CWE-121— Stack-based Buffer Overflow
A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).— MITRE CWE catalog
3,296 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-121page 64 of 66
- CVE-2026-50318HIGHCVSS 7.8EG 7.82026-07-14
Stack-based buffer overflow in Windows Resilient File System (ReFS) allows an authorized attacker to elevate privileges locally.
- CVE-2026-50355HIGHCVSS 7.5EG 7.52026-07-14
Stack-based buffer overflow in Active Directory Federation Services allows an unauthorized attacker to deny service over a network.
- CVE-2026-50368HIGHCVSS 7.5EG 7.52026-07-14
Stack-based buffer overflow in Active Directory Federation Services allows an unauthorized attacker to deny service over a network.
- CVE-2026-50387HIGHCVSS 7.8EG 7.82026-07-14
Stack-based buffer overflow in Windows GDI allows an authorized attacker to elevate privileges locally.
- CVE-2026-50400HIGHCVSS 7.8EG 7.82026-07-14
Stack-based buffer overflow in Windows App Installer allows an authorized attacker to elevate privileges locally.
- CVE-2026-50411HIGHCVSS 7.5EG 7.52026-07-14
Stack-based buffer overflow in Active Directory Federation Services (AD FS) allows an unauthorized attacker to deny service over a network.
- CVE-2026-50412HIGHCVSS 7.8EG 7.82026-07-14
Stack-based buffer overflow in Windows NTFS allows an authorized attacker to elevate privileges locally.
- CVE-2026-50501HIGHCVSS 7.8EG 7.82026-07-14
Stack-based buffer overflow in Windows Resilient File System (ReFS) allows an unauthorized attacker to execute code locally.
- CVE-2026-50695HIGHCVSS 7.5EG 7.52026-07-14
Stack-based buffer overflow in Active Directory Federation Services allows an unauthorized attacker to deny service over a network.
- CVE-2026-51105HIGHCVSS 7.5EG 0.02026-07-14
Buffer Overflow vulnerability in aMULE-Project aMule v.2.3.3 allows a remote attacker to cause a denial of service via the OP_SERVERMESSAGE Handler.
- CVE-2026-51601HIGHCVSS 7.5EG 7.52026-07-09
Tenda CP3 V3.0 firmware V31.1.9.91 contains a stack-based buffer overflow in the RTSP service. The device fails to validate the length of the clock= value in the Range header field when processing a PLAY request. An unauthenticated remote …
- CVE-2026-51602HIGHCVSS 7.5EG 7.52026-07-09
A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) allows an unauthenticated remote attacker to cause a denial of service via a crafted SETUP request. The RTSP service's second-stage URL…
- CVE-2026-51603HIGHCVSS 7.5EG 7.52026-07-09
A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) allows an unauthenticated remote attacker to cause a denial of service via a crafted second SETUP request. After completing the OPTIONS…
- CVE-2026-51604HIGHCVSS 7.5EG 7.52026-07-09
A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.91) allows an unauthenticated remote attacker to cause a denial of service via a crafted PLAY request.
- CVE-2026-51605HIGHCVSS 7.5EG 7.52026-07-09
A stack-based buffer overflow vulnerability in the RTSP service of Tenda CP3 V3.0 (firmware V31.1.9.991) allows an unauthenticated remote attacker to cause a denial of service via a crafted TEARDOWN request.
- CVE-2026-51843CRITICALCVSS 9.8EG 9.82026-06-19
Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface via the wanMTU parameter.
- CVE-2026-51844CRITICALCVSS 9.8EG 9.82026-06-19
Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface via the cloneType parameter.
- CVE-2026-51845CRITICALCVSS 9.8EG 9.82026-06-19
Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface via the mac parameter.
- CVE-2026-51846CRITICALCVSS 9.8EG 9.82026-06-19
In Tenda AC7 v15.03.06.44, the wanSpeed parameter of the route /goform/AdvSetMacMtuWan has a stack buffer overflow vulnerability that can lead to remote arbitrary code execution.
- CVE-2026-52190HIGHCVSS 7.5EG 7.52026-07-01
Buffer Overflow vulnerability in UTT nv518G nv518GV3v3.2.7-210919-161313 allows a remote attacker to cause a denial of service via the gohead/sub_448384 component
- CVE-2026-5245MEDIUMCVSS 5.6EG 5.62026-04-02
A vulnerability was found in Cesanta Mongoose up to 7.20. This impacts the function handle_mdns_record of the file mongoose.c of the component mDNS Record Handler. Performing a manipulation of the argument buf results in stack-based buffer…
- CVE-2026-5295HIGHCVSS 8.0EG 8.02026-04-09
A stack buffer overflow exists in wolfSSL's PKCS7 implementation in the wc_PKCS7_DecryptOri() function in wolfcrypt/src/pkcs7.c. When processing a CMS EnvelopedData message containing an OtherRecipientInfo (ORI) recipient, the function cop…
- CVE-2026-5349HIGHCVSS 8.8EG 8.82026-04-02
A vulnerability was identified in Trendnet TEW-657BRM 1.00.1. The affected element is the function add_apcdb of the file /setup.cgi. The manipulation of the argument mac_pc_dba leads to stack-based buffer overflow. The attack can be initia…
- CVE-2026-5350HIGHCVSS 8.8EG 8.82026-04-02
A security flaw has been discovered in Trendnet TEW-657BRM 1.00.1. The impacted element is the function update_pcdb of the file /setup.cgi. The manipulation of the argument mac_pc_dba results in stack-based buffer overflow. The attack can …
- CVE-2026-54502MEDIUMCVSS 6.3EG 6.32026-06-19
Oj (Optimized JSON) is a JSON parser and Object marshaller packaged as a Ruby gem. In versions prior to 3.17.2, Oj.dump is vulnerable to a stack-based buffer overflow when a large :indent value is provided by the developer. fill_indent in …
- CVE-2026-54983HIGHCVSS 7.5EG 7.52026-07-14
Stack-based buffer overflow in Active Directory Federation Services (AD FS) allows an unauthorized attacker to deny service over a network.
- CVE-2026-55038HIGHCVSS 7.8EG 7.82026-07-14
Stack-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally.
- CVE-2026-55055HIGHCVSS 7.8EG 7.82026-07-14
Stack-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally.
- CVE-2026-55134HIGHCVSS 7.8EG 7.82026-07-14
Stack-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally.
- CVE-2026-55141HIGHCVSS 7.8EG 7.82026-07-14
Stack-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2026-5525HIGHCVSS 7.8EG 6.02026-04-10
A stack-based buffer overflow vulnerability exists in Notepad++ version 8.9.3 in the file drop handler component. When a user drags and drops a directory path of exactly 259 characters without a trailing backslash, the application appends …
- CVE-2026-5544HIGHCVSS 8.8EG 8.82026-04-05
A security flaw has been discovered in UTT HiPER 1250GW up to 3.2.7-210907-180535. The impacted element is an unknown function of the file /goform/formRemoteControl. The manipulation of the argument Profile results in stack-based buffer ov…
- CVE-2026-5548HIGHCVSS 8.8EG 8.82026-04-05
A vulnerability was found in Tenda AC10 16.03.10.10_multi_TDE01. Affected by this vulnerability is the function fromSysToolChangePwd of the file /bin/httpd. Performing a manipulation of the argument sys.userpass results in stack-based buff…
- CVE-2026-5550HIGHCVSS 8.8EG 8.82026-04-05
A vulnerability was identified in Tenda AC10 16.03.10.10_multi_TDE01. This affects the function fromSysToolChangePwd of the file /bin/httpd. The manipulation leads to stack-based buffer overflow. The attack may be initiated remotely. Multi…
- CVE-2026-55687HIGHCVSS 7.5EG 7.52026-07-10
ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. Versions 6.0.1, 5.5.4, 5.4.4, 5.3.5, and possibly prior contain an out-of-bounds write in jpeg_parse_dqt_marker() in components/esp_driver_jpeg/jpeg_parse_marker.c be…
- CVE-2026-55738HIGHCVSS 8.8EG 8.82026-06-17
A stack-based buffer overflow exists in the raw_to_header() function in src/microtar.c in rxi microtar 0.1.0. The function copies the 100-byte name and linkname fields of a TAR header with strcpy() without guaranteeing null termination of …
- CVE-2026-55899HIGHCVSS 7.8EG 7.82026-07-14
Stack-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2026-5604HIGHCVSS 8.8EG 8.82026-04-05
A security flaw has been discovered in Tenda CH22 1.0.0.1. The impacted element is the function formCertLocalPrecreate of the file /goform/CertLocalPrecreate of the component Parameter Handler. Performing a manipulation of the argument sta…
- CVE-2026-5605HIGHCVSS 8.8EG 8.82026-04-06
A weakness has been identified in Tenda CH22 1.0.0.1. This affects the function formWrlExtraSet of the file /goform/WrlExtraSet. Executing a manipulation of the argument GO can lead to stack-based buffer overflow. The attack can be execute…
- CVE-2026-5608HIGHCVSS 8.8EG 8.82026-04-06
A vulnerability was detected in Belkin F9K1122 1.00.33. Affected is the function formWlanSetup of the file /goform/formWlanSetup. The manipulation of the argument webpage results in stack-based buffer overflow. The attack may be performed …
- CVE-2026-5609HIGHCVSS 8.8EG 8.82026-04-06
A flaw has been found in Tenda i12 1.0.0.11(3862). Affected by this vulnerability is the function formwrlSSIDset of the file /goform/wifiSSIDset of the component Parameter Handler. This manipulation of the argument index/wl_radio causes st…
- CVE-2026-5610HIGHCVSS 8.8EG 8.82026-04-06
A vulnerability has been found in Belkin F9K1015 1.00.10. Affected by this issue is the function formWISP5G of the file /goform/formWISP5G. Such manipulation of the argument webpage leads to stack-based buffer overflow. It is possible to l…
- CVE-2026-5611HIGHCVSS 8.8EG 8.82026-04-06
A vulnerability was found in Belkin F9K1015 1.00.10. This affects the function formCrossBandSwitch of the file /goform/formCrossBandSwitch. Performing a manipulation of the argument webpage results in stack-based buffer overflow. The attac…
- CVE-2026-5612HIGHCVSS 8.8EG 8.82026-04-06
A vulnerability was determined in Belkin F9K1015 1.00.10. This vulnerability affects the function formWlEncrypt of the file /goform/formWlEncrypt. Executing a manipulation of the argument webpage can lead to stack-based buffer overflow. Th…
- CVE-2026-5613HIGHCVSS 8.8EG 8.82026-04-06
A vulnerability was identified in Belkin F9K1015 1.00.10. This issue affects the function formReboot of the file /goform/formReboot. The manipulation of the argument webpage leads to stack-based buffer overflow. The attack may be initiated…
- CVE-2026-5614HIGHCVSS 8.8EG 8.82026-04-06
A security flaw has been discovered in Belkin F9K1015 1.00.10. Impacted is the function formSetPassword of the file /goform/formSetPassword. The manipulation of the argument webpage results in stack-based buffer overflow. The attack may be…
- CVE-2026-5628HIGHCVSS 8.8EG 8.82026-04-06
A security vulnerability has been detected in Belkin F9K1015 1.00.10. Impacted is the function formSetSystemSettings of the file /goform/formSetSystemSettings of the component Setting Handler. The manipulation of the argument webpage leads…
- CVE-2026-5629HIGHCVSS 8.8EG 8.82026-04-06
A vulnerability was detected in Belkin F9K1015 1.00.10. The affected element is the function formSetFirewall of the file /goform/formSetFirewall. The manipulation of the argument webpage results in stack-based buffer overflow. The attack c…
- CVE-2026-5654MEDIUMCVSS 5.5EG 5.52026-04-30
AMR-NB codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service
- CVE-2026-56642HIGHCVSS 8.8EG 8.82026-07-14
Stack-based buffer overflow in Microsoft Fabric Data Warehouse allows an authorized attacker to execute code over a network.
Map vulnerabilities like CWE-121 to your infrastructure
EchelonGraph correlates every CVE — across CWE-121 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →