Cyber Resilience

CWE · MITRE source

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer

Abstraction: Class · CVEs in our corpus: 14,001

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

Last updated: 04 July 2026 00:28 UTC

Cumulative inbound coverage

How completely the frameworks we cross-walk collectively cover this — the verdict is the strongest single mapping (overlapping partials are not summed); breadth shows the corroboration behind it.

Collective: mostly · 19 mapping(s) from 3 framework(s): CAPEC 12 (partial) · ATT&CK 6 (partial) · ASVS 5.0 1 (mostly)

See the full cumulative-coverage rollup →

NIST 800-53 r5 controls that address this weakness (4)AI

Control Title Family Why it addresses this CWE
SI-16Memory ProtectionSIMemory protections (e.g., W^X, ASLR) make exploitation of buffer-boundary violations far harder to turn into code execution.
SI-4System MonitoringSIDetects exploitation attempts that produce memory corruption, crashes, or anomalous behavior.
SA-11Developer Testing and EvaluationSAOngoing control assessments and code testing (static/dynamic analysis, fuzzing) surface memory buffer restriction failures, which are then remediated before release.
SC-27Platform-independent ApplicationsSCManaged runtimes used by platform-independent applications (e.g., JVM, CLR) enforce memory safety, preventing most buffer overflows that require direct memory manipulation.

MITRE ATT&CK techniques this weakness enables

Our own two-way CWE↔ATT&CK cross-walk — a direct mapping with no public source (the CWE→CAPEC→ATT&CK chain leaves most top weaknesses, incl. XSS and SQLi, mapped to nothing). Drafted by Grok and spot-checked by Claude Opus 4.8.

Direction: other covers this; this covers other (F/M/P = full / mostly / partial).

Top CVEs of this weakness type, ranked by Risk Priority

CVE Risk CVSS EPSS Published
CVE-2008-4250 KEV10.09.80.98752008-10-23
CVE-2008-0015 KEV10.08.80.76652009-07-07
CVE-2009-3459 KEV10.08.80.86472009-10-13
CVE-2010-3765 KEV10.09.80.83282010-10-28
CVE-2011-1889 KEV10.09.80.48372011-06-16
CVE-2012-2034 KEV10.07.50.07802012-06-09
CVE-2013-3660 KEV10.07.80.39582013-05-24
CVE-2013-1690 KEV10.08.80.69022013-06-26
CVE-2014-6332 KEV10.08.80.95002014-11-11
CVE-2014-8439 KEV10.08.80.20012014-11-25
CVE-2015-2360 KEV10.08.80.14962015-06-10
CVE-2015-2426 KEV10.08.80.86692015-07-20
CVE-2015-2546 KEV10.08.20.10932015-09-09
CVE-2016-7193 KEV10.07.80.57702016-10-14
CVE-2017-0022 KEV10.06.50.18072017-03-17
CVE-2017-0101 KEV10.07.80.57482017-03-17
CVE-2014-3931 KEV10.09.80.26572017-03-31
CVE-2017-6736 KEV10.08.80.70562017-07-17
CVE-2017-6737 KEV10.08.80.42632017-07-17
CVE-2017-6738 KEV10.08.80.10552017-07-17
CVE-2017-6739 KEV10.08.80.10552017-07-17
CVE-2017-6740 KEV10.08.80.10792017-07-17
CVE-2017-6742 KEV10.08.80.21422017-07-17
CVE-2017-6743 KEV10.08.80.10552017-07-17
CVE-2017-6744 KEV10.08.80.07162017-07-17