Threats Tagged 'cwe-126'
View all threats tagged with 'cwe-126'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cwe-126'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2024-38261: CWE-20: Improper Input Validation in Microsoft Windows Server 2008 Service Pack 2CVE-2024-38261 0 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability Join the discussion | GCVE Database | 10/08/2024, 17:35:14 UTC Added: 06/09/2026, 19:19:12 UTC |
CVE-2024-43500: CWE-126: Buffer Over-read in Microsoft Windows 11 version 22H2CVE-2024-43500 0 Windows Resilient File System (ReFS) Information Disclosure Vulnerability Join the discussion | GCVE Database | 10/08/2024, 17:35:37 UTC Added: 06/09/2026, 19:19:02 UTC |
CVE-2024-43595: CWE-126: Buffer Over-read in Microsoft Microsoft Edge (Chromium-based)CVE-2024-43595 0 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability Join the discussion | GCVE Database | 10/17/2024, 22:39:56 UTC Added: 06/09/2026, 19:19:01 UTC |
CVE-2024-38265: CWE-20: Improper Input Validation in Microsoft Windows Server 2008 Service Pack 2CVE-2024-38265 0 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability Join the discussion | GCVE Database | 10/08/2024, 17:35:42 UTC Added: 06/09/2026, 19:18:59 UTC |
CVE-2026-45460: CWE-126: Buffer Over-read in Microsoft Microsoft 365 Apps for EnterpriseCVE-2026-45460 0 Out-of-bounds read in Microsoft Office allows an unauthorized attacker to disclose information locally. Join the discussion | CVE Database V5 | 06/09/2026, 17:04:41 UTC Added: 06/09/2026, 17:26:47 UTC |
CVE-2026-42828: CWE-126: Buffer Over-read in Microsoft Windows 10 Version 1809CVE-2026-42828 0 Buffer over-read in Windows Projected File System Filter Driver allows an authorized attacker to elevate privileges locally. Join the discussion | CVE Database V5 | 06/09/2026, 17:05:19 UTC Added: 06/09/2026, 17:26:19 UTC |
CVE-2026-44185: CWE-126 Buffer Over-read in Apache Software Foundation Apache HTTP ServerCVE-2026-44185 0 A buffer over-read vulnerability (CWE-126) exists in Apache HTTP Server versions 2.4.0 through 2.4.67. The issue occurs via outbound OCSP requests to an attacker-controlled OCSP server. This vulnerability has a high severity rating with a CVSS score of 7.3. Users are advised to upgrade to Apache HTTP Server version 2.4.68, which addresses this issue. Join the discussion | CVE Database V5 | 06/08/2026, 15:22:11 UTC Added: 06/08/2026, 15:48:51 UTC |
CVE-2026-45684: CWE-126: Buffer Over-read in open-telemetry opentelemetry-ebpf-instrumentationCVE-2026-45684 0 OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.7.0 to before version 0.9.0, OBI's log enricher mishandles writev buffers by reading only the first iovec entry but using the total iov_iter.count as the copy length. When log injection is enabled, a crafted multi-segment writev call can make OBI read and overwrite memory beyond the first segment. This issue has been patched in version 0.9.0. Join the discussion | CVE Database V5 | 06/02/2026, 15:25:32 UTC Added: 06/02/2026, 15:48:58 UTC |
CVE-2025-59609: CWE-126 Buffer Over-read in Qualcomm, Inc. SnapdragonCVE-2025-59609 0 Information Disclosure when processing advertisement frames with malformed MBSSID elements of insufficient length. Join the discussion | CVE Database V5 | 06/01/2026, 22:05:27 UTC Added: 06/01/2026, 22:33:36 UTC |
Showing 1 to 9 of 9 results