CWE · MITRE source
CWE-125Out-of-bounds Read
The product reads data past the end, or before the beginning, of the intended buffer.
Last updated: 09 May 2026 03:25 UTC
NIST 800-53 r5 controls that address this weakness (0)AI
| Control | Title | Family | Why it addresses this CWE |
|---|---|---|---|
| No NIST controls proposed yet. | |||
Top CVEs of this weakness type, ranked by Risk Priority
| CVE | Risk | CVSS | EPSS | Published |
|---|---|---|---|---|
CVE-2014-0160 KEV | 9.2 | 7.5 | 0.9446 | 2014-04-07 |
CVE-2021-4034 KEV | 8.8 | 7.8 | 0.8806 | 2022-01-28 |
CVE-2026-3055 KEV | 8.2 | 9.8 | 0.7061 | 2026-03-23 |
CVE-2016-1646 KEV | 7.8 | 8.8 | 0.6691 | 2016-03-29 |
CVE-2025-5777 KEV | 7.5 | 7.5 | 0.6667 | 2025-06-17 |
CVE-2016-4523 KEV | 7.4 | 7.5 | 0.6543 | 2016-06-09 |
CVE-2020-8794 | 7.2 | 9.8 | 0.8814 | 2020-02-25 |
CVE-2017-5030 KEV | 6.8 | 8.8 | 0.5031 | 2017-04-24 |
CVE-2024-49113 | 6.8 | 7.5 | 0.8887 | 2024-12-12 |
CVE-2023-4427 | 6.5 | 8.1 | 0.8084 | 2023-08-23 |
CVE-2024-48456 | 6.4 | 7.5 | 0.8126 | 2025-01-06 |
CVE-2019-5782 | 6.2 | 8.8 | 0.7483 | 2019-02-19 |
CVE-2019-16098 | 6.2 | 7.8 | 0.7718 | 2019-09-11 |
CVE-2018-8139 | 6.1 | 7.5 | 0.7700 | 2018-05-09 |
CVE-2018-0767 | 5.6 | 5.3 | 0.7564 | 2018-01-04 |
CVE-2018-0780 | 5.6 | 5.3 | 0.7564 | 2018-01-04 |
CVE-2023-51713 | 5.4 | 7.5 | 0.6530 | 2023-12-22 |
CVE-2017-7668 | 5.3 | 7.5 | 0.6278 | 2017-06-20 |
CVE-2024-29943 | 5.2 | 9.8 | 0.5386 | 2024-03-22 |
CVE-2024-48457 | 5.2 | 7.5 | 0.6162 | 2025-01-06 |
CVE-2020-11899 KEV | 5.1 | 5.4 | 0.3325 | 2020-06-17 |
CVE-2024-38148 | 5.1 | 7.5 | 0.5974 | 2024-08-13 |
CVE-2022-20473 | 5.0 | 9.8 | 0.5088 | 2022-12-13 |
CVE-2019-6443 | 4.5 | 9.1 | 0.4395 | 2019-01-16 |
CVE-2011-3406 | 4.4 | 8.8 | 0.4348 | 2011-12-14 |