CWE-119: Buffer Overflow
The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.
Yearly Trend
Top Affected Vendors
All Buffer Overflow CVEs (1,159)
This CVE describes a remote buffer overflow vulnerability in UTT θΏε 512W router firmware version 1.7.7-171114. Attackers can exploit the strcpy fu...
Jan 2, 2026A buffer overflow vulnerability in Tenda AC20 routers allows remote attackers to execute arbitrary code by sending specially crafted requests to the P...
Dec 30, 2025This CVE describes a heap-based buffer overflow vulnerability in Tenda M3 routers version 1.0.0.13(4903). Attackers can remotely exploit this vulnerab...
Dec 30, 2025A stack-based buffer overflow vulnerability in Tenda M3 routers allows remote attackers to execute arbitrary code by manipulating the mac/terminal par...
Dec 30, 2025This vulnerability allows remote attackers to execute arbitrary code on Tenda M3 routers via a heap-based buffer overflow in the web interface. Attack...
Dec 30, 2025This vulnerability allows remote attackers to execute arbitrary code on Tenda M3 routers via a stack-based buffer overflow in the formSetRemoteVlanInf...
Dec 30, 2025This vulnerability allows remote attackers to execute arbitrary code on Tenda M3 routers via a heap-based buffer overflow in the formSetVlanPolicy fun...
Dec 30, 2025This vulnerability in Tenda AC10U routers allows remote attackers to execute arbitrary code via a buffer overflow in the lanMask parameter of the /gof...
Dec 30, 2025A stack-based buffer overflow vulnerability in Tenda AC23 routers allows remote attackers to execute arbitrary code by manipulating the bindnum parame...
Dec 30, 2025A buffer overflow vulnerability in Tenda AC23 routers allows remote attackers to execute arbitrary code by sending specially crafted HTTP POST request...
Dec 30, 2025A buffer overflow vulnerability in Tenda AC10U routers allows remote attackers to execute arbitrary code by sending specially crafted HTTP POST reques...
Dec 30, 2025A buffer overflow vulnerability in D-Link DWR-M920 routers allows remote attackers to execute arbitrary code by manipulating the submit-url parameter ...
Dec 29, 2025A stack-based buffer overflow vulnerability exists in D-Link DWR-M920 routers through firmware version 1.1.50. Remote attackers can exploit this by ma...
Dec 29, 2025A buffer overflow vulnerability in D-Link DWR-M920 routers allows remote attackers to execute arbitrary code by manipulating the submit-url parameter....
Dec 29, 2025This vulnerability allows remote attackers to execute arbitrary code on UTT θΏε 512W devices through a buffer overflow in the ConfigExceptMSN funct...
Dec 26, 2025This vulnerability allows remote attackers to execute arbitrary code on UTT θΏε 512W devices through a buffer overflow in the formPictureUrl functi...
Dec 26, 2025This vulnerability allows remote attackers to execute arbitrary code on UTT θΏε 512W devices via a buffer overflow in the strcpy function in the /g...
Dec 25, 2025This vulnerability allows remote attackers to execute arbitrary code on affected UTT θΏε 512W devices via a buffer overflow in the formConfigNotice...
Dec 25, 2025A stack-based buffer overflow vulnerability exists in Tenda FH1201 routers version 1.2.0.14(408) affecting the SetIpBind function. Remote attackers ca...
Dec 21, 2025A stack-based buffer overflow vulnerability in Tenda FH1201 and FH1206 routers allows remote attackers to execute arbitrary code by manipulating the w...
Dec 21, 2025This CVE describes a remote stack-based buffer overflow vulnerability in Tenda AC18 routers. Attackers can exploit this by sending specially crafted H...
Dec 21, 2025This CVE describes a stack-based buffer overflow vulnerability in Tenda AC18 routers running firmware version 15.03.05.05. Attackers can remotely expl...
Dec 21, 2025CVE-2025-14861 is a memory safety vulnerability in Firefox that could allow attackers to execute arbitrary code on affected systems. The vulnerability...
Dec 18, 2025A buffer overflow vulnerability in Tenda AC20 routers allows remote attackers to execute arbitrary code by manipulating schedStartTime/schedEndTime pa...
Dec 14, 2025A stack-based buffer overflow vulnerability in Tenda AC20 routers allows remote attackers to execute arbitrary code by manipulating the rebootTime par...
Dec 14, 2025This vulnerability allows remote attackers to execute arbitrary code on Tenda AC20 routers via a stack-based buffer overflow in the HTTP daemon. Attac...
Dec 14, 2025This vulnerability allows remote attackers to execute arbitrary code or cause denial of service through memory corruption in UTT θΏε 512W devices. ...
Dec 12, 2025A buffer overflow vulnerability in Tenda CH22 router firmware version 1.0.0.1 allows remote attackers to execute arbitrary code by manipulating the 'p...
Dec 11, 2025A buffer overflow vulnerability in H3C Magic B1 routers allows remote attackers to execute arbitrary code by manipulating the 'param' argument in the ...
Dec 7, 2025This vulnerability allows remote attackers to execute arbitrary code on UTT 512W routers through a buffer overflow in the formP2PLimitConfig function....
Dec 7, 2025A buffer overflow vulnerability in H3C Magic B0 routers allows remote attackers to execute arbitrary code by manipulating the param argument in the Ed...
Dec 4, 2025A remote buffer overflow vulnerability in D-Link DWR-M920 routers allows attackers to execute arbitrary code by manipulating the submit-url parameter....
Nov 23, 2025A buffer overflow vulnerability in D-Link DIR-822K and DWR-M920 routers allows remote attackers to execute arbitrary code by manipulating the submit-u...
Nov 23, 2025A buffer overflow vulnerability in D-Link DIR-822K and DWR-M920 routers allows remote attackers to execute arbitrary code by manipulating the submit-u...
Nov 23, 2025A buffer overflow vulnerability in D-Link DIR-822K and DWR-M920 routers allows remote attackers to execute arbitrary code by manipulating the submit-u...
Nov 23, 2025A memory corruption vulnerability in D-Link DIR-822K and DWR-M920 routers allows remote attackers to manipulate the 'submit-url' argument in the '/boa...
Nov 23, 2025CVE-2025-13445 is a stack-based buffer overflow vulnerability in Tenda AC21 routers that allows remote attackers to execute arbitrary code by manipula...
Nov 20, 2025This vulnerability in Tenda AC21 routers allows remote attackers to execute arbitrary code via a stack-based buffer overflow in the SetSysTimeCfg endp...
Nov 20, 2025A buffer overflow vulnerability in Tenda CH22 routers allows remote attackers to execute arbitrary code by manipulating the chkHz parameter in the for...
Nov 19, 2025A buffer overflow vulnerability in D-Link routers allows remote attackers to execute arbitrary code by manipulating the 'host' parameter in the tracer...
Nov 17, 2025A buffer overflow vulnerability in D-Link routers allows remote attackers to execute arbitrary code by manipulating the 'host' parameter in the ping d...
Nov 17, 2025A buffer overflow vulnerability in Tenda CH22 routers allows remote attackers to execute arbitrary code by manipulating the 'delno' parameter in the P...
Nov 17, 2025A buffer overflow vulnerability in Tenda AC20 routers allows remote attackers to execute arbitrary code by manipulating the wpapsk_crypto parameter in...
Nov 17, 2025A remote stack-based buffer overflow vulnerability in D-Link DIR-816L routers allows attackers to execute arbitrary code by manipulating the 'en' para...
Nov 15, 2025A stack-based buffer overflow vulnerability in D-Link DIR-816L routers allows remote attackers to execute arbitrary code by manipulating the SERVER_ID...
Nov 15, 2025A buffer overflow vulnerability in Tenda AC10 routers allows remote attackers to execute arbitrary code by manipulating the 'getui' parameter in the f...
Nov 3, 2025A buffer overflow vulnerability in Tenda A15 routers allows remote attackers to execute arbitrary code by manipulating the wpapsk_crypto2_4g parameter...
Nov 3, 2025A buffer overflow vulnerability in Tenda AC8 routers allows remote attackers to execute arbitrary code by manipulating the 'Time' parameter in the /go...
Nov 3, 2025A buffer overflow vulnerability in Tenda AC23 routers allows remote attackers to execute arbitrary code by manipulating the argument list in the formS...
Nov 2, 2025CVE-2025-12273 is a buffer overflow vulnerability in Tenda CH22 routers affecting version 1.0.0.1. Attackers can remotely exploit this by manipulating...
Oct 27, 2025About Buffer Overflow (CWE-119)
The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.
Our database tracks 1,159 CVEs classified as CWE-119, with 122 rated critical and 848 rated high severity. The average CVSS score for Buffer Overflow vulnerabilities is 7.9.
External reference: View CWE-119 on MITRE CWE →
Monitor Buffer Overflow Vulnerabilities
Get alerted when new Buffer Overflow CVEs affect your infrastructure.
Start Monitoring Free