CWE-805 · Buffer Access with Incorrect Length Value
38 CVEs classified under CWE-805 (Buffer Access with Incorrect Length Value). Browse by severity and year.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-20315 | High | 8.6 | 2025-09-24 | A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a… |
CVE-2023-20049 | High | 8.6 | 2023-03-09 | A vulnerability in the bidirectional forwarding detection (BFD) hardware offload feature of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Service… |
CVE-2024-37305 | High | 8.2 | 2024-06-17 | oqs-provider is a provider for the OpenSSL 3 cryptography library that adds support for post-quantum cryptography in TLS, X.509, and S/MIME using post-quantum… |
CVE-2025-23319 | High | 8.1 | 2025-08-06 | NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability in the Python backend, where an attacker could cause an out-of-bounds write by se… |
CVE-2025-23318 | High | 8.1 | 2025-08-06 | NVIDIA Triton Inference Server for Windows and Linux contains a vulnerability in the Python backend, where an attacker could cause an out-of-bounds write. A su… |
CVE-2025-38743 | High | 7.8 | 2025-08-21 | Dell iDRAC Service Module (iSM), versions prior to 6.0.3.0, contains a Buffer Access with Incorrect Length Value vulnerability. A low privileged attacker with… |
CVE-2025-20169 | High | 7.7 | 2025-02-05 | A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause a DoS condition on… |
CVE-2025-63547 | High | 7.5 | 2026-05-01 | An issue in Eprosima Micro-XREC-DDS Agent v.3.0.1 allows a remote attacker to cause a denial of service via a crafted packet to the MTU length field |
CVE-2025-30651 | High | 7.5 | 2025-04-09 | A Buffer Access with Incorrect Length Value vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unau… |
CVE-2024-24851 | High | 7.5 | 2024-05-28 | A heap-based buffer overflow vulnerability exists in the Programming Software Connection FiBurn functionality of AutomationDirect P3-550E 1.2.10.9. A specially… |
CVE-2022-47375 | High | 7.5 | 2023-12-12 | A vulnerability has been identified in SIMATIC PC-Station Plus (All versions), SIMATIC S7-400 CPU 412-2 PN V7 (All versions), SIMATIC S7-400 CPU 414-3 PN/DP V7… |
CVE-2020-16101 | High | 7.5 | 2020-09-15 | It is possible for an unauthenticated remote DCOM websocket connection to crash the Command Centre service due to an out-of-bounds buffer access. Affected vers… |
CVE-2026-20033 | High | 7.4 | 2026-02-25 | A vulnerability in Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) con… |
CVE-2026-20010 | High | 7.4 | 2026-02-25 | A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause the LLDP… |
CVE-2025-20202 | High | 7.4 | 2025-05-07 | A vulnerability in Cisco IOS XE Wireless Controller Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on… |
CVE-2025-20191 | High | 7.4 | 2025-05-07 | A vulnerability in the Switch Integrated Security Features (SISF) of Cisco IOS Software, Cisco IOS XE Software, Cisco NX-OS Software, and Cisco Wireless LAN Co… |
CVE-2025-21591 | High | 7.4 | 2025-04-09 | A Buffer Access with Incorrect Length Value vulnerability in the jdhcpd daemon of Juniper Networks Junos OS, when DHCP snooping is enabled, allows an unauthent… |
CVE-2023-5396 | High | 7.4 | 2024-04-17 | Server receiving a malformed message creates connection for a hostname that may cause a stack overflow resulting in possible remote code execution. See Honeywe… |
CVE-2025-36463 | High | 7.3 | 2025-11-17 | Multiple out-of-bounds read and write vulnerabilities exist in the ControlVault WBDI Driver Broadcom Storage Adapter functionality of Dell ControlVault3 prior… |
CVE-2025-36462 | High | 7.3 | 2025-11-17 | Multiple out-of-bounds read and write vulnerabilities exist in the ControlVault WBDI Driver Broadcom Storage Adapter functionality of Dell ControlVault3 prior… |