title
CVE-2018-0798 KEV [KEV] Out-of-Bounds Write in Microsoft office (CVE-2018-0798)
CVE-2018-0802 KEV [KEV] Out-of-Bounds Write in Microsoft office (CVE-2018-0802)
CVE-2019-1367 KEV [KEV] Out-of-Bounds Write in Microsoft internet-explorer (CVE-2019-1367)
CVE-2020-1380 KEV [KEV] Out-of-Bounds Write in Microsoft internet-explorer (CVE-2020-1380)
CVE-2019-1429 KEV [KEV] Use-After-Free in Microsoft internet-explorer (CVE-2019-1429)
CVE-2020-0968 KEV [KEV] Out-of-Bounds Write in Microsoft internet-explorer (CVE-2020-0968)
CVE-2020-1054 KEV [KEV] Out-of-Bounds Write in Microsoft win32k (CVE-2020-1054)
CVE-2021-34448 KEV [KEV] Out-of-Bounds Write in Microsoft windows (CVE-2021-34448)
CVE-2020-14871 KEV [KEV] Out-of-Bounds Write in Oracle solaris-and-zettabyte-file-system-zfs (CVE-2020-14871)
CVE-2021-35211 KEV [KEV] Out-of-Bounds Write in Solarwinds serv-u (CVE-2021-35211)
CVE-2021-31755 KEV [KEV] Out-of-Bounds Write in Tenda ac11-router (CVE-2021-31755)
CVE-2019-5544 KEV [KEV] Out-of-Bounds Write in vmware (CVE-2019-5544)
CVE-2021-33286 Out-of-Bounds Write in tuxera (CVE-2021-33286)
CVE-2021-33287 Out-of-Bounds Write in dos (CVE-2021-33287)
CVE-2021-35268 Out-of-Bounds Write in tuxera (CVE-2021-35268)
CVE-2021-34201 Out-of-Bounds Write in dlink (CVE-2021-34201)
CVE-2021-34202 Out-of-Bounds Write in c (CVE-2021-34202)
CVE-2020-21843 Out-of-Bounds Write in c (CVE-2020-21843)
CVE-2020-21840 Out-of-Bounds Write in c (CVE-2020-21840)
CVE-2020-21827 Out-of-Bounds Write in c (CVE-2020-21827)
CVE-2020-21814 Out-of-Bounds Write in c (CVE-2020-21814)
CVE-2020-21816 Out-of-Bounds Write in c (CVE-2020-21816)
CVE-2020-21818 Out-of-Bounds Write in c (CVE-2020-21818)
CVE-2020-21819 Out-of-Bounds Write in c (CVE-2020-21819)
CVE-2020-21813 Out-of-Bounds Write in c (CVE-2020-21813)
CVE-2021-25667 A vulnerability has been identified in RUGGEDCOM RM1224 (All versions >= V4.3 and < V6.4), SCALANCE M-800 (All versions >= V4.3 and < V6.4), SCALANCE S615 (All versions >= V4.3 and < V6.4), SCALANCE S...
CVE-2017-14491 Out-of-Bounds Write in platform/external/dnsmasq (CVE-2017-14491)
CVE-2020-26664 Out-of-Bounds Write in videolan (CVE-2020-26664)
CVE-2020-7563 Out-of-Bounds Write in schneider-electric (CVE-2020-7563)
CVE-2019-19378 Out-of-Bounds Write in c (CVE-2019-19378)

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →