CWE-119: Buffer Overflow
The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.
Yearly Trend
Top Affected Vendors
All Buffer Overflow CVEs (1,153)
This vulnerability in the nb-connect Rust crate allows memory corruption due to unsafe casting of socket address structures. Attackers could potential...
Feb 18, 2021This vulnerability allows remote attackers to execute arbitrary code on affected Moxa secure routers by sending specially crafted requests. It affects...
Feb 3, 2021This is a critical buffer overflow vulnerability in D-Link DIR-825 R1 routers that allows attackers to execute arbitrary code remotely without authent...
Jan 29, 2021CVE-2021-1300 is a critical buffer overflow vulnerability in Cisco SD-WAN products that allows unauthenticated remote attackers to execute arbitrary c...
Jan 20, 2021This vulnerability in the ozone crate for Rust allows memory safety violations through dropping uninitialized memory, potentially leading to arbitrary...
Dec 31, 2020CVE-2020-3470 allows unauthenticated remote attackers to execute arbitrary code with root privileges on Cisco Integrated Management Controller (IMC) s...
Nov 18, 2020A memory overflow vulnerability in Xiaomi AI speaker firmware allows attackers to execute arbitrary code during OTA firmware verification. This affect...
Sep 11, 2020This CVE-2020-3669 is a critical buffer overflow vulnerability in Qualcomm Snapdragon chipsets' WLAN TCP/IP verification. It allows attackers to execu...
Sep 8, 2020A buffer overflow vulnerability in Symantec Data Loss Prevention allows remote, unauthenticated attackers to execute arbitrary code by tricking users ...
Jan 26, 2024CVE-2025-24797 is a critical buffer overflow vulnerability in Meshtastic firmware that allows unauthenticated attackers to execute arbitrary code on a...
Apr 15, 2025CVE-2023-4966, known as Citrix Bleed, is a sensitive information disclosure vulnerability in NetScaler ADC and NetScaler Gateway when configured as a ...
Oct 10, 2023This CVE describes a stack buffer overflow vulnerability in PHP's PHAR file handling that could lead to memory corruption or remote code execution. It...
Aug 11, 2023This vulnerability allows local attackers to map arbitrary memory addresses due to missing bounds checking in the vpu_mmap function. This can lead to ...
Feb 5, 2026This memory corruption vulnerability in macOS allows malicious applications to corrupt coprocessor memory, potentially leading to arbitrary code execu...
May 29, 2025CVE-2023-46586 is a buffer overflow vulnerability in weborf web server versions 0.17-0.20 due to improper null termination of CGI script paths. This a...
Oct 9, 2024This CVE describes a buffer over-read vulnerability in the AMD display driver component of the Linux kernel. An attacker could exploit this to read ke...
May 21, 2024This vulnerability in IBM Personal Communications allows any unprivileged user with network access to execute arbitrary commands with SYSTEM privilege...
Apr 6, 2024A memory corruption vulnerability in Weston Embedded uC-HTTP v3.01.01's HTTP Server Host header parsing allows remote code execution via specially cra...
Nov 14, 2023This vulnerability allows remote attackers to execute arbitrary code on systems running Weston Embedded uC-HTTP v3.01.01 by sending specially crafted ...
Nov 14, 2023A remote buffer overflow vulnerability in LLM-Claw's agent deployment component allows attackers to execute arbitrary code or crash the system. This a...
Mar 3, 2026A stack-based buffer overflow vulnerability in Tenda AC15 routers allows remote attackers to execute arbitrary code by manipulating the wpapsk_crypto2...
Mar 2, 2026A buffer overflow vulnerability in Tenda F453 routers allows remote attackers to execute arbitrary code or cause denial of service by sending speciall...
Mar 1, 2026A buffer overflow vulnerability in Tenda F453 routers allows remote attackers to execute arbitrary code by sending specially crafted requests to the h...
Mar 1, 2026This vulnerability allows remote attackers to execute arbitrary code on Tenda F453 routers by exploiting a buffer overflow in the frmL7ImForm function...
Mar 1, 2026CVE-2026-3378 is a remote buffer overflow vulnerability in Tenda F453 routers affecting the qossetting function. Attackers can exploit this flaw remot...
Mar 1, 2026A buffer overflow vulnerability in Tenda F453 routers allows remote attackers to execute arbitrary code by manipulating the 'page' parameter in the fr...
Mar 1, 2026A buffer overflow vulnerability in Tenda F453 routers allows remote attackers to execute arbitrary code by manipulating the 'page' parameter in the Sa...
Feb 28, 2026A buffer overflow vulnerability in Tenda F453 routers allows remote attackers to execute arbitrary code by manipulating the 'page' parameter in the Sa...
Feb 25, 2026A buffer overflow vulnerability in Tenda F453 routers allows remote attackers to execute arbitrary code by manipulating the 'page' argument in the fro...
Feb 25, 2026A buffer overflow vulnerability in Tenda F453 routers allows remote attackers to execute arbitrary code by manipulating the 'page' argument in the Nat...
Feb 25, 2026A stack-based buffer overflow vulnerability in Tenda AC8 routers allows remote attackers to execute arbitrary code by manipulating the boundary argume...
Feb 24, 2026This CVE describes a buffer overflow vulnerability in UTT HiPER 810G routers through manipulation of the GroupName parameter. Attackers can remotely e...
Feb 23, 2026A stack-based buffer overflow vulnerability in D-Link DWR-M960 routers allows remote attackers to execute arbitrary code by manipulating the submit-ur...
Feb 23, 2026A remote stack-based buffer overflow vulnerability exists in D-Link DWR-M960 routers through the Scheduled Reboot Configuration endpoint. Attackers ca...
Feb 23, 2026A stack-based buffer overflow vulnerability in D-Link DWR-M960 routers allows remote attackers to execute arbitrary code by manipulating the save_appl...
Feb 23, 2026A stack-based buffer overflow vulnerability in D-Link DWR-M960 routers allows remote attackers to execute arbitrary code by manipulating the submit-ur...
Feb 22, 2026A stack-based buffer overflow vulnerability in D-Link DWR-M960 routers allows remote attackers to execute arbitrary code by manipulating the submit-ur...
Feb 22, 2026A stack-based buffer overflow vulnerability in D-Link DWR-M960 routers allows remote attackers to execute arbitrary code by manipulating the submit-ur...
Feb 22, 2026A stack-based buffer overflow vulnerability in D-Link DWR-M960 routers allows remote attackers to execute arbitrary code by manipulating the submit-ur...
Feb 22, 2026A remote stack-based buffer overflow vulnerability in Tenda HG9 routers allows attackers to execute arbitrary code by manipulating the pingAddr parame...
Feb 22, 2026This vulnerability allows remote attackers to execute arbitrary code on Tenda HG9 routers via a stack-based buffer overflow in the Diagnostic Ping End...
Feb 22, 2026This vulnerability allows remote attackers to execute arbitrary code on Tenda HG9 routers via a stack-based buffer overflow in the GPON configuration ...
Feb 22, 2026A stack-based buffer overflow vulnerability in Tenda HG9 routers allows remote attackers to execute arbitrary code by manipulating the ssid parameter ...
Feb 22, 2026A buffer overflow vulnerability in the UTT HiPER 810G router's web interface allows remote attackers to execute arbitrary code by exploiting the strcp...
Feb 22, 2026A remote stack-based buffer overflow vulnerability in D-Link DWR-M960 routers allows attackers to execute arbitrary code by manipulating the submit-ur...
Feb 21, 2026A remote stack-based buffer overflow vulnerability in D-Link DWR-M960 routers allows attackers to execute arbitrary code by manipulating the submit-ur...
Feb 21, 2026A stack-based buffer overflow vulnerability in D-Link DWR-M960 routers allows remote attackers to execute arbitrary code by manipulating the submit-ur...
Feb 21, 2026A stack-based buffer overflow vulnerability in Tenda A18 routers allows remote attackers to execute arbitrary code by exploiting the strcpy function i...
Feb 21, 2026A stack-based buffer overflow vulnerability in Tenda A21 routers allows remote attackers to execute arbitrary code by manipulating the SSID parameter....
Feb 21, 2026A stack-based buffer overflow vulnerability in Tenda A21 routers allows remote attackers to execute arbitrary code by manipulating time parameters in ...
Feb 21, 2026About Buffer Overflow (CWE-119)
The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.
Our database tracks 1,153 CVEs classified as CWE-119, with 119 rated critical and 845 rated high severity. The average CVSS score for Buffer Overflow vulnerabilities is 7.9.
External reference: View CWE-119 on MITRE CWE →
Monitor Buffer Overflow Vulnerabilities
Get alerted when new Buffer Overflow CVEs affect your infrastructure.
Start Monitoring Free