CWE-126 - Buffer over-read

Description

To view data from the buffer the software uses indexes or pointers referring only to the certain memory locations. As only the pointers or its indexes used by the program become out-of-bound, there is a risk of potentially sensitive disclosure.
The vulnerability is introduced during Implementatin stage.

Latest vulnerabilities for CWE-126

Multiple vulnerabilities in Google Android 2024-11-04
High Yes Zero Day

Multiple vulnerabilities in Qualcomm chipsets 2024-11-04
High Yes

Multiple vulnerabilities in Microsoft Edge 2024-10-18
High Yes

Multiple vulnerabilities in Google Android 2024-10-08
High Yes Public exploit

Multiple vulnerabilities in Qualcomm chipsets 2024-10-07
High Yes Zero Day

Multiple vulnerabilities in Google Android 2024-09-03
High Yes

Multiple vulnerabilities in HPE Moonshot 1500 Chassis Manager 2024-09-02
High Yes

Multiple vulnerabilities in Qualcomm chipsets 2024-09-02
High Yes

Multiple vulnerabilities in Google Pixel 2024-08-06
Medium Yes

Multiple vulnerabilities in Google Android 2024-08-05
Critical Yes Zero Day Public exploit

References

Description of CWE-126 on Mitre website