CWE-134

High likelihood

Use of Externally-Controlled Format String

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product uses a function that accepts a format string as an argument, but the format string originates from an external source.

387 vulnerabilities with CWE-134
CVE-2026-12174 HIGH
D-Link DCS-935L HTTP rhea snprintf format string
CVSS 8.8
CVE-2026-6250 HIGH
Authenticated Format String Injection on TP-Link Tapo C110
CVE-2026-6242 MEDIUM
Authenticated Format String Vulnerability in ONVIF Subscribe Service on TP-Link Tapo C520WS
CVE-2026-6241 MEDIUM
Authenticated Format String Vulnerability in ONVIF AddScopes Method on TP-Link Tapo C520WS
CVE-2026-50211 CRITICAL
Acer Connect M6E 5G Portable WiFi Router - Exposed Factory Testing App Boundaries
CVSS 9.8
CVE-2026-7835 LOW
Netatalk 3.0.3-4.4.2 - Authenticated Denial of Service via Format String Argument Mismatch
CVSS 3.1
CVE-2026-6474 MEDIUM
PostgreSQL timeofday() can disclose portions of server memory
CVSS 4.3
CVE-2026-44407 MEDIUM
Remote Denial of Service Vulnerability Exists in ZTE Cloud PC Client uSmartview
CVSS 4.7
CVE-2026-6539 MEDIUM
Notepad++ 8.9.3 Format String Injection via nativeLang.xml
CVSS 4.4
CVE-2026-3008 MEDIUM
Vulnerability in Notepad++
CVSS 6.6
CVE-2026-6843 MEDIUM
Nano: nano: format string vulnerability leads to denial of service
CVSS 5.5
CVE-2026-3509 HIGH
CODESYS Control Audit Log Format String DoS
CVSS 7.5
CVE-2026-33210 CRITICAL
Ruby JSON allow_duplicate_key - Format String Injection
CVSS 9.1
CVE-2026-0400 MEDIUM
SonicOS < 7.3.2-7010 - Authenticated Denial of Service via Format String Vulnerability
CVSS 4.9
CVE-2026-21640 LOW
Revive Adserver 6.0.0-6.0.3 - Format String Injection in Settings
CVSS 2.7
CVE-2026-22190 HIGH
Panda3D <= 1.10.16 - Information Disclosure via egg-mkfont Glyph Pattern Format String
CVSS 7.5
CVE-2025-68648 HIGH
Fortinet FortiAnalyzer/FortiManager - Memory Corruption
CVSS 7.2
CVE-2025-30269 HIGH
Qsync Central <5.0.0.4 - Memory Corruption
CVSS 8.1
CVE-2025-64157 MEDIUM
FortiOS 7.0-7.6.4 - Authenticated Use of Externally-Controlled Format String via Configuration
CVSS 6.7
CVE-2025-68949 MEDIUM
n8n 1.36.0-2.1.9 - IP Whitelist Bypass via Partial String Matching
CVSS 5.3
CVE-2025-53591 MEDIUM
QNAP QTS and QuTS hero - Use of Externally-Controlled Format String
CVSS 6.5
CVE-2025-52666 LOW
Revive Adserver < 5.5.2 - Authenticated Format String Injection in Admin Settings
CVSS 2.7
CVE-2025-48826 HIGH
Planet WGR-500 <1.3411b190912 - Memory Corruption
CVSS 8.8
CVE-2025-53407 MEDIUM
QNAP QTS and QuTS hero - Use of Externally-Controlled Format String
CVSS 6.5
CVE-2025-53406 MEDIUM
QNAP QTS and QuTS hero - Use of Externally-Controlled Format String
CVSS 6.5
Details
Vulnerabilities 387
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits