CWE-787
Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.
We have discovered 4,887,874 live websites that are affected by CWE-787.
CVEs
- Count - 43
CWE References
CWE-787 usage by Country
 United States | 1,813,249 websites |
 Russia | 520,893 websites |
 France | 434,590 websites |
 Germany | 371,873 websites |
 China | 148,491 websites |
 Netherlands | 136,481 websites |
 Singapore | 101,545 websites |
 Italy | 90,579 websites |
 GB | 80,052 websites |
 Japan | 78,307 websites |
CWE-787 usage by TLD
| .com | 1,934,747 websites |
| .ru | 502,258 websites |
| .org | 217,189 websites |
| .de | 178,563 websites |
| .net | 159,492 websites |
| .fr | 149,549 websites |
| .nl | 115,186 websites |
| .it | 89,361 websites |
| .com.br | 78,324 websites |
| .co.uk | 69,489 websites |
Newest CVEs
List of the most recent CVEs that are part of CWE-787| Discovered | CVE | Description | Websites |
|---|---|---|---|
| Apr, 2025 | CVE-2025-30015 | Memory Corruption vulnerability in SAP NetWeaver and ABAP Platform (Application Server ABAP) | 34 |
| Nov, 2024 | CVE-2024-11236 | Integer overflow in the firebird and dblib quoters causing OOB writes | 496,431 |
| Nov, 2024 | CVE-2024-8932 | OOB access in ldap_escape | 496,431 |
| Nov, 2024 | CVE-2024-49528 | Animate | Out-of-bounds Write (CWE-787) | 247 |
| Oct, 2024 | CVE-2024-9143 | Low-level invalid GF(2^m) parameters lead to OOB memory access | 65,825 |
| Jun, 2024 | CVE-2024-37894 | Squid vulnerable to heap corruption in ESI assign | 8,121 |
| May, 2024 | CVE-2024-32760 | NGINX HTTP/3 QUIC vulnerability | 319,344 |
| Apr, 2024 | CVE-2024-30272 | Adobe Illustrator 2024 GIF file parsing Out-Of-Bound Write remote code execution vulnerabiity | 99,957 |
| Apr, 2024 | CVE-2024-30271 | Adobe Illustrator 2023 CC 27.7 Memory Corruption Out-Of-Bounds-Write Vulnerability III. | 93,711 |
| Dec, 2023 | CVE-2023-47063 | Adobe Illustrator 2023 CC 27.7 Memory Corruption Out-Of-Bounds-Write Vulnerability IV. | 93,665 |
The most widespread CVEs
List of the most common CVEs that are part of CWE-787| Discovered | CVE | Description | Websites |
|---|---|---|---|
| Oct, 2022 | CVE-2022-41741 | NGINX ngx_http_mp4_module vulnerability CVE-2022-41741 | 2,098,121 |
| Oct, 2022 | CVE-2022-41742 | NGINX ngx_http_mp4_module vulnerability CVE-2022-41742 | 2,098,121 |
| Jan, 2023 | CVE-2006-20001 | Apache HTTP Server: mod_dav out of bounds read, or write of zero byte | 1,314,180 |
| Mar, 2022 | CVE-2022-23943 | mod_sed: Read/write beyond bounds | 1,260,120 |
| Dec, 2021 | CVE-2021-44790 | Possible buffer overflow when parsing multipart content in mod_lua of Apache HTTP Server 2.4.51 and earlier | 1,126,820 |
| Oct, 2021 | CVE-2021-21703 | PHP-FPM memory access in root process leading to privilege escalation | 660,932 |
| Nov, 2024 | CVE-2024-8932 | OOB access in ldap_escape | 496,431 |
| Nov, 2024 | CVE-2024-11236 | Integer overflow in the firebird and dblib quoters causing OOB writes | 496,431 |
| May, 2024 | CVE-2024-32760 | NGINX HTTP/3 QUIC vulnerability | 319,344 |
| Apr, 2024 | CVE-2024-30272 | Adobe Illustrator 2024 GIF file parsing Out-Of-Bound Write remote code execution vulnerabiity | 99,957 |
Websites affected by CWE-787
Top websites that are affected by CWE-787. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ******.com | United States | ** | |
| *****.*****.com | United States | ** | |
| *******.com | Singapore | *** | |
| ************.org | Singapore | *** | |
| *.me |  British Virgin Islands | *** | |
| ********.com | United States | *** | |
| ******.de | Germany | *** | |
| ******.********.info | United States | *** | |
| ****.******.org | United States | *** | |
| *************.***.****.****.************.net | United States | *** |