Threats Tagged 'cwe-126'
View all threats tagged with 'cwe-126'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cwe-126'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2024-38261: CWE-20: Improper Input Validation in Microsoft Windows Server 2008 Service Pack 2CVE-2024-38261 0 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability Join the discussion | GCVE Database | 10/08/2024, 17:35:14 UTC Added: 06/09/2026, 19:19:12 UTC |
CVE-2024-43500: CWE-126: Buffer Over-read in Microsoft Windows 11 version 22H2CVE-2024-43500 0 Windows Resilient File System (ReFS) Information Disclosure Vulnerability Join the discussion | GCVE Database | 10/08/2024, 17:35:37 UTC Added: 06/09/2026, 19:19:02 UTC |
CVE-2024-43595: CWE-126: Buffer Over-read in Microsoft Microsoft Edge (Chromium-based)CVE-2024-43595 0 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Join the discussion | GCVE Database | 10/17/2024, 22:39:56 UTC Added: 06/09/2026, 19:19:01 UTC |
CVE-2024-38265: CWE-20: Improper Input Validation in Microsoft Windows Server 2008 Service Pack 2CVE-2024-38265 0 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability Join the discussion | GCVE Database | 10/08/2024, 17:35:42 UTC Added: 06/09/2026, 19:18:59 UTC |
CVE-2026-45460: CWE-126: Buffer Over-read in Microsoft Microsoft 365 Apps for EnterpriseCVE-2026-45460 0 Out-of-bounds read in Microsoft Office allows an unauthorized attacker to disclose information locally. Join the discussion | CVE Database V5 | 06/09/2026, 17:04:41 UTC Added: 06/09/2026, 17:26:47 UTC |
CVE-2026-42828: CWE-126: Buffer Over-read in Microsoft Windows 10 Version 1809CVE-2026-42828 0 Buffer over-read in Windows Projected File System Filter Driver allows an authorized attacker to elevate privileges locally. Join the discussion | CVE Database V5 | 06/09/2026, 17:05:19 UTC Added: 06/09/2026, 17:26:19 UTC |
CVE-2026-44185: CWE-126 Buffer Over-read in Apache Software Foundation Apache HTTP ServerCVE-2026-44185 0 Buffer Over-read vulnerability in Apache HTTP Server via outbound OCSP requests to an attacker controlled OCSP server This issue affects Apache HTTP Server: from 2.4.0 through 2.4.67. Users are recommended to upgrade to version 2.4.68, which fixes the issue. Join the discussion | CVE Database V5 | 06/08/2026, 15:22:11 UTC Added: 06/08/2026, 15:48:51 UTC |
CVE-2026-45684: CWE-126: Buffer Over-read in open-telemetry opentelemetry-ebpf-instrumentationCVE-2026-45684 0 OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.7.0 to before version 0.9.0, OBI's log enricher mishandles writev buffers by reading only the first iovec entry but using the total iov_iter.count as the copy length. When log injection is enabled, a crafted multi-segment writev call can make OBI read and overwrite memory beyond the first segment. This issue has been patched in version 0.9.0. Join the discussion | CVE Database V5 | 06/02/2026, 15:25:32 UTC Added: 06/02/2026, 15:48:58 UTC |
CVE-2025-59609: CWE-126 Buffer Over-read in Qualcomm, Inc. SnapdragonCVE-2025-59609 0 Information Disclosure when processing advertisement frames with malformed MBSSID elements of insufficient length. Join the discussion | CVE Database V5 | 06/01/2026, 22:05:27 UTC Added: 06/01/2026, 22:33:36 UTC |
CVE-2026-8463: CWE-126 Buffer Over-read in LEONT Crypt::Argon2CVE-2026-8463 0 CVE-2026-8463 is a medium severity vulnerability in LEONT's Crypt::Argon2 Perl module versions from 0.017 before 0.031. It involves a heap out-of-bounds read in the argon2_verify function when processing an empty encoded input string. This occurs because the function passes encoded_len - 1 to memchr without verifying that encoded_len is non-zero, causing an underflow and resulting in memory beyond the heap being read. This can lead to process crashes or unintended information disclosure related to adjacent memory content. No official patch or remediation guidance is currently available from the vendor. Join the discussion | CVE Database V5 | 05/13/2026, 12:40:35 UTC Added: 05/13/2026, 13:36:35 UTC |
Showing 1 to 10 of 125 results