The software reads data past the end, or before the beginning, of the intended buffer. This typically occurs when the pointer or its index is incremented or decremented to a position beyond the bounds of the buffer or when pointer arithmetic results in a position outside of the valid memory location to name a few. This may result in corruption of sensitive information, a crash, or code execution among other things.The weakness is introduced during Implementation stage.
Latest vulnerabilities for CWE-125
Description of CWE-125 on Mitre website