CWE-121— Stack-based Buffer Overflow
A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).— MITRE CWE catalog
3,266 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-121page 48 of 66
- CVE-2025-45787CRITICALCVSS 9.8EG 6.52025-05-08
TOTOLINK A3100R V5.9c.1527 is vulnerable to Buffer Overflow viathe comment parameter in setIpPortFilterRules.
- CVE-2025-45788CRITICALCVSS 9.8EG 6.52025-05-08
TOTOLINK A3100R V5.9c.1527 is vulnerable to Buffer Overflow via the comment parameter in setMacFilterRules.
- CVE-2025-45789CRITICALCVSS 9.8EG 6.52025-05-08
TOTOLINK A3100R V5.9c.1527 is vulnerable to buffer overflow via the urlKeyword parameter in setParentalRules.
- CVE-2025-45790CRITICALCVSS 9.8EG 6.52025-05-08
TOTOLINK A3100R V5.9c.1527 is vulnerable to Buffer Overflow via the priority parameter in the setMacQos interface of /lib/cste_modules/firewall.so.
- CVE-2025-45797CRITICALCVSS 9.8EG 6.52025-05-08
TOTOlink A950RG V4.1.2cu.5204_B20210112 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the NoticeUrl parameter in the setNoticeCfg interface of /lib/cste_modules/system.so.
- CVE-2025-45841CRITICALCVSS 9.8EG 6.52025-05-08
TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the text parameter in the setSmsCfg function.
- CVE-2025-45842HIGHCVSS 8.8EG 8.82025-05-08
TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the ssid5g parameter in the setWiFiEasyCfg function.
- CVE-2025-45843HIGHCVSS 8.8EG 8.82025-05-08
TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the ssid parameter in the setWiFiGuestCfg function.
- CVE-2025-45844HIGHCVSS 8.8EG 8.82025-05-08
TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the ssid parameter in the setWiFiBasicCfg function.
- CVE-2025-45845HIGHCVSS 8.8EG 8.82025-05-08
TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the ssid5g parameter in the setWiFiEasyGuestCfg function.
- CVE-2025-45846HIGHCVSS 8.8EG 8.82025-05-08
ALFA AIP-W512 v3.2.2.2.3 was discovered to contain an authenticated stack overflow via the torrentsindex parameter in the formBTClinetSetting function.
- CVE-2025-45847MEDIUMCVSS 6.5EG 6.52025-05-08
ALFA AIP-W512 v3.2.2.2.3 was discovered to contain an authenticated stack overflow via the targetAPMac parameter in the formWsc function.
- CVE-2025-45862MEDIUMCVSS 6.5EG 6.52025-05-20
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the interfacenameds parameter in the formDhcpv6s interface.
- CVE-2025-45867MEDIUMCVSS 5.4EG 6.52025-05-13
TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain a buffer overflow via the static_dns1 parameter in the formIpv6Setup interface.
- CVE-2025-46397HIGHCVSS 7.8EG 7.12025-04-23
A flaw was found in xfig. This vulnerability allows possible code execution via local input manipulation via bezier_spline function.
- CVE-2025-46398MEDIUMCVSS 5.5EG 7.12025-04-23
In xfig diagramming tool, a stack-overflow while running fig2dev allows memory corruption via local input manipulation via read_objects function.
- CVE-2025-46405HIGHCVSS 7.5EG 7.52025-08-13
When Network Access is configured on a BIG-IP APM virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not …
- CVE-2025-46411HIGHCVSS 8.1EG 8.12025-08-25
A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted MFER file can lead to arbitrary code execution. An attacker can pr…
- CVE-2025-46836MEDIUMCVSS 6.6EG 6.62025-05-14
net-tools is a collection of programs that form the base set of the NET-3 networking distribution for the Linux operating system. Inn versions up to and including 2.10, the Linux network utilities (like ifconfig) from the net-tools package…
- CVE-2025-47120MEDIUMCVSS 5.5EG 5.52025-07-08
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could lead to disclosure of sensitive memory. Exploitation of this issue requires user interaction in that a victim must …
- CVE-2025-47347HIGHCVSS 7.8EG 7.82025-10-09
Memory corruption while processing control commands in the virtual memory management interface.
- CVE-2025-47360HIGHCVSS 7.8EG 7.82025-11-04
Memory corruption while processing client message during device management.
- CVE-2025-47391HIGHCVSS 7.8EG 7.82026-04-06
Memory corruption while processing a frame request from user.
- CVE-2025-47758HIGHCVSS 7.8EG 7.82025-05-19
V-SFT v6.2.5.0 and earlier contains an issue with stack-based buffer overflow in VS6File!CTxSubFile::get_ProgramFile_name function. Opening specially crafted V7 or V8 files may lead to crash, information disclosure, and arbitrary code exec…
- CVE-2025-47759HIGHCVSS 7.8EG 7.82025-05-19
V-SFT v6.2.5.0 and earlier contains an issue with stack-based buffer overflow in VS6ComFile!CV7BaseMap::WriteV7DataToRom function. Opening specially crafted V7 or V8 files may lead to crash, information disclosure, and arbitrary code execu…
- CVE-2025-47760HIGHCVSS 7.8EG 7.82025-05-19
V-SFT v6.2.5.0 and earlier contains an issue with stack-based buffer overflow in VS6MemInIF!set_temp_type_default function. Opening specially crafted V7 or V8 files may lead to crash, information disclosure, and arbitrary code execution.
- CVE-2025-47806MEDIUMCVSS 5.6EG 5.62025-08-07
In GStreamer through 1.26.1, the subparse plugin's parse_subrip_time function may write data past the bounds of a stack buffer, leading to a crash.
- CVE-2025-48060HIGHCVSS 7.5EG 7.52025-05-21
jq is a command-line JSON processor. In versions up to and including 1.7.1, a heap-buffer-overflow is present in function `jv_string_vfmt` in the jq_fuzz_execute harness from oss-fuzz. This crash happens on file jv.c, line 1456 `void* p = …
- CVE-2025-4809HIGHCVSS 8.8EG 8.82025-05-16
A vulnerability was found in Tenda AC7 15.03.06.44. It has been classified as critical. Affected is the function fromSafeSetMacFilter of the file /goform/setMacFilterCfg. The manipulation of the argument deviceList leads to stack-based buf…
- CVE-2025-4810HIGHCVSS 8.8EG 8.82025-05-16
A vulnerability was found in Tenda AC7 15.03.06.44. It has been declared as critical. Affected by this vulnerability is the function formSetRebootTimer of the file /goform/SetRebootTimer. The manipulation of the argument reboot_time leads …
- CVE-2025-4841HIGHCVSS 8.8EG 8.82025-05-17
A vulnerability was found in D-Link DCS-932L 2.18.01 and classified as critical. Affected by this issue is the function sub_404780 of the file /bin/gpio. The manipulation of the argument CameraName leads to stack-based buffer overflow. The…
- CVE-2025-4842HIGHCVSS 8.8EG 8.82025-05-17
A vulnerability was found in D-Link DCS-932L 2.18.01. It has been declared as critical. This vulnerability affects the function isUCPCameraNameChanged of the file /sbin/ucp. The manipulation of the argument CameraName leads to stack-based …
- CVE-2025-4843HIGHCVSS 8.8EG 8.82025-05-18
A vulnerability was found in D-Link DCS-932L 2.18.01. It has been classified as critical. This affects the function SubUPnPCSInit of the file /sbin/udev. The manipulation of the argument CameraName leads to stack-based buffer overflow. It …
- CVE-2025-48721MEDIUMCVSS 6.5EG 6.52026-01-02
A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to modify memory or crash processes. We have …
- CVE-2025-48725HIGHCVSS 8.1EG 8.12026-02-11
A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes. We have already fi…
- CVE-2025-48796HIGHCVSS 7.3EG 7.32025-05-27
A flaw was found in GIMP. The GIMP ani_load_image() function is vulnerable to a stack-based overflow. If a user opens.ANI files, GIMP may be used to store more information than the capacity allows. This flaw allows a malicious ANI file to …
- CVE-2025-4883HIGHCVSS 7.2EG 7.22025-05-18
A vulnerability was found in D-Link DI-8100 16.07.26A1. It has been declared as critical. This vulnerability affects the function ctxz_asp of the file /ctxz.asp of the component Connection Limit Page. The manipulation of the argument def/d…
- CVE-2025-4890MEDIUMCVSS 5.3EG 5.32025-05-18
A vulnerability was found in code-projects Tourism Management System 1.0 and classified as critical. This issue affects the function LoginUser of the component Login User. The manipulation of the argument username/password leads to stack-b…
- CVE-2025-4892MEDIUMCVSS 5.3EG 5.32025-05-18
A vulnerability was found in code-projects Police Station Management System 1.0. It has been declared as critical. Affected by this vulnerability is the function criminal::remove of the file source.cpp of the component Delete Record. The m…
- CVE-2025-49527HIGHCVSS 7.8EG 7.82025-07-08
Illustrator versions 28.7.6, 29.5.1 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interact…
- CVE-2025-49528HIGHCVSS 7.8EG 7.82025-07-08
Illustrator versions 28.7.6, 29.5.1 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interact…
- CVE-2025-49564HIGHCVSS 7.8EG 7.82025-08-12
Illustrator versions 28.7.8, 29.6.1 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interact…
- CVE-2025-49589MEDIUMCVSS 6.1EG 6.12025-06-12
PCSX2 is a free and open-source PlayStation 2 (PS2) emulator. A stack-based buffer overflow exists in the Kprintf_HLE function of PCSX2 versions up to 2.3.414. Opening a disc image that logs a specially crafted message may allow a remote a…
- CVE-2025-50260HIGHCVSS 7.5EG 7.52025-07-03
Tenda AC6 v15.03.05.16_multi is vulnerable to Buffer Overflow in the formSetFirewallCfg function via the firewallEn parameter.
- CVE-2025-50464MEDIUMCVSS 6.5EG 6.52025-07-30
A buffer overflow vulnerability exists in the upload.cgi module of the iptime NAS firmware v1.5.04. The vulnerability arises due to the unsafe use of the strcpy function to copy attacker-controlled data from the CONTENT_TYPE HTTP header in…
- CVE-2025-50528HIGHCVSS 7.3EG 7.32025-06-27
A buffer overflow vulnerability exists in the fromNatStaticSetting function of Tenda AC6 <=V15.03.05.19 via the page parameter.
- CVE-2025-50655HIGHCVSS 7.5EG 7.52026-04-08
A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the name parameter in the /thd_group.asp endpoint.
- CVE-2025-50657HIGHCVSS 7.5EG 7.52026-04-08
A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the pid parameter in the /trace.asp endpoint.
- CVE-2025-50659HIGHCVSS 7.5EG 7.52026-04-08
A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the custom_error parameter in the /user.asp endpoint.
- CVE-2025-50660HIGHCVSS 7.5EG 7.52026-04-08
A buffer overflow vulnerability exists in D-Link DI-8003 16.07.26A1 due to improper handling of the name parameter in the /url_member.asp endpoint.
Map vulnerabilities like CWE-121 to your infrastructure
EchelonGraph correlates every CVE — across CWE-121 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →