CWE-119: Buffer Overflow

This critical vulnerability in D-Link DIR-816 routers allows remote attackers to execute arbitrary code via a stack-based buffer overflow in the web i...

This critical vulnerability in D-Link DIR-816 routers allows remote attackers to execute arbitrary code via a stack-based buffer overflow in the QoS c...

This critical vulnerability in D-Link DIR-816 routers allows remote attackers to execute arbitrary code via a stack-based buffer overflow in the wirel...

A critical stack-based buffer overflow vulnerability in TOTOLINK EX1200T routers allows remote attackers to execute arbitrary code by manipulating the...

A critical buffer overflow vulnerability in WAVLINK wireless routers allows remote attackers to execute arbitrary code by sending specially crafted HT...

This CVE describes memory buffer and stack-based buffer overflow vulnerabilities in Apache NuttX RTOS's Bluetooth HCI and UART components. Attackers c...

A vulnerability in the zlib library's inftrees.c component, bundled within PointCloudLibrary (PCL), allows attackers to cause undefined behavior throu...

A critical stack-based buffer overflow vulnerability in D-Link DAP-1620's authentication handler allows remote attackers to execute arbitrary code or ...

A critical heap-based buffer overflow vulnerability in D-Link DAP-1620 access points allows remote attackers to execute arbitrary code or crash the de...

CVE-2025-1864 is a memory buffer overflow vulnerability in radare2, a reverse engineering framework. Attackers can exploit this to execute arbitrary c...

CVE-2024-9401 is a critical memory safety vulnerability in Mozilla Firefox and Thunderbird that could allow attackers to execute arbitrary code throug...

This critical vulnerability in MediaTek modem firmware allows remote attackers to execute arbitrary code without authentication or user interaction. I...

Unauthenticated attackers can exploit memory corruption during XML parsing in Elspec G5 digital fault recorders to execute arbitrary code or cause den...

This vulnerability in the ALAC (Apple Lossless Audio Codec) decoder allows remote attackers to execute arbitrary code without user interaction due to ...

This vulnerability in Vyper smart contract language allows attackers to bypass bounds checks for slice operations when non-literal arguments are used,...

A stack-based buffer overflow vulnerability in Easy Chat Server 3.1 allows remote attackers to execute arbitrary code by sending an excessively long u...

A buffer overflow vulnerability in Easy Address Book Web Server 1.6 allows remote attackers to execute arbitrary code by sending an overly long userna...

This vulnerability allows remote attackers to execute arbitrary code on Tenda AC10U routers by exploiting a stack overflow in the timeZone parameter. ...

This vulnerability allows remote attackers to execute arbitrary code on Tenda AC10U routers via a stack overflow in the GetParentControlInfo function....

This vulnerability in Tenda AC10U routers allows remote attackers to execute arbitrary code via a stack overflow in the formSetClientState function. A...

This vulnerability allows remote attackers to execute arbitrary code on Tenda AC10U routers by exploiting a stack overflow in the WiFi configuration f...

This vulnerability in Tenda AC10U routers allows remote attackers to execute arbitrary code via a stack overflow in the fromSetIpMacBind function. Att...

This vulnerability allows remote attackers to execute arbitrary code on Tenda AC10U routers by exploiting a stack overflow in the setSchedWifi functio...

This vulnerability allows memory corruption in WLAN firmware when parsing GTK keys in GTK KDE, potentially enabling remote code execution or denial of...

CVE-2022-46293 is a critical out-of-bounds write vulnerability in Open Babel's MOPAC file parser that allows arbitrary code execution when processing ...

CVE-2022-46295 is a critical out-of-bounds write vulnerability in Open Babel's Gaussian file format parser that allows arbitrary code execution when p...

This critical vulnerability in Open Babel allows arbitrary code execution through an out-of-bounds write when processing specially crafted PQS format ...

CVE-2022-46291 is a critical out-of-bounds write vulnerability in Open Babel's MSI file format parser that allows arbitrary code execution when proces...

CVE-2023-33975 is a critical memory corruption vulnerability in RIOT-OS's 6LoWPAN network stack that allows remote attackers to execute arbitrary code...

This vulnerability allows a malicious or compromised UApp or ABL to send malformed system calls to AMD bootloaders, potentially leading to out-of-boun...

This vulnerability is a buffer overflow in Artifex MuJS's floating-point parsing code that allows attackers to execute arbitrary code or crash applica...

This vulnerability in Android's kernel allows userspace applications to map kernel memory as writable through the 'remap_pfn_range' function. Attacker...

This vulnerability in Huawei audio modules allows attackers to trigger out-of-bounds memory access by passing malicious parameters. It affects Huawei ...

This vulnerability in FIS GT.M (and related YottaDB) allows attackers to execute arbitrary code by exploiting a buffer overflow in memcpy. Attackers c...

This vulnerability in Huawei smartphones allows attackers to bypass permission isolation mechanisms, potentially leading to out-of-bounds memory acces...

CVE-2021-22434 is a critical memory address out-of-bounds vulnerability affecting certain Huawei smartphones running HarmonyOS. Successful exploitatio...

CVE-2021-22426 is a critical memory corruption vulnerability in Huawei smartphones that allows attackers to execute arbitrary code by exploiting out-o...

CVE-2021-20325 is a Red Hat-specific security regression where fixes for CVE-2021-40438 and CVE-2021-26691 were missing in httpd packages shipped with...

This vulnerability in mbsync allows remote attackers to execute arbitrary code by exploiting buffer overflows when processing extremely large IMAP lit...

This vulnerability in Stormshield Network Security (SNS) ASQ allows remote attackers to execute arbitrary code due to improper memory management. It a...

CVE-2021-45709 is a memory safety vulnerability in the crypto2 Rust crate that allows unaligned memory reads during Chacha20 encryption/decryption ope...

A buffer overflow vulnerability in Matrix libolm's olm_session_describe function allows remote attackers to execute arbitrary code or cause denial of ...

This is a critical memory corruption vulnerability in Huawei smartphones that allows attackers to execute arbitrary code by exploiting out-of-bounds m...

CVE-2021-1770 is a critical buffer overflow vulnerability in Apple operating systems that could allow attackers to execute arbitrary code on affected ...

This is a critical buffer overflow vulnerability in FATEK Automation WinProladder software that allows remote attackers to execute arbitrary code on a...

This vulnerability allows remote unauthenticated attackers to bypass memory protection on Siemens industrial control systems. By sending specially cra...

CVE-2021-20204 is a critical heap memory corruption vulnerability (use-after-free) in libgetdata v0.10.0 that allows attackers to execute arbitrary co...

This critical vulnerability allows unauthenticated remote attackers to execute arbitrary code as root on affected Cisco Small Business routers via cra...

This vulnerability in the outer_cgi Rust crate allows attackers to read uninitialized memory from a server's process, potentially exposing sensitive d...

This vulnerability is a memory buffer overflow in Schneider Electric PowerLogic meters that could allow attackers to cause denial of service (reboots)...