Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-120

CWE-120

High likelihood

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Parent: CWE-787 - Out-of-bounds Write

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.

4,199 vulnerabilities with CWE-120

CVE-2025-69259 HIGH

Trend Micro Apex Central - Unauthenticated Denial of Service via NULL Return Value

CVE-2025-69258 CRITICAL

Trend Micro Apex Central - Unauthenticated Remote Code Execution via LoadLibraryEX DLL Hijacking

CVE-2025-47394 HIGH

Qualcomm SM8750 Firmware - Buffer Overflow via Overlapping Memory Copy

CVE-2025-47388 HIGH

Qualcomm FastConnect and Snapdragon Firmware - Buffer Overflow via Unaligned DSP Page Address

CVE-2025-47335 MEDIUM

Qualcomm FastConnect and QCM/QCS/SM Firmware - Buffer Overflow in Clock Configuration Parser

CVE-2025-47334 MEDIUM

Qualcomm CSRA6620 and FastConnect Firmware - Buffer Overflow in Camera Command Buffer Processing

CVE-2025-53966 HIGH

Samsung Exynos 1380, 1480, 1580, and 2400 Firmware - Buffer Overflow via NL80211 IOCTL Message Handling

CVE-2025-49495 HIGH

Samsung Exynos 1380, 1480, 1580, 2400 Firmware - Buffer Overflow in WiFi Driver NL80211 Vendor Command

CVE-2025-15462 HIGH

UTT 520W < 1.7.7-180627 - Buffer Overflow via ConfigAdvideo timestart Parameter

CVE-2025-15461 HIGH

UTT 520W < 1.7.7-180627 - Buffer Overflow via selDateType Argument in formTaskEdit

CVE-2025-15460 HIGH

UTT 520W < 1.7.7-180627 - Buffer Overflow via EncryptionMode Argument in formPptpClientConfig

CVE-2025-15459 HIGH

UTT 520W < 1.7.7-180627 - Buffer Overflow via formUser strcpy

CVE-2025-48721 MEDIUM

QNAP QTS - Authenticated Stack-based Buffer Overflow

CVE-2025-52872 HIGH

QNAP QTS and QuTS hero - Authenticated Buffer Overflow

CVE-2025-52864 HIGH

QNAP QTS and QuTS hero - Authenticated Buffer Overflow

CVE-2025-52863 HIGH

QNAP QTS and QuTS hero - Authenticated Buffer Overflow

CVE-2025-15431 HIGH

UTT 512W < 1.7.7-171114 - Buffer Overflow via formFtpServerDirConfig Filename Parameter

CVE-2025-15430 HIGH

UTT 512W < 1.7.7-171114 - Buffer Overflow via formFtpServerShareDirSelcet oldfilename Parameter

CVE-2025-15429 HIGH

UTT 512W < 1.7.7-171114 - Buffer Overflow via formConfigCliForEngineerOnly addCommand Parameter

CVE-2025-15428 HIGH

UTT 512W < 1.7.7-171114 - Buffer Overflow via Remote Control Profile Argument

CVE-2025-15356 HIGH

Tenda AC20 Firmware <= 16.03.08.12 - Buffer Overflow via PowerSaveSet sscanf Argument

CVE-2025-15218 HIGH

Tenda AC10U 15.03.06.48/15.03.06.49 - Buffer Overflow via lanMask Parameter in fromadvsetlanip

CVE-2025-15217 HIGH

Tenda AC23 16.03.07.52 - Buffer Overflow via formSetPPTPUserList HTTP POST Argument

CVE-2025-15215 HIGH

Tenda AC10U 15.03.06.48/15.03.06.49 - Buffer Overflow via setPptpUserList HTTP POST Request

CVE-2025-15193 HIGH

D-Link DWR-M920 < 1.1.50 - Buffer Overflow via formParentControl submit-url Argument

Previous Page 15 of 168 Next

Details

Vulnerabilities 4,199

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy