CWE-121

High likelihood

Stack-based Buffer Overflow

Parent: CWE-788 - Access of Memory Location After End of Buffer

A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

3,424 vulnerabilities with CWE-121
CVE-2023-6095 HIGH
Hanwha Vision HRX-1620 <= 3.05.62 - HTTP Header Remote Code Execution
CVSS 8.9
CVE-2023-51792 LOW
libde265 1.0.12 - Stack-based Buffer Overflow via Allocation Size Exceeding Maximum
CVSS 3.3
CVE-2023-50007 MEDIUM
FFmpeg 6.1-3-g466799d4f5 - Stack-based Buffer Overflow in av_samples_set_silence
CVSS 4.0
CVE-2023-5407 MEDIUM
Honeywell C300 - Denial of Service via Crafted Message Handling
CVSS 5.9
CVE-2023-5403 HIGH
Honeywell Experion Server - Remote Code Execution via Hostname Translation
CVSS 8.1
CVE-2023-5401 HIGH
Honeywell Experion Server - Stack-based Buffer Overflow via Malformed Message
CVSS 8.1
CVE-2023-5395 HIGH
Honeywell Experion Server - Stack-based Buffer Overflow via Hostname Table Processing
CVSS 8.1
CVE-2023-49913 HIGH
TP-Link EAP225/EAP115 Firmware - Authenticated Stack-based Buffer Overflow via Radio Scheduling Action Parameter
CVSS 7.2
CVE-2023-49912 HIGH
TP-Link EAP225/EAP115 Firmware - Authenticated Stack-based Buffer Overflow via Radio Scheduling Profile Parameter
CVSS 7.2
CVE-2023-49911 HIGH
TP-Link EAP225/EAP115 Firmware - Authenticated Stack-based Buffer Overflow via Radio Scheduling Band Parameter
CVSS 7.2
CVE-2023-49910 HIGH
TP-Link EAP225/EAP115 Firmware - Authenticated Stack-based Buffer Overflow via SSID Parameter
CVSS 7.2
CVE-2023-49909 HIGH
TP-Link EAP225 v5.1.0 Stack Overflow via Radio Scheduling
CVSS 7.2
CVE-2023-49908 HIGH
TP-Link EAP225 V3 5.1.0 Buffer Overflow via Radio Scheduling
CVSS 7.2
CVE-2023-49907 HIGH
TP-Link EAP225 v5.1.0 Authenticated Stack Overflow via Radio Scheduling
CVSS 7.2
CVE-2023-49906 HIGH
TP-Link EAP225 V3 v5.1.0 Build 20220926 - Authenticated Stack-based Buffer Overflow via Radio Scheduling SSID Parameter
CVSS 7.2
CVE-2023-48724 HIGH
TP-Link EAP225 V3 v5.1.0 Build 20220926 - Unauthenticated Denial of Service via Crafted HTTP POST Request
CVSS 7.5
CVE-2023-48906 MEDIUM
Btstack <= 1.6 - Denial of Service via char_for_nibble Function
CVSS 4.3
CVE-2023-45924 CRITICAL
OpenGL libglvnd <bb06db5a - Memory Corruption
CVSS 9.8
CVE-2023-51147 HIGH
TRENDnet AC1200 TEW-821D - Buffer Overflow
CVSS 8.0
CVE-2023-51146 HIGH
TRENDnet AC1200 TEW-821D - Buffer Overflow
CVSS 8.0
CVE-2023-51148 HIGH
TRENDnet TEW-821DAP Firmware 3.00b06 - Remote Code Execution via mycli Command-Line Interface
CVSS 8.0
CVE-2023-42790 HIGH
FortiOS/FortiProxy Stack-based Buffer Overflow via HTTP Requests
CVSS 8.1
CVE-2023-48725 HIGH
Netgear RAX30 <1.0.11.96, <1.0.7.78 - Buffer Overflow
CVSS 7.2
CVE-2023-43549 HIGH
Qualcomm FastConnect and AR8035/CSR8811 Firmware - Memory Corruption in TPC Target Power Table
CVSS 8.4
CVE-2023-50734 CRITICAL
Lexmark various - Stack-based Buffer Overflow in PostScript Interpreter
CVSS 9.0
Details
Vulnerabilities 3,424
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits