CWE-120: Buffer Copy without Size Check

A critical buffer overflow vulnerability in TOTOLINK A3600R routers allows remote attackers to execute arbitrary code by sending specially crafted req...

This critical vulnerability in TOTOLINK A3600R routers allows remote attackers to execute arbitrary code via a buffer overflow in the setIpQosRules fu...

A critical buffer overflow vulnerability in TOTOLINK A3600R routers allows remote attackers to execute arbitrary code by sending specially crafted req...

A critical buffer overflow vulnerability in TOTOLINK A3600R routers allows remote attackers to execute arbitrary code by manipulating the http_host pa...

A critical buffer overflow vulnerability in TOTOLINK A3100R routers allows remote attackers to execute arbitrary code by manipulating the http_host pa...

A buffer overflow vulnerability in the Actiontec WCB6200Q router's HTTP server allows network-adjacent attackers to execute arbitrary code without aut...

A buffer overflow vulnerability in Intel Power Gadget software for Windows allows authenticated local users to potentially escalate privileges. This a...

This buffer overflow vulnerability in Totolink AC1200 routers allows attackers to execute arbitrary code or cause denial of service by sending special...

A critical buffer overflow vulnerability in Tenda FH1206 routers allows remote attackers to execute arbitrary code by manipulating the 'entrys' parame...

The NPS computy WordPress plugin through version 2.7.5 lacks Cross-Site Request Forgery (CSRF) protection on certain endpoints, allowing attackers to ...

A buffer overflow vulnerability in RT-Thread's rtlink.c component allows attackers to execute arbitrary code or cause denial of service. This affects ...

This vulnerability allows an unauthenticated attacker to craft malicious packets that trigger a buffer overflow when an authenticated user views them ...

This CVE describes an integer underflow and buffer overflow vulnerability in QEMU's SCSI emulation (esp.c). Attackers can exploit this to execute arbi...

A classic buffer overflow vulnerability in Hancom HCell spreadsheet software allows attackers to execute arbitrary code by sending specially crafted i...

Moonlight-common-c contains a buffer overflow vulnerability in its GameStream client code. A malicious game streaming server could exploit this to cra...

This CVE describes a remote code execution vulnerability in Lenovo printer firmware where an attacker can send a specially crafted string to the serve...

A buffer overflow vulnerability in the Linux kernel's Ceph messenger component allows remote attackers to execute arbitrary code via specially crafted...

This vulnerability allows buffer overflow attacks in Firefox on macOS due to insufficient memory allocation checks in Angle's GLSL shader processing. ...

This is a buffer overflow vulnerability in FreeImage's ICO file parser that allows remote attackers to execute arbitrary code by tricking a user or sy...

CVE-2020-24295 is a buffer overflow vulnerability in FreeImage's PSD parser that allows remote attackers to execute arbitrary code by providing a spec...

This vulnerability allows remote attackers to execute arbitrary code on affected Netgear devices via buffer overflows in authentication parameters. At...

This vulnerability allows remote attackers to execute arbitrary code on Netgear XR300 routers via buffer overflows in the wla_ssid and wlg_ssid parame...

This vulnerability allows remote attackers to execute arbitrary code on Netgear DG834Gv5 routers via buffer overflows in the wla_ssid and wla_temp_ssi...

This vulnerability allows remote attackers to execute arbitrary code on affected Netgear devices via buffer overflows in authentication parameters. At...

This vulnerability allows remote attackers to execute arbitrary code on affected Netgear devices via a buffer overflow in the password.cgi script. Att...

A buffer overflow vulnerability in the fwctl driver of bhyve hypervisor allows malicious privileged software running in a guest VM to execute arbitrar...

This CVE-2023-38590 is a buffer overflow vulnerability in Apple operating systems that allows remote attackers to cause system crashes or corrupt kern...

This is a heap out-of-bounds write vulnerability in Samsung Exynos baseband firmware that allows remote attackers to execute arbitrary code. It affect...

A buffer overflow vulnerability in libtiff's tiffcrop utility allows attackers to execute arbitrary code or cause denial of service by processing spec...

This CVE describes a buffer overflow vulnerability in Qihoo 360 security software that allows remote code execution. Attackers can exploit it by trick...

This CVE describes a stack-based buffer overflow vulnerability in Rocket Software's UniData and UniVerse database products. Attackers with valid login...

This CVE describes a buffer overflow vulnerability in the HTTPS stack of Schneider Electric's Easergy P5 devices, allowing remote attackers to execute...

CVE-2022-30950 is a buffer overflow vulnerability in Jenkins WMI Windows Agents Plugin 1.8 and earlier that allows authenticated users who can connect...

A buffer overflow vulnerability in LibreCAD's jwwlib component allows remote code execution when processing malicious JWW documents. Attackers can exp...

CVE-2021-34979 is a buffer overflow vulnerability in NETGEAR R6260 routers that allows network-adjacent attackers to execute arbitrary code as root wi...

A stack-based buffer overflow vulnerability in Garrett Metal Detectors' iC Module CMA allows remote attackers to execute arbitrary code by sending spe...

This is a local privilege escalation vulnerability in Accops HyWorks Windows Client where attackers can exploit a buffer overflow in the IOCTL Handler...

This vulnerability is a buffer overflow in the Amazon WorkSpaces agent's IOCTL handler that allows local attackers to execute arbitrary code with kern...

This vulnerability in NoMachine Server allows local attackers to execute arbitrary code with kernel privileges or cause denial of service via memory c...

A buffer overflow vulnerability in NoMachine Enterprise Desktop allows local attackers to execute arbitrary code with kernel privileges or cause denia...

This vulnerability allows local attackers to execute arbitrary code with kernel privileges or cause denial of service via memory corruption in NoMachi...

This vulnerability in FlexiHub for Windows allows local attackers to execute arbitrary code with kernel privileges or crash the operating system throu...

CVE-2021-42994 is a buffer overflow vulnerability in Donglify's IOCTL handler that allows local attackers to execute arbitrary code with kernel privil...

This vulnerability in Amzetta zPortal Windows zClient allows local attackers to execute arbitrary code with kernel privileges or crash the operating s...

This CVE describes a buffer overflow vulnerability in the BLE L2CAP implementation of Contiki-NG, an operating system for IoT devices. Attackers can s...

A memory corruption vulnerability in Palo Alto Networks PAN-OS GlobalProtect Clientless VPN allows authenticated attackers to execute arbitrary code w...

This CVE describes a buffer overflow vulnerability in Tenda AC9 routers that allows attackers to execute arbitrary code by manipulating the index para...

CVE-2020-28967 is a buffer overflow vulnerability in FlashGet download manager that allows local attackers to execute arbitrary code with elevated pri...

This integer overflow vulnerability in FFmpeg's convolution filter allows attackers to cause denial of service or potentially execute arbitrary code b...

This vulnerability allows arbitrary code execution by processing a maliciously crafted audio file. It affects Apple devices running macOS, tvOS, watch...