Home/CWE/Access of Memory Location After End of Buffer
Weakness

Access of Memory Location After End of Buffer

CWE-788 · Base · Incomplete

The product reads or writes to a buffer using an index or pointer that references a memory location after the end of the buffer.

Extended description

This typically occurs when a pointer or its index is incremented to a position after the buffer.

or when pointer arithmetic results in a position after the buffer.

Weakness Relationships

Where this weakness sits in the CWE hierarchy. Walk up to broader classes or down to more specific variants.
Parent of this (broader)
ChildOfCWE-119 · Improper Restriction of Operations within the Bounds of a Memory Buffer
Children (more specific)
ParentOfCWE-121 · Stack-based Buffer Overflow
ParentOfCWE-122 · Heap-based Buffer Overflow
ParentOfCWE-126 · Buffer Over-read

CVEs With This Weakness

147
A sample of the 147 CVEs tagged with this weakness.
CVECVE-2026-25584
CVECVE-2026-21316
CVECVE-2026-20052
CVECVE-2025-43580
CVECVE-2025-36581
CVECVE-2024-5700
CVECVE-2024-42425
CVECVE-2024-38304
CVECVE-2024-27829
CVECVE-2024-27828
CVECVE-2024-21618
CVECVE-2024-20402
External lookups - second-class, for what we don’t hold ourselves
MITRE CWE
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin