BaseDraftTop 25 #6
CWE-125Out-of-bounds Read
Category: memory
Description
The product reads data past the end, or before the beginning, of the intended buffer.
Common consequences· 4
- Confidentiality — Read MemoryAn attacker could get secret values such as cryptographic keys, PII, memory addresses, or other information that could be used in additional attacks.
- Confidentiality — Bypass Protection MechanismOut-of-bounds memory could contain memory addresses or other information that can be used to bypass ASLR and other protection mechanisms in order to improve the reliability of exploiting a separate weakness for code execution.
- Availability — DoS: Crash, Exit, or RestartAn attacker could cause a segmentation fault or crash by causing memory to be read outside of the bounds of the buffer. This is especially likely when the code reads a variable amount of data and assumes that a sentinel exists to stop the read operation, such as a NUL in a string.
- Other — Varies by ContextThe read operation could produce other undefined or unexpected results.
Potential mitigations· 2
- [Implementation]
- [Architecture and Design]Use a language that provides appropriate memory abstractions.
Related CAPEC attack patterns· 1
References
Exploits (incoming)1
| Type | Target | Confidence | Tier |
|---|---|---|---|
| AttackPattern | Overread Bufferscapec-540 | 100% | live |
(incoming)149
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Vulnerability | CVE-2025-0437cve-2025-0437 | 0% | live |
| Vulnerability | CVE-2025-0901cve-2025-0901 | 0% | live |
| Vulnerability | CVE-2025-0902cve-2025-0902 | 0% | live |
| Vulnerability | CVE-2025-0904cve-2025-0904 | 0% | live |
| Vulnerability | CVE-2025-0905cve-2025-0905 | 0% | live |
| Vulnerability | CVE-2025-0906cve-2025-0906 | 0% | live |
| Vulnerability | CVE-2025-0907cve-2025-0907 | 0% | live |
| Vulnerability | CVE-2025-0908cve-2025-0908 | 0% | live |
| Vulnerability | CVE-2025-0909cve-2025-0909 | 0% | live |
| Vulnerability | CVE-2025-0911cve-2025-0911 | 0% | live |
| Vulnerability | CVE-2025-11714cve-2025-11714 | 0% | live |
| Vulnerability | CVE-2025-12036cve-2025-12036 | 0% | live |
| Vulnerability | CVE-2025-12725cve-2025-12725 | 0% | live |
| Vulnerability | CVE-2025-14549cve-2025-14549 | 0% | live |
| Vulnerability | CVE-2025-14766cve-2025-14766 | 0% | live |
| Vulnerability | CVE-2025-15382cve-2025-15382 | 0% | live |
| Vulnerability | CVE-2025-1673cve-2025-1673 | 0% | live |
| Vulnerability | CVE-2025-1674cve-2025-1674 | 0% | live |
| Vulnerability | CVE-2025-1675cve-2025-1675 | 0% | live |
| Vulnerability | CVE-2025-1914cve-2025-1914 | 0% | live |
| Vulnerability | CVE-2025-1918cve-2025-1918 | 0% | live |
| Vulnerability | CVE-2025-1919cve-2025-1919 | 0% | live |
| Vulnerability | CVE-2025-1932cve-2025-1932 | 0% | live |
| Vulnerability | CVE-2025-20101cve-2025-20101 | 0% | live |
| Vulnerability | CVE-2025-20152cve-2025-20152 | 0% | live |
| Vulnerability | CVE-2025-2073cve-2025-2073 | 0% | live |
| Vulnerability | CVE-2025-21178cve-2025-21178 | 0% | live |
| Vulnerability | CVE-2025-21245cve-2025-21245 | 0% | live |
| Vulnerability | CVE-2025-21246cve-2025-21246 | 0% | live |
| Vulnerability | CVE-2025-2137cve-2025-2137 | 0% | live |
Showing top 30 of 149 by confidence. Click any target to see the full neighbourhood.
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.