Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: languages Tag: cwe-120 Clear
ID Title
CVE-2026-29009 Vulnerability in c (CVE-2026-29009)
vulnerability in c (CVE-2026-29009). Risk of unauthorized operations or information disclosure.
CVE-2026-57246 Vulnerability in CVE-2026-57246 (CVE-2026-57246)
vulnerability in CVE-2026-57246 (CVE-2026-57246). Successful exploitation can lead to full system takeover.
CVE-2026-6688 Vulnerability in c (CVE-2026-6688)
vulnerability in c (CVE-2026-6688). Successful exploitation can lead to full system takeover.
CVE-2026-42450 Vulnerability in cpp (CVE-2026-42450)
vulnerability in cpp (CVE-2026-42450). Risk of unauthorized operations or information disclosure. Exploitable via ``sscanf``.
CVE-2025-26240 Vulnerability in pdfkit (CVE-2025-26240)
vulnerability in pdfkit (CVE-2025-26240). Successful exploitation can lead to full system takeover.
CVE-2026-0144 Vulnerability in cpp (CVE-2026-0144)
vulnerability in cpp (CVE-2026-0144). Risk of unauthorized operations or information disclosure.
CVE-2026-0160 Vulnerability in cpp (CVE-2026-0160)
vulnerability in cpp (CVE-2026-0160). Successful exploitation can lead to full system takeover.
CVE-2026-0146 Vulnerability in c (CVE-2026-0146)
vulnerability in c (CVE-2026-0146). Successful exploitation can lead to full system takeover.
CVE-2026-0147 Vulnerability in c (CVE-2026-0147)
vulnerability in c (CVE-2026-0147). Successful exploitation can lead to full system takeover.
CVE-2026-0141 Vulnerability in cpp (CVE-2026-0141)
vulnerability in cpp (CVE-2026-0141). Risk of unauthorized operations or information disclosure.
CVE-2026-0138 Vulnerability in c (CVE-2026-0138)
vulnerability in c (CVE-2026-0138). Successful exploitation can lead to full system takeover.
CVE-2026-54257 Vulnerability in electron (CVE-2026-54257)
vulnerability in electron (CVE-2026-54257). Risk of unauthorized operations or information disclosure. Exploitable via ``Buffer``. Mitigation: upgrade to `42.3.3` or later.
CVE-2026-49759 Vulnerability in c (CVE-2026-49759)
vulnerability in c (CVE-2026-49759). Risk of unauthorized operations or information disclosure.
CVE-2026-9698 Out-of-Bounds Write in perl (CVE-2026-9698)
out-of-bounds write in perl (CVE-2026-9698). Successful exploitation can lead to full system takeover.
CVE-2026-0056 Vulnerability in cpp (CVE-2026-0056)
vulnerability in cpp (CVE-2026-0056). Risk of unauthorized operations or information disclosure.
CVE-2026-10275 Buffer Overflow in c (CVE-2026-10275)
vulnerability in c (CVE-2026-10275). Risk of unauthorized operations or information disclosure.
CVE-2026-48686 Vulnerability in cpp (CVE-2026-48686)
vulnerability in cpp (CVE-2026-48686). Successful exploitation can lead to full system takeover.
CVE-2018-25356 Vulnerability in cpp (CVE-2018-25356)
vulnerability in cpp (CVE-2018-25356). Successful exploitation can lead to full system takeover.
CVE-2026-36189 Vulnerability in cpp (CVE-2026-36189)
vulnerability in cpp (CVE-2026-36189). Risk of unauthorized operations or information disclosure.
CVE-2024-48519 Vulnerability in cpp (CVE-2024-48519)
vulnerability in cpp (CVE-2024-48519). Risk of unauthorized operations or information disclosure.
CVE-2024-55045 Vulnerability in c (CVE-2024-55045)
vulnerability in c (CVE-2024-55045). Risk of unauthorized operations or information disclosure.
CVE-2026-42859 Vulnerability in c (CVE-2026-42859)
vulnerability in c (CVE-2026-42859). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.9.6` or later.
CVE-2026-8093 Buffer Overflow in mozilla (CVE-2026-8093)
vulnerability in mozilla (CVE-2026-8093). Successful exploitation can lead to full system takeover.
CVE-2026-6691 Vulnerability in c (CVE-2026-6691)
vulnerability in c (CVE-2026-6691). Successful exploitation can lead to full system takeover.
CVE-2026-20652 Vulnerability in java (CVE-2026-20652)
vulnerability in java (CVE-2026-20652). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.491` or later.
CVE-2026-20644 Buffer Overflow in java (CVE-2026-20644)
vulnerability in java (CVE-2026-20644). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.491` or later.
CVE-2026-20636 Buffer Overflow in java (CVE-2026-20636)
vulnerability in java (CVE-2026-20636). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.491` or later.
CVE-2026-20635 Buffer Overflow in java (CVE-2026-20635)
vulnerability in java (CVE-2026-20635). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.491` or later.
CVE-2026-20608 Vulnerability in java (CVE-2026-20608)
vulnerability in java (CVE-2026-20608). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.0, 8.0.491` or later.
CVE-2026-40170 ngtcp2 is a C implementation of the IETF QUIC protocol. In versions prior to 1.22.1, ngtcp2_qlog_parameters_set_transport_params() serializes peer transport parameters into a fixed 1024-byte stack buf...
ngtcp2 is a C implementation of the IETF QUIC protocol. In versions prior to 1.22.1, ngtcp2_qlog_parameters_set_transport_params() serializes peer transport parameters into a fixed 1024-byte stack buffer without bounds checking. When qlog is enabled, a remote peer can send sufficiently large transpo...
CVE-2026-27820 Vulnerability in zlib (CVE-2026-27820)
vulnerability in zlib (CVE-2026-27820). Successful exploitation can lead to full system takeover. Exploitable via ``zstream_buffer_ungets``. Mitigation: upgrade to `3.0.1` or later.
CVE-2025-31277 KEV [KEV] Buffer Overflow in Apple multiple-products (CVE-2025-31277)
vulnerability in Apple multiple-products (CVE-2025-31277). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2025-69720 Vulnerability in c (CVE-2025-69720)
vulnerability in c (CVE-2025-69720). Confidential information can be exposed externally.
CVE-2026-27459 Vulnerability in pyopenssl (CVE-2026-27459)
vulnerability in pyopenssl (CVE-2026-27459). Successful exploitation can lead to full system takeover. Exploitable via ``set_cookie_generate_callback``. Mitigation: upgrade to `26.0.0` or later.
CVE-2025-55131 Vulnerability in CVE-2025-55131 (CVE-2025-55131)
vulnerability in CVE-2025-55131 (CVE-2025-55131). Confidential information can be exposed externally. Exploitable via ``Buffer.alloc``.
CVE-2025-43213 Buffer Overflow in c (CVE-2025-43213)
vulnerability in c (CVE-2025-43213). Risk of unauthorized operations or information disclosure.
CVE-2025-43214 Buffer Overflow in c (CVE-2025-43214)
vulnerability in c (CVE-2025-43214). Risk of unauthorized operations or information disclosure.
CVE-2025-7345 Vulnerability in c (CVE-2025-7345)
vulnerability in c (CVE-2025-7345). Risk of unauthorized operations or information disclosure.
CVE-2024-57482 Vulnerability in c (CVE-2024-57482)
vulnerability in c (CVE-2024-57482). Successful exploitation can lead to full system takeover.
CVE-2024-23077 Vulnerability in jfree (CVE-2024-23077)
vulnerability in jfree (CVE-2024-23077). Confidential information can be exposed externally.
CVE-2021-47107 Vulnerability in c (CVE-2021-47107)
vulnerability in c (CVE-2021-47107). Successful exploitation can lead to full system takeover.
CVE-2023-38559 Out-of-Bounds Read in c (CVE-2023-38559)
vulnerability in c (CVE-2023-38559). Risk of unauthorized operations or information disclosure.
CVE-2021-44283 Vulnerability in cpp (CVE-2021-44283)
vulnerability in cpp (CVE-2021-44283). Confidential information can be exposed externally.
CVE-2023-26769 Vulnerability in c (CVE-2023-26769)
vulnerability in c (CVE-2023-26769). Risk of unauthorized operations or information disclosure.
CVE-2019-11043 KEV [KEV] Vulnerability in Php fastcgi-process-manager-fpm (CVE-2019-11043)
vulnerability in Php fastcgi-process-manager-fpm (CVE-2019-11043). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-12137 Vulnerability in c (CVE-2017-12137)
vulnerability in c (CVE-2017-12137). Successful exploitation can lead to full system takeover.
CVE-2017-12601 Vulnerability in cpp (CVE-2017-12601)
vulnerability in cpp (CVE-2017-12601). Successful exploitation can lead to full system takeover.
CVE-2017-11473 Vulnerability in c (CVE-2017-11473)
vulnerability in c (CVE-2017-11473). Successful exploitation can lead to full system takeover.
CVE-2017-0594 Vulnerability in cpp (CVE-2017-0594)
vulnerability in cpp (CVE-2017-0594). Successful exploitation can lead to full system takeover.
CVE-2017-6058 Vulnerability in c (CVE-2017-6058)
vulnerability in c (CVE-2017-6058). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →