Skip to main content

Product Directory Enterprise Compliance Pulse AI Analyst Compare Docs

Login Start Free

Loading...

Cloud security intelligence for modern infrastructure.

Stay informed

📬 Product updates & blog posts🛡️ CVE & vendor advisory alerts

Frequency:

Sent from noreply@echelongraph.io · Unsubscribe anytime

Product

Overview
Enterprise
Agents
AI Analyst
Pricing
Compare
vs. Competitors

Resources

CVE Pulse
Compliance Directory
Newsletter
Documentation
Readiness Calculator
Blog

Security Tools

Surface Scanner
AI Security Index
AI Threat Map
Shadow AI Radar
Shadow Engine Map

Company

Design Partners
Changelog
Contact

Legal

Privacy
Terms
Security
DPA

© 2026 EchelonGraph, Inc. All rights reserved.

SOC 2 Type IIISO 27001GDPRHIPAA Ready

Home›CVE Pulse›CWE-120

CWE-120— Buffer Copy without Checking Size (Classic Buffer Overflow)

4,164 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →

CVEs classified under CWE-120page 40 of 84

CVE-2022-47087HIGHCVSS 7.8EG 7.8
2023-01-05
GPAC MP4box 2.1-DEV-rev574-g9d5bb184b has a Buffer overflow in gf_vvc_read_pps_bs_internal function of media_tools/av_parsers.c
CVE-2022-47088HIGHCVSS 7.8EG 7.8
2023-01-05
GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Buffer Overflow.
CVE-2022-47089HIGHCVSS 7.8EG 7.8
2023-01-05
GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Buffer Overflow via gf_vvc_read_sps_bs_internal function of media_tools/av_parsers.c
CVE-2022-47090HIGHCVSS 7.8EG 7.8
2025-01-24
GPAC MP4box 2.1-DEV-rev574-g9d5bb184b contains a buffer overflow in gf_vvc_read_pps_bs_internal function of media_tools/av_parsers.c, check needed for num_exp_tile_columns
CVE-2022-47091HIGHCVSS 7.8EG 7.8
2023-01-05
GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Buffer Overflow in gf_text_process_sub function of filters/load_text.c
CVE-2022-47095HIGHCVSS 7.8EG 7.8
2023-01-05
GPAC MP4box 2.1-DEV-rev574-g9d5bb184b is vulnerable to Buffer overflow in hevc_parse_vps_extension function of media_tools/av_parsers.c
CVE-2022-47335MEDIUMCVSS 5.5EG 5.5
2023-04-11
In telecom service, there is a missing permission check. This could lead to local denial of service in telecom service.
CVE-2022-47336MEDIUMCVSS 5.5EG 5.5
2023-04-11
In telecom service, there is a missing permission check. This could lead to local denial of service in telecom service.
CVE-2022-47362MEDIUMCVSS 5.5EG 5.5
2023-04-11
In telecom service, there is a missing permission check. This could lead to local denial of service in telecom service.
CVE-2022-47463MEDIUMCVSS 5.5EG 5.5
2023-04-11
In telecom service, there is a missing permission check. This could lead to local denial of service in telecom service.
CVE-2022-47464MEDIUMCVSS 5.5EG 5.5
2023-04-11
In telecom service, there is a missing permission check. This could lead to local denial of service in telecom service.
CVE-2022-47487MEDIUMCVSS 5.5EG 5.5
2023-05-09
In thermal service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service local denial of service with no additional execution privileges.
CVE-2022-47491MEDIUMCVSS 4.4EG 4.4
2023-05-09
In soter service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
CVE-2022-47494MEDIUMCVSS 4.4EG 4.4
2023-05-09
In soter service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
CVE-2022-47495MEDIUMCVSS 4.4EG 4.4
2023-05-09
In soter service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
CVE-2022-47496MEDIUMCVSS 4.4EG 4.4
2023-05-09
In soter service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
CVE-2022-47497MEDIUMCVSS 4.4EG 4.4
2023-05-09
In soter service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
CVE-2022-47498MEDIUMCVSS 4.4EG 4.4
2023-05-09
In soter service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
CVE-2022-47499MEDIUMCVSS 4.4EG 4.4
2023-05-09
In soter service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
CVE-2022-47653HIGHCVSS 7.8EG 7.8
2023-01-05
GPAC MP4box 2.1-DEV-rev593-g007bf61a0 is vulnerable to Buffer Overflow in eac3_update_channels function of media_tools/av_parsers.c:9113
CVE-2022-47654HIGHCVSS 7.8EG 7.8
2023-01-05
GPAC MP4box 2.1-DEV-rev593-g007bf61a0 is vulnerable to Buffer Overflow in gf_hevc_read_sps_bs_internal function of media_tools/av_parsers.c:8261
CVE-2022-47656HIGHCVSS 7.8EG 7.8
2023-01-05
GPAC MP4box 2.1-DEV-rev617-g85ce76efd is vulnerable to Buffer Overflow in gf_hevc_read_sps_bs_internal function of media_tools/av_parsers.c:8273
CVE-2022-47657HIGHCVSS 7.8EG 7.8
2023-01-05
GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to buffer overflow in function hevc_parse_vps_extension of media_tools/av_parsers.c:7662
CVE-2022-47658HIGHCVSS 7.8EG 7.8
2023-01-05
GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to buffer overflow in function gf_hevc_read_vps_bs_internal of media_tools/av_parsers.c:8039
CVE-2022-47663HIGHCVSS 7.8EG 7.8
2023-01-05
GPAC MP4box 2.1-DEV-rev649-ga8f438d20 is vulnerable to buffer overflow in h263dmx_process filters/reframe_h263.c:609
CVE-2022-47664HIGHCVSS 7.8EG 7.8
2023-03-03
Libde265 1.0.9 is vulnerable to Buffer Overflow in ff_hevc_put_hevc_qpel_pixels_8_sse
CVE-2022-47949CRITICALCVSS 9.8EG 9.8
2022-12-24
The Nintendo NetworkBuffer class, as used in Animal Crossing: New Horizons before 2.0.6 and other products, allows remote attackers to execute arbitrary code via a large UDP packet that causes a buffer overflow, aka ENLBufferPwn. The victi…
CVE-2022-47990MEDIUMCVSS 6.2EG 7.8
2023-01-18
IBM AIX 7.1, 7.2, 7.3 and VIOS , 3.1 could allow a non-privileged local user to exploit a vulnerability in X11 to cause a buffer overflow that could result in a denial of service or arbitrary code execution. IBM X-Force ID: 243556.
CVE-2022-48196HIGHCVSS 7.4EG 9.8
2022-12-30
Certain NETGEAR devices are affected by a buffer overflow by an unauthenticated attacker. This affects RAX40 before 1.0.2.60, RAX35 before 1.0.2.60, R6400v2 before 1.0.4.122, R6700v3 before 1.0.4.122, R6900P before 1.3.3.152, R7000P before…
CVE-2022-48260HIGHCVSS 7.5EG 7.5
2023-02-27
There is a buffer overflow vulnerability in BiSheng-WNM FW 3.0.0.325. Successful exploitation could lead to device service exceptions.
CVE-2022-48439MEDIUMCVSS 4.4EG 4.4
2023-06-06
In cp_dump driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
CVE-2022-48475HIGHCVSS 8.2EG 8.8
2023-09-12
Buffer Overflow vulnerability in Control de Ciber version 1.650, in the printing function. Sending a modified request by the attacker could cause a Buffer Overflow when the adminitrator tries to accept or delete the print query created by …
CVE-2022-48490HIGHCVSS 7.5EG 7.5
2023-06-19
Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.
CVE-2022-48497HIGHCVSS 7.5EG 7.5
2023-06-19
Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.
CVE-2022-48501HIGHCVSS 7.5EG 7.5
2023-06-19
Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.
CVE-2022-4856MEDIUMCVSS 6.3EG 7.8
2022-12-30
A vulnerability has been found in Modbus Tools Modbus Slave up to 7.5.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the file mbslave.exe of the component mbs File Handler. The manipulation lead…
CVE-2022-4857MEDIUMCVSS 6.3EG 7.8
2022-12-30
A vulnerability was found in Modbus Tools Modbus Poll up to 9.10.0 and classified as critical. Affected by this issue is some unknown functionality of the file mbpoll.exe of the component mbp File Handler. The manipulation leads to buffer …
CVE-2022-48620CRITICALCVSS 9.8EG 9.8
2024-01-12
uev (aka libuev) before 2.4.1 has a buffer overflow in epoll_wait if maxevents is a large number.
CVE-2022-48657HIGHCVSS 7.8EG 7.8
2024-04-28
In the Linux kernel, the following vulnerability has been resolved: arm64: topology: fix possible overflow in amu_fie_setup() cpufreq_get_hw_max_freq() returns max frequency in kHz as *unsigned int*, while freq_inv_set_max_ratio() gets p…
CVE-2022-48681HIGHCVSS 7.2EG 7.2
2024-05-28
Some Huawei smart speakers have a memory overflow vulnerability. Successful exploitation of this vulnerability may cause certain functions to fail.
CVE-2022-48696MEDIUMCVSS 5.5EG 5.5
2024-05-03
In the Linux kernel, the following vulnerability has been resolved: regmap: spi: Reserve space for register address/padding Currently the max_raw_read and max_raw_write limits in regmap_spi struct do not take into account the additional …
CVE-2022-48948HIGHCVSS 7.8EG 7.8
2024-10-21
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: Prevent buffer overflow in setup handler Setup function uvc_function_setup permits control transfer requests with up to 64 bytes of payload (UVC_MAX_RE…
CVE-2022-49023HIGHCVSS 7.8EG 7.8
2024-10-21
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: fix buffer overflow in elem comparison For vendor elements, the code here assumes that 5 octets are present without checking. Since the element itself is…
CVE-2022-49040MEDIUMCVSS 4.4EG 4.4
2024-09-26
Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in connection management functionality in Synology Drive Client before 3.4.0-15721 allows local users with administrator privileges to crash the client vi…
CVE-2022-49041MEDIUMCVSS 4.4EG 4.4
2024-09-26
Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in backup task management functionality in Synology Drive Client before 3.4.0-15721 allows local users with administrator privileges to crash the client v…
CVE-2022-49058HIGHCVSS 7.8EG 7.8
2025-02-26
In the Linux kernel, the following vulnerability has been resolved: cifs: potential buffer overflow in handling symlinks Smatch printed a warning: arch/x86/crypto/poly1305_glue.c:198 poly1305_update_arch() error: __memcpy() 'dctx->buf'…
CVE-2022-4969MEDIUMCVSS 5.3EG 5.3
2024-05-27
A vulnerability, which was classified as critical, has been found in bwoodsend rockhopper up to 0.1.2. Affected by this issue is the function count_rows of the file rockhopper/src/ragged_array.c of the component Binary Parser. The manipula…
CVE-2022-49754HIGHCVSS 7.8EG 7.8
2025-03-27
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix a buffer overflow in mgmt_mesh_add() Smatch Warning: net/bluetooth/mgmt_util.c:375 mgmt_mesh_add() error: __memcpy() 'mesh_tx->param' too small (48 vs 50)…
CVE-2022-50687MEDIUMCVSS 5.5EG 6.2
2025-12-22
Cobian Backup 11 Gravity 11.2.0.582 contains a denial of service vulnerability in the FTP password input field that allows attackers to crash the application. Attackers can generate a specially crafted 800-byte buffer and paste it into the…
CVE-2022-50689MEDIUMCVSS 6.2EG 6.2
2025-12-22
Cobian Reflector 0.9.93 RC1 contains a denial of service vulnerability that allows attackers to crash the application by overflowing the password input field. Attackers can paste a large 8000-byte buffer into the password field to trigger …

← PreviousPage 40 of 84Next →

Map vulnerabilities like CWE-120 to your infrastructure

EchelonGraph correlates every CVE — across CWE-120 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.

Start Free Scan →