Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-120

CWE-120

High likelihood

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Parent: CWE-787 - Out-of-bounds Write

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.

4,199 vulnerabilities with CWE-120

CVE-2025-46108 CRITICAL

D-link Dir-513 A1FW110 - Buffer Overflow

CVE-2025-12345 HIGH

LLM-Claw 0.1.0-0.1.1a-p1 - Buffer Overflow

CVE-2025-61147 MEDIUM

strukturag libde265 d9fea9d - Memory Corruption

CVE-2025-69674 MEDIUM

CDATA FD614GS3-R850 V3.2.7 - Buffer Overflow

CVE-2025-33130 MEDIUM

IBM DB2 Merge Backup 12.1.0.0 - Buffer Overflow

CVE-2025-70314 CRITICAL

webfsd 1.21 - Buffer Overflow via Crafted Request

CVE-2025-69807 HIGH

p2r3 Bareiron - Unauthenticated Denial of Service via Buffer Overflow

CVE-2025-52870 HIGH

Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Heap-based Buffer Overflow

CVE-2025-52869 HIGH

Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Heap-based Buffer Overflow

CVE-2025-52868 HIGH

Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Heap-based Buffer Overflow

CVE-2025-48725 HIGH

QNAP QTS and QuTS hero - Authenticated Buffer Overflow

CVE-2025-48724 HIGH

Qsync Central <5.0.0.4 - Buffer Overflow

CVE-2025-48723 HIGH

Qsync Central <5.0.0.4 - Buffer Overflow

CVE-2025-67189 MEDIUM

TOTOLINK A950RG V4.1.2cu.5204_B20210112 - Buffer Overflow via setParentalRules urlKeyword Parameter

CVE-2025-67188 CRITICAL

TOTOLINK A950RG V4.1.2cu.5204_B20210112 - Buffer Overflow in setRadvdCfg radvdinterfacename Parameter

CVE-2025-67186 CRITICAL

TOTOLINK A950RG V4.1.2cu.5204_B20210112 - Buffer Overflow in setUrlFilterRules Interface

CVE-2025-47399 HIGH

Qualcomm Cologne Firmware - Memory Corruption via IOCTL Sensor Property Update

CVE-2025-14911 MEDIUM

Mongo-c-driver < 2.1.3 - Buffer Overflow via GridFS ChunkSize Metadata

CVE-2025-28164 MEDIUM

libpng 1.6.43-1.6.46 - Denial of Service via png_create_read_struct() Buffer Overflow

CVE-2025-28162 MEDIUM

libpng 1.6.43-1.6.46 - Denial of Service via Buffer Overflow in pngimage

CVE-2025-69209 MEDIUM

ArduinoCore-avr <1.8.7 - Buffer Overflow

CVE-2025-68137 HIGH

EVerest < 2025.10.0 - Infinite Loop via SdpPacket Header Parsing

CVE-2025-55131 HIGH

Node.js 4.0-25.2.0 - Uninitialized Memory Exposure via Buffer Allocation Interruption

CVE-2025-29329 CRITICAL

Sagemcom F@st 3686 Firmware - Remote Code Execution via ippprint Buffer Overflow

CVE-2025-69260 HIGH

Trend Micro Apex Central - Unauthenticated Denial of Service via Message Out-of-Bounds Read

Previous Page 14 of 168 Next

Details

Vulnerabilities 4,199

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy