BaseDraftTop 25 #2
CWE-787Out-of-bounds Write
Category: memory
Description
The product writes data past the end, or before the beginning, of the intended buffer.
Common consequences· 3
- Integrity — Modify Memory, Execute Unauthorized Code or CommandsWrite operations could cause memory corruption. In some cases, an adversary can modify control data such as return addresses in order to execute unexpected code.
- Availability — DoS: Crash, Exit, or RestartAttempting to access out-of-range, invalid, or unauthorized memory could cause the product to crash.
- Other — Unexpected StateSubsequent write operations can produce undefined or unexpected results.
Potential mitigations· 5
- [Requirements]
- [Architecture and Design]
- [Operation, Build and Compilation]
- [Implementation]
- [Operation, Build and Compilation]
References
Compliance frameworks addressing this (incoming)6
| Type | Target | Confidence | Tier |
|---|---|---|---|
| ComplianceControl | dora-art11 | 100% | live |
| ComplianceControl | nis2-art21e | 100% | live |
| ComplianceControl | dora-art25 | 100% | live |
| ComplianceControl | nist_csf-rc | 100% | live |
| ComplianceControl | nis2-art21d | 100% | live |
| ComplianceControl | cra-art13 | 100% | live |
(incoming)144
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Vulnerability | CVE-2025-0247cve-2025-0247 | 0% | live |
| Vulnerability | Ivanti Connect Secure, Policy Secure, and ZTA Gateways Stack-Based Buffer Overflow Vulnerabilitycve-2025-0282 | 0% | live |
| Vulnerability | CVE-2025-0349cve-2025-0349 | 0% | live |
| Vulnerability | CVE-2025-0566cve-2025-0566 | 0% | live |
| Vulnerability | CVE-2025-0848cve-2025-0848 | 0% | live |
| Vulnerability | CVE-2025-0903cve-2025-0903 | 0% | live |
| Vulnerability | CVE-2025-0910cve-2025-0910 | 0% | live |
| Vulnerability | CVE-2025-10101cve-2025-10101 | 0% | live |
| Vulnerability | CVE-2025-1016cve-2025-1016 | 0% | live |
| Vulnerability | CVE-2025-1017cve-2025-1017 | 0% | live |
| Vulnerability | CVE-2025-1020cve-2025-1020 | 0% | live |
| Vulnerability | CVE-2025-10451cve-2025-10451 | 0% | live |
| Vulnerability | CVE-2025-1050cve-2025-1050 | 0% | live |
| Vulnerability | CVE-2025-1051cve-2025-1051 | 0% | live |
| Vulnerability | CVE-2025-1052cve-2025-1052 | 0% | live |
| Vulnerability | CVE-2025-10773cve-2025-10773 | 0% | live |
| Vulnerability | CVE-2025-10779cve-2025-10779 | 0% | live |
| Vulnerability | CVE-2025-10792cve-2025-10792 | 0% | live |
| Vulnerability | CVE-2025-11205cve-2025-11205 | 0% | live |
| Vulnerability | CVE-2025-11458cve-2025-11458 | 0% | live |
| Vulnerability | CVE-2025-11541cve-2025-11541 | 0% | live |
| Vulnerability | CVE-2025-11542cve-2025-11542 | 0% | live |
| Vulnerability | CVE-2025-11624cve-2025-11624 | 0% | live |
| Vulnerability | CVE-2025-11709cve-2025-11709 | 0% | live |
| Vulnerability | CVE-2025-11714cve-2025-11714 | 0% | live |
| Vulnerability | CVE-2025-1240cve-2025-1240 | 0% | live |
| Vulnerability | CVE-2025-12602cve-2025-12602 | 0% | live |
| Vulnerability | CVE-2025-12603cve-2025-12603 | 0% | live |
| Vulnerability | CVE-2025-1268cve-2025-1268 | 0% | live |
| Vulnerability | CVE-2025-12727cve-2025-12727 | 0% | live |
Showing top 30 of 144 by confidence. Click any target to see the full neighbourhood.
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.