CVEs classified under CWE-562, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2022-41837 — CVSS 9.8 (critical): An out-of-bounds write vulnerability exists in the OpenImageIO::add_exif_item_to_spec functionality of OpenImageIO Project OpenImageIO…
CVE-2021-21798 — CVSS 7.8 (high): An exploitable return of stack variable address vulnerability exists in the JavaScript implementation of Nitro Pro PDF. A specially crafted…
CVE-2024-4418 — CVSS 6.2 (medium): A race condition leading to a stack use-after-free flaw was found in libvirt. Due to a bad assumption in the virNetClientIOEventLoop()…
CVE-2020-21686 — CVSS 5.5 (medium): A stack-use-after-scope issue discovered in expand_mmac_params function in preproc.c in nasm before 2.15.04 allows remote attackers to…
CVE-2026-26399 — CVSS 5.3 (medium): A stack-use-after-return issue exists in the Arduino_Core_STM32 library prior to version 1.7.0. The pwm_start() function allocates a…
CVE-2026-34553 — CVSS 4.0 (medium): iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is a defect in…