Cwe 787

🧬 CWE Related 105

slug: cwe-787

Explanation

CWE-787はCWE-119の中でも特に「メモリの確保された範囲外に書き込んでしまう」欠陥です。書き込みできるとプログラムを完全に乗っ取れる (任意コード実行) ことが多く、CVSSスコアが極めて高くなりがちです。 MITREの「危険な脆弱性Top 25」で常に上位を占めています。

📌 Example

CVE-2024-30088 (Windows Kernel): Windowsカーネルの境界外書き込みで、攻撃者がローカル権限昇格を達成できた。CISA KEV入り。

🔗 Related links

MITRE CWE-787 公式ページ ↗

🔖 Related tags

Cwe 20125 Cwe 78120 Cwe 41699 Cwe 2296 Cwe 11990 Cwe 9484 Cwe 50270 Cwe 7966 Cwe 8954 Cwe 91844 Cwe 28443 Cwe 28741 Cwe 7740 Cwe 30638 Cwe 84337

🛡 Vulnerabilities tagged with this 107

ID	Title	Severity	Detected
CVE-2019-7286 KEV	[KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2019-7286)	High	3 years ago
CVE-2019-7287 KEV	[KEV] Out-of-Bounds Write in Apple ios (CVE-2019-7287)	High	3 years ago
CVE-2018-5002 KEV	[KEV] Out-of-Bounds Write in Adobe flash-player (CVE-2018-5002)	High	3 years ago
CVE-2022-24521 KEV	[KEV] Out-of-Bounds Write in Microsoft windows (CVE-2022-24521)	High	4 years ago
CVE-2021-39793 KEV	[KEV] Out-of-Bounds Write in Google pixel (CVE-2021-39793)	High	4 years ago
CVE-2018-8373 KEV	[KEV] Out-of-Bounds Write in Microsoft internet-explorer-scripting-engine (CVE-2018-8373)	High	4 years ago
CVE-2019-16928 KEV	[KEV] Out-of-Bounds Write in exim (CVE-2019-16928)	High	4 years ago
CVE-2015-3043 KEV	[KEV] Out-of-Bounds Write in Adobe flash-player (CVE-2015-3043)	High	4 years ago
CVE-2013-0640 KEV	[KEV] Out-of-Bounds Write in Adobe reader-and-acrobat (CVE-2013-0640)	High	4 years ago
CVE-2018-8174 KEV	[KEV] Out-of-Bounds Write in Microsoft windows (CVE-2018-8174)	High	4 years ago
CVE-2022-21882 KEV	[KEV] Out-of-Bounds Write in Microsoft win32k (CVE-2022-21882)	High	4 years ago
CVE-2022-22587 KEV	[KEV] Vulnerability in Apple ios-and-macos (CVE-2022-22587)	High	4 years ago
CVE-2018-13383 KEV	[KEV] Out-of-Bounds Write in Fortinet fortios-and-fortiproxy (CVE-2018-13383)	High	4 years ago
CVE-2020-0069 KEV	[KEV] Out-of-Bounds Write in Mediatek multiple-chipsets (CVE-2020-0069)	High	4 years ago
CVE-2020-27930 KEV	[KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2020-27930)	High	4 years ago
CVE-2021-30807 KEV	[KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2021-30807)	High	4 years ago
CVE-2020-9818 KEV	[KEV] Out-of-Bounds Write in Apple ios (CVE-2020-9818)	High	4 years ago
CVE-2020-9819 KEV	[KEV] Out-of-Bounds Write in Apple ios (CVE-2020-9819)	High	4 years ago
CVE-2021-30665 KEV	[KEV] Out-of-Bounds Write in Apple multiple-products (CVE-2021-30665)	High	4 years ago
CVE-2021-30761 KEV	[KEV] Out-of-Bounds Write in Apple ios (CVE-2021-30761)	High	4 years ago
CVE-2021-27562 KEV	[KEV] Out-of-Bounds Write in Arm trusted-firmware (CVE-2021-27562)	High	4 years ago
CVE-2021-28664 KEV	[KEV] Out-of-Bounds Write in Arm :unknown: (CVE-2021-28664)	High	4 years ago
CVE-2020-16010 KEV	[KEV] Out-of-Bounds Write in Google chrome-for-android-ui (CVE-2020-16010)	High	4 years ago
CVE-2020-15999 KEV	[KEV] Out-of-Bounds Write in Google platform/external/freetype (CVE-2020-15999)	High	4 years ago
CVE-2020-16009 KEV	[KEV] Out-of-Bounds Write in Google chromium-v8 (CVE-2020-16009)	High	4 years ago
CVE-2020-16013 KEV	[KEV] Out-of-Bounds Write in Google chromium-v8 (CVE-2020-16013)	High	4 years ago
CVE-2020-0878 KEV	[KEV] Out-of-Bounds Write in Microsoft edge-and-internet-explorer (CVE-2020-0878)	High	4 years ago
CVE-2021-33742 KEV	[KEV] Out-of-Bounds Write in Microsoft windows (CVE-2021-33742)	High	4 years ago
CVE-2021-31956 KEV	[KEV] Vulnerability in Microsoft windows (CVE-2021-31956)	High	4 years ago
CVE-2020-0938 KEV	[KEV] Out-of-Bounds Write in Microsoft windows (CVE-2020-0938)	High	4 years ago

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →