CWE-119: Buffer Overflow

This CVE describes a buffer overflow vulnerability in IBM Db2's db2set utility across multiple versions. An attacker could exploit this to execute arb...

This vulnerability allows memory corruption in Qualcomm's WLAN Hardware Abstraction Layer (HAL) when processing specific wireless commands. Attackers ...

This buffer overflow vulnerability in IBM Aspera Connect and Cargo allows attackers to execute arbitrary code on affected systems by sending specially...

This CVE describes a buffer overflow vulnerability in IBM Aspera Cargo and Connect 4.2.5 that allows attackers to execute arbitrary code on affected s...

A buffer overflow vulnerability in EDK2's Network Package allows attackers to execute arbitrary code by sending malicious DHCPv6 Advertise messages. T...

EDK2's Network Package has a buffer overflow vulnerability in the DHCPv6 client when processing long server ID options. Attackers on the same network ...

This CVE describes a buffer overflow vulnerability in rAthena MMORPG server software where missing bounds checking in the character slot movement func...

This CVE describes a memory corruption vulnerability in Lenovo products that could allow attackers to execute arbitrary code or cause denial of servic...

This CVE describes a memory corruption vulnerability in Apple operating systems that could allow an attacker to cause system crashes or corrupt kernel...

CVE-2024-36129 is an unsafe decompression vulnerability in OpenTelemetry Collector that allows unauthenticated attackers to crash the service via exce...

CVE-2024-1174 affects HP ThinPro operating system versions prior to 8.0 SP 8, potentially allowing memory corruption vulnerabilities. This impacts org...

A heap buffer overflow vulnerability in Delta Electronics ISPSoft allows remote code execution when a user opens a malicious DVP file. This affects us...

CVE-2023-6549 is a memory buffer vulnerability in NetScaler ADC and NetScaler Gateway that allows unauthenticated attackers to cause denial of service...

CVE-2023-4967 is a buffer overflow vulnerability in Citrix NetScaler ADC and Gateway that allows remote attackers to cause denial of service. It affec...

Dell BIOS contains an improper input validation vulnerability in System Management Mode (SMM). A local authenticated attacker can exploit this via Sys...

CVE-2022-24421 is a BIOS vulnerability in Dell systems where improper input validation allows a local authenticated attacker to execute arbitrary code...

This CVE describes an improper input validation vulnerability in Dell BIOS that allows a local authenticated malicious user to exploit System Manageme...

This vulnerability allows attackers to access System Management Mode (SMM) and execute arbitrary code in Insyde InsydeH2O UEFI firmware. It affects sy...

This vulnerability in Insyde InsydeH2O Kernel allows attackers to use invalid buffer addresses with the EFI_SMM_COMMUNICATION_PROTOCOL Communicate() f...

This CVE describes memory safety bugs in Firefox and Thunderbird that could lead to memory corruption. With sufficient effort, attackers could potenti...

Memory safety vulnerabilities in Firefox and Thunderbird versions before 145 could allow memory corruption. With sufficient effort, attackers could po...

This CVE describes memory safety vulnerabilities in Firefox and Thunderbird that could allow memory corruption. With sufficient effort, attackers coul...

This CVE describes memory safety bugs in Firefox and Thunderbird that could lead to memory corruption. With sufficient effort, attackers could potenti...

This CVE describes memory safety bugs in Mozilla Firefox and Thunderbird that could lead to memory corruption. With sufficient effort, attackers could...

A memory safety vulnerability in Firefox ESR and Thunderbird could allow attackers to execute arbitrary code on affected systems. This affects Firefox...

A buffer overflow vulnerability in Schneider Electric products allows remote code execution via crafted Modbus packets. Attackers can exploit this thr...

This vulnerability allows remote attackers to execute arbitrary code or cause denial of service via a specially crafted DICOM file containing malforme...

CVE-2023-4234 is a stack overflow vulnerability in ofono's SMS decoding function that allows remote code execution. Attackers can exploit this via SMS...

CVE-2023-4232 is a stack overflow vulnerability in ofono's SMS decoding function that allows remote code execution. Attackers can exploit this via SMS...

CVE-2024-3865 is a memory safety vulnerability in Firefox that could allow attackers to execute arbitrary code on affected systems. The vulnerability ...

CVE-2023-2794 is a stack overflow vulnerability in ofono's SMS decoding function that allows remote code execution. It affects Linux systems using ofo...

CVE-2023-32284 is an out-of-bounds write vulnerability in Accusoft ImageGear's TIFF processing functionality that allows memory corruption via special...

This vulnerability allows unauthenticated remote attackers to execute arbitrary code with root privileges on Cisco Catalyst 4500 series switches runni...

This vulnerability allows remote attackers to execute arbitrary code on StarCharge Artemis AC Chargers by exploiting a stack overflow in the download....

A buffer overflow vulnerability in Tenda CH22 router firmware version 1.0.0.1 allows attackers on the local network to execute arbitrary code by manip...

A critical memory corruption vulnerability exists in RT-Thread's sys_recvfrom function, allowing attackers to execute arbitrary code or cause denial o...

This critical vulnerability in RT-Thread 5.1.0 allows improper array index validation in the sys_thread_sigprocmask function, potentially enabling mem...

CVE-2025-5865 is a critical memory corruption vulnerability in RT-Thread 5.1.0's sys_select function. Attackers can exploit improper timeout parameter...

This memory corruption vulnerability in Apple's WebKit browser engine allows attackers to execute arbitrary code by tricking users into visiting malic...

A critical buffer overflow vulnerability in H3C GR-5400AX routers allows attackers to execute arbitrary code by manipulating the param argument in the...

A critical buffer overflow vulnerability in H3C GR-1800AX routers allows attackers to execute arbitrary code by manipulating the EnableIpv6 function's...

A critical buffer overflow vulnerability in the RPC handler component of GL.iNet routers allows attackers to execute arbitrary code or crash devices. ...

A critical buffer overflow vulnerability in H3C GR-3000AX routers allows attackers to execute arbitrary code or crash the device by sending specially ...

This CVE-2023-52434 is an out-of-bounds read vulnerability in the Linux kernel's SMB client implementation. It allows attackers to trigger kernel cras...

This vulnerability is an out-of-bounds memory write flaw in the Linux kernel's NFS subsystem, specifically affecting mirroring/replication functionali...

This vulnerability allows attackers to trigger a stack overflow by manipulating function arguments in affected products, potentially leading to arbitr...

This vulnerability in Intel System Security Report and System Resources Defense firmware allows privileged users to bypass buffer restrictions, potent...

This vulnerability in AMD Secure Nested Paging (SNP) firmware allows a malicious hypervisor to improperly write to a guest's protected memory regions....

A memory corruption vulnerability in Apple operating systems allows attackers with memory write capability to execute arbitrary code. This affects wat...

This CVE describes a buffer overlap vulnerability in iccDEV's CIccTagMultiProcessElement::Apply() function where SrcPixel and DestPixel stack buffers ...