CWE-118: Incorrect Access of Indexable Resource ('Range Error')
low-riskThe product does not restrict or incorrectly restricts operations within the boundaries of a resource that is accessed using an index or pointer, such as memory or files.
Abstraction: Class
Common Consequences
Other
→
Varies by Context
Real-World Examples (10)
| CVE | CVSS | EPSS | KEV |
|---|---|---|---|
| CVE-2020-3369 | 7.5 | 1.2% | — |
| CVE-2015-2001 | 9.8 | 1.1% | — |
| CVE-2015-2000 | 9.8 | 1.1% | — |
| CVE-2015-2002 | 9.8 | 1.1% | — |
| CVE-2015-2003 | 9.8 | 1.1% | — |
| CVE-2015-2004 | 9.8 | 1.1% | — |
| CVE-2017-10872 | 6.5 | 0.7% | — |
| CVE-2024-43524 | 6.8 | 0.5% | — |
| CVE-2017-5884 | 7.8 | 0.5% | — |
| CVE-2017-0302 | 5.3 | 0.3% | — |
0
/ 100
low-risk
Active Threat
0/50 · Minimal
Exploit Availability
0/50 · Minimal