Falhas do tipo CWE-120
2.900 resultadosCVE-2023-22741CRITICALheap-over-flow in stun_parse_attribute in sofia-sipEPSS 2.4%CVE-2021-3185—A flaw was found in the gstreamer h264 component of gst-plugins-bad before v1.18.1 where when parsing a h264 header, an attacker could causeEPSS 2.4%CVE-2024-27280CRITICALA buffer-overread issue was discovered in StringIO 3.0.1, as distributed in Ruby 3.0.x through 3.0.6 and 3.1.x through 3.1.4. The ungetbyte EPSS 2.4%CVE-2022-41028HIGHSeveral stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210EPSS 2.4%CVE-2021-43303—Buffer overflow in PJSUA API when calling pjsua_call_dump. An attacker-controlled 'buffer' argument may cause a buffer overflow, since supplEPSS 2.3%CVE-2025-4450HIGHD-Link DIR-619L formSetEasy_Wizard buffer overflowEPSS 2.3%CVE-2025-4448HIGHD-Link DIR-619L formEasySetupWizard buffer overflowEPSS 2.3%CVE-2025-4452HIGHD-Link DIR-619L formSetWizard2 buffer overflowEPSS 2.3%CVE-2025-4449HIGHD-Link DIR-619L formEasySetupWizard3 buffer overflowEPSS 2.3%CVE-2025-4451HIGHD-Link DIR-619L formSetWAN_Wizard52 buffer overflowEPSS 2.3%CVE-2021-34828HIGHThis vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1330 1.13B01 BETA rouEPSS 2.3%CVE-2021-34829HIGHThis vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1330 1.13B01 BETA rouEPSS 2.3%CVE-2023-27585HIGHPJSIP is a free and open source multimedia communication library written in C. A buffer overflow vulnerability in versions 2.13 and prior afEPSS 2.3%CVE-2021-43082—heap-buffer-overflow with stats-over-http pluginEPSS 2.3%CVE-2020-8215—A buffer overflow is present in canvas version <= 1.6.9, which could lead to a Denial of Service or execution of arbitrary code when it procEPSS 2.3%CVE-2020-10022CRITICALUpdateHub Module Copies a Variable-Size Hash String Into a Fixed-Size ArrayEPSS 2.3%CVE-2023-41913CRITICALstrongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the intEPSS 2.3%CVE-2021-31895HIGHA vulnerability has been identified in RUGGEDCOM i800 (All versions < V4.3.7), RUGGEDCOM i801 (All versions < V4.3.7), RUGGEDCOM i802 (All vEPSS 2.3%CVE-2022-22687CRITICALBuffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in Authentication functionality in Synology DiskStationEPSS 2.3%CVE-2022-24764HIGHStack buffer overflow in pjprojectEPSS 2.3%