CWE-119

High likelihood

Improper Restriction of Operations within the Bounds of a Memory Buffer

Parent: CWE-118 - Incorrect Access of Indexable Resource ('Range Error')

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

13,938 vulnerabilities with CWE-119
CVE-2026-7857 HIGH
D-Link DI-8100 CGI user_group.asp sprintf buffer overflow
CVSS 7.2
CVE-2026-7856 HIGH
D-Link DI-8100 Web Management url_member.asp buffer overflow
CVSS 7.2
CVE-2026-7855 HIGH
D-Link DI-8100 HTTP Request tggl.asp tggl_asp buffer overflow
CVSS 8.8
CVE-2026-7854 CRITICAL
D-Link DI-8100 POST Parameter url_rule.asp url_rule_asp buffer overflow
CVSS 9.8
CVE-2026-7853 CRITICAL
D-Link DI-8100 HTTP auto_reboot.asp sprintf buffer overflow
CVSS 9.8
CVE-2026-7851 HIGH
D-Link DI-8100 yyxz.asp sprintf stack-based overflow
CVSS 7.2
CVE-2026-7834 CRITICAL
EFM ipTIME NAS1dual misc_main.cgi get_csrf_whites stack-based overflow
CVSS 9.8
CVE-2026-7750 HIGH
Totolink N300RH POST Request cstecgi.cgi setMacFilterRules buffer overflow
CVSS 8.8
CVE-2026-7749 HIGH
Totolink N300RH POST Request cstecgi.cgi setWanConfig buffer overflow
CVSS 8.8
CVE-2026-7748 HIGH
Totolink N300RH POST Request cstecgi.cgi setUpgradeFW buffer overflow
CVSS 8.8
CVE-2026-7747 CRITICAL
Totolink N300RH Parameter cstecgi.cgi loginauth buffer overflow
CVSS 9.8
CVE-2026-7737 MEDIUM
osrg GoBGP BMP Parser bmp.go BMPStatisticsReport.ParseBody out-of-bounds
CVSS 5.3
CVE-2026-7735 HIGH
osrg GoBGP AIGP Attribute bgp.go PathAttributeAigp.DecodeFromBytes buffer overflow
CVSS 7.3
CVE-2026-7719 CRITICAL
Totolink WA300 POST Request cstecgi.cgi loginauth buffer overflow
CVSS 9.8
CVE-2026-7717 HIGH
Totolink WA300 POST Request cstecgi.cgi UploadCustomModule buffer overflow
CVSS 8.8
CVE-2026-7685 HIGH
Edimax BR-6208AC setWAN buffer overflow
CVSS 8.8
CVE-2026-7684 HIGH
Edimax BR-6428nC setWAN buffer overflow
CVSS 8.8
CVE-2026-7675 HIGH
Shenzhen Libituo Technology LBT-T300-HW1 apply.cgi start_lan buffer overflow
CVSS 8.8
CVE-2026-7674 HIGH
Shenzhen Libituo Technology LBT-T300-HW1 Web Management start_single_service buffer overflow
CVSS 8.8
CVE-2026-7668 HIGH
MikroTik RouterOS SCEP Endpoint scep.p ASN1_STRING_data out-of-bounds
CVSS 7.3
CVE-2026-7607 HIGH
TRENDnet TEW-821DAP Firmware Udpate auto_update_firmware buffer overflow
CVSS 8.8
CVE-2026-22167 HIGH
Imagination Technologies Graphics DDK - GPU Arbitrary Physical Memory Write
CVSS 7.8
CVE-2026-7582 MEDIUM
AcademySoftwareFoundation OpenImageIO DDS Image ddsinput.cpp out-of-bounds write
CVSS 5.3
CVE-2026-7546 CRITICAL
Totolink NR1800X lighttpd find_host_ip stack-based overflow
CVSS 9.8
CVE-2026-7513 HIGH
UTT HiPER 1200GW formRemoteControl strcpy buffer overflow
CVSS 8.8
Details
Vulnerabilities 13,938
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits