CWE-121 · Stack-based Buffer Overflow

3439 CVEs classified under CWE-121 (Stack-based Buffer Overflow). Browse by severity and year.

Top CVEs for CWE-121
CVESeverityScorePublishedSummary
CVE-2026-12848Critical10.02026-06-24GV-I/O Box 4E is a smart embedded device with 4 input and 4 relays output that can be controlled over Ethernet and RS-485. DVRSearch is a service running by d…
CVE-2026-12847Critical10.02026-06-24GV-I/O Box 4E is a smart embedded device with 4 input and 4 relays output that can be controlled over Ethernet and RS-485. DVRSearch is a service running by d…
CVE-2026-12846Critical10.02026-06-24GV-I/O Box 4E is a smart embedded device with 4 input and 4 relays output that can be controlled over Ethernet and RS-485. DVRSearch is a service running by d…
CVE-2026-12485Critical10.02026-06-24GV-I/O Box 4E is a smart embedded device with 4 input and 4 relays output that can be controlled over Ethernet and RS-485. DVRSearch is a service running by d…
CVE-2026-37541Critical10.02026-05-01Buffer overflow vulnerability in Open Vehicle Monitoring System 3 (OVMS3) 3.3.005. In canformat_gvret.cpp, the length field in GVRET binary data is not properl…
CVE-2017-20230Critical10.02026-04-21Storable versions before 3.05 for Perl has a stack overflow. The retrieve_hook function stored the length of the class name into a signed integer but in read…
CVE-2025-54328Critical10.02026-04-06An issue was discovered in SMS in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400…
CVE-2024-36258Critical10.02025-01-14A stack-based buffer overflow vulnerability exists in the touchlist_sync.cgi touchlistsync() functionality of Wavlink AC3000 M33A8.V5030.210505. A specially cr…
CVE-2024-39791Critical10.02024-08-12Stack-based buffer overflow vulnerabilities affecting Vonets industrial wifi bridge relays and wifi bridge repeaters, software versions 3.3.23.6.9 and…
CVE-2023-3943Critical10.02024-05-21Stack-based Buffer Overflow vulnerability in ZkTeco-based OEM devices allows, in some cases, the execution of arbitrary code. Due to the lack of protection mec…
CVE-2021-26730Critical10.02022-10-24A stack-based buffer overflow vulnerability in a subfunction of the Login_handler_func function of spx_restservice allows an attacker to execute arbitrary code…
CVE-2021-26729Critical10.02022-10-24Command injection and multiple stack-based buffer overflows vulnerabilities in the Login_handler_func function of spx_restservice allow an attacker to execute…
CVE-2021-26728Critical10.02022-10-24Command injection and stack-based buffer overflow vulnerabilities in the KillDupUsr_func function of spx_restservice allow an attacker to execute arbitrary cod…
CVE-2021-26727Critical10.02022-10-24Multiple command injections and stack-based buffer overflows vulnerabilities in the SubNet_handler_func function of spx_restservice allow an attacker to execut…
CVE-2022-2972Critical10.02022-09-23MZ Automation's libIEC61850 (versions 1.4 and prior; version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e) is vulnerable to a stack-based buffe…
CVE-2022-2970Critical10.02022-09-23MZ Automation's libIEC61850 (versions 1.4 and prior; version 1.5 prior to commit a3b04b7bc4872a5a39e5de3fdc5fbde52c09e10e) does not sanitize input before memcp…
CVE-2022-20749Critical10.02022-02-10Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbi…
CVE-2022-20712Critical10.02022-02-10Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbi…
CVE-2022-20711Critical10.02022-02-10Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbi…
CVE-2022-20710Critical10.02022-02-10Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbi…