CWE-121

High likelihood

Stack-based Buffer Overflow

Parent: CWE-788 - Access of Memory Location After End of Buffer

A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

3,179 vulnerabilities with CWE-121
CVE-2026-42996 CRITICAL
JS8Call < 2.3.1 - Buffer Overflow
CVE-2026-7546 CRITICAL
Totolink NR1800X lighttpd find_host_ip stack-based overflow
CVSS 9.8
CVE-2026-39457
Stack overflow via select() file descriptor set overflow
CVE-2026-6538 MEDIUM
Stack-based Buffer Overflow in Wireshark
CVSS 5.5
CVE-2026-6537 MEDIUM
Stack-based Buffer Overflow in Wireshark
CVSS 5.5
CVE-2026-5654 MEDIUM
Stack-based Buffer Overflow in Wireshark
CVSS 5.5
CVE-2026-6868 MEDIUM
Stack-based Buffer Overflow in Wireshark
CVSS 5.5
CVE-2026-7470 HIGH
Tenda 4G300 SafeMacFilter sub_427C3C stack-based overflow
CVSS 8.8
CVE-2026-28221 MEDIUM
Wazuh: Pre-auth stack-based buffer overflow in wazuh-remoted print_hex_string() due to signed char promotion on x86_64
CVSS 6.5
CVE-2026-0206 MEDIUM
Sonicwall SonicOS - Buffer Overflow
CVSS 4.9
CVE-2026-36837 HIGH
TOTOLINK A3002RU V3 <= V3.0.0-B20220304.1804 - Buffer Overflow
CVSS 7.5
CVE-2026-7151 HIGH
Tenda HG3 formIPv6Routing formUploadConfig stack-based overflow
CVSS 8.8
CVE-2026-7035 HIGH
Tenda FH1202 httpd WrlclientSet fromWrlclientSet stack-based overflow
CVSS 8.8
CVE-2026-7034 HIGH
Tenda FH1202 httpd WrlExtraSet stack-based overflow
CVSS 8.8
CVE-2026-41429 HIGH
Improper validation of NBNS name_len in arduino-esp32 NetBIOS leads to memory corruption
CVSS 8.8
CVE-2026-41681 CRITICAL
rust-openssl 0.10.39-0.10.77 - Memory Corruption
CVSS 9.8
CVE-2026-1951 CRITICAL
No checking of the length of the buffer with the directory name in AS320T
CVSS 9.8
CVE-2026-1950 CRITICAL
No checking of the length of the buffer with the file name in AS320T
CVSS 9.8
CVE-2026-26354 HIGH
Dell PowerProtect Data Domain - Buffer Overflow
CVSS 8.1
CVE-2026-40892 CRITICAL
PJSIP: Stack buffer overflow in pjsip_auth_create_digest2()
CVSS 9.8
CVE-2026-26951 MEDIUM
Dell PowerProtect Data Domain - Buffer Overflow
CVSS 6.7
CVE-2026-6643 CRITICAL
Asustor Inc. Adm < 4.3.3.RR42 - Buffer Overflow
CVSS 9.9
CVE-2026-32955 HIGH
Silex Technology, Inc. SD-330AC - Buffer Overflow
CVSS 8.8
CVE-2026-40489 HIGH
editorconfig-core-c has incomplete fix for CVE-2023-0341
CVE-2026-40170 HIGH
ngtcp2 has a qlog transport parameter serialization stack buffer overflow
CVSS 7.5
Details
Vulnerabilities 3,179
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits