Cwe 787

🧬 CWE Related 105

slug: cwe-787

Explanation

CWE-787はCWE-119の中でも特に「メモリの確保された範囲外に書き込んでしまう」欠陥です。書き込みできるとプログラムを完全に乗っ取れる (任意コード実行) ことが多く、CVSSスコアが極めて高くなりがちです。 MITREの「危険な脆弱性Top 25」で常に上位を占めています。

📌 Example

CVE-2024-30088 (Windows Kernel): Windowsカーネルの境界外書き込みで、攻撃者がローカル権限昇格を達成できた。CISA KEV入り。

🔗 Related links

MITRE CWE-787 公式ページ ↗

🔖 Related tags

Cwe 20125 Cwe 78120 Cwe 41699 Cwe 2296 Cwe 11990 Cwe 9484 Cwe 50270 Cwe 7966 Cwe 8954 Cwe 91844 Cwe 28443 Cwe 28741 Cwe 7740 Cwe 30638 Cwe 84337

🛡 Vulnerabilities tagged with this 107

ID	Title	Severity	Detected
CVE-2020-0986 KEV	[KEV] Out-of-Bounds Write in Microsoft windows (CVE-2020-0986)	High	4 years ago
CVE-2020-1020 KEV	[KEV] Out-of-Bounds Write in Microsoft windows (CVE-2020-1020)	High	4 years ago
CVE-2021-1732 KEV	[KEV] Out-of-Bounds Write in Microsoft win32k (CVE-2021-1732)	High	4 years ago
CVE-2021-28310 KEV	[KEV] Out-of-Bounds Write in Microsoft win32k (CVE-2021-28310)	High	4 years ago
CVE-2018-8653 KEV	[KEV] Out-of-Bounds Write in Microsoft internet-explorer (CVE-2018-8653)	High	4 years ago
CVE-2018-0798 KEV	[KEV] Out-of-Bounds Write in Microsoft office (CVE-2018-0798)	High	4 years ago
CVE-2018-0802 KEV	[KEV] Out-of-Bounds Write in Microsoft office (CVE-2018-0802)	High	4 years ago
CVE-2019-1367 KEV	[KEV] Out-of-Bounds Write in Microsoft internet-explorer (CVE-2019-1367)	High	4 years ago
CVE-2020-1380 KEV	[KEV] Out-of-Bounds Write in Microsoft internet-explorer (CVE-2020-1380)	High	4 years ago
CVE-2019-1429 KEV	[KEV] Use-After-Free in Microsoft internet-explorer (CVE-2019-1429)	High	4 years ago
CVE-2020-0968 KEV	[KEV] Out-of-Bounds Write in Microsoft internet-explorer (CVE-2020-0968)	High	4 years ago
CVE-2020-1054 KEV	[KEV] Out-of-Bounds Write in Microsoft win32k (CVE-2020-1054)	High	4 years ago
CVE-2021-34448 KEV	[KEV] Out-of-Bounds Write in Microsoft windows (CVE-2021-34448)	High	4 years ago
CVE-2020-14871 KEV	[KEV] Out-of-Bounds Write in Oracle solaris-and-zettabyte-file-system-zfs (CVE-2020-14871)	High	4 years ago
CVE-2021-35211 KEV	[KEV] Out-of-Bounds Write in Solarwinds serv-u (CVE-2021-35211)	High	4 years ago
CVE-2021-31755 KEV	[KEV] Out-of-Bounds Write in Tenda ac11-router (CVE-2021-31755)	High	4 years ago
CVE-2019-5544 KEV	[KEV] Out-of-Bounds Write in vmware (CVE-2019-5544)	High	4 years ago

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →