Home/CWE/Stack-based Buffer Overflow
Weakness

Stack-based Buffer Overflow

CWE-121 · Variant · Draft

A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

Weakness Relationships

Where this weakness sits in the CWE hierarchy. Walk up to broader classes or down to more specific variants.
Parent of this (broader)
ChildOfCWE-787 · Out-of-bounds Write
ChildOfCWE-788 · Access of Memory Location After End of Buffer

CVEs With This Weakness

3,247
A sample of the 3,247 CVEs tagged with this weakness.
CVECVE-2026-8836
CVECVE-2026-8733
CVECVE-2026-8258
CVECVE-2026-8234
CVECVE-2026-8138
CVECVE-2026-7851
CVECVE-2026-7834
CVECVE-2026-7546
CVECVE-2026-7470
CVECVE-2026-7151
CVECVE-2026-7035
CVECVE-2026-7034

Nuclei Scanner Templates

2
Open-source Nuclei templates that detect this weakness class - an actionable scan-for-it pivot. Licensed under the ProjectDiscovery / Nuclei terms.
criticalIvanti Connect Secure - Stack-based Buffer Overflow
criticalSonicWall SMA100 Stack - Buffer Overflow/Remote Code Execution
External lookups - second-class, for what we don’t hold ourselves
MITRE CWE
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin