CWE · MITRE source
CWE-805Buffer Access with Incorrect Length Value
The product uses a sequential operation to read or write a buffer, but it uses an incorrect length value that causes it to access memory that is outside of the bounds of the buffer.
When the length value exceeds the size of the destination, a buffer overflow could occur.
Last updated: 09 May 2026 03:25 UTC
NIST 800-53 r5 controls that address this weakness (0)AI
| Control | Title | Family | Why it addresses this CWE |
|---|---|---|---|
| No NIST controls proposed yet. | |||
Top CVEs of this weakness type, ranked by Risk Priority
| CVE | Risk | CVSS | EPSS | Published |
|---|---|---|---|---|
CVE-2020-14509 | 2.0 | 9.8 | 0.0028 | 2020-09-16 |
CVE-2023-20049 | 1.8 | 8.6 | 0.0109 | 2023-03-09 |
CVE-2025-23319 | 1.7 | 8.1 | 0.0120 | 2025-08-06 |
CVE-2025-20315 | 1.7 | 8.6 | 0.0014 | 2025-09-24 |
CVE-2024-37305 | 1.6 | 8.2 | 0.0014 | 2024-06-17 |
CVE-2025-20169 | 1.6 | 7.7 | 0.0053 | 2025-02-05 |
CVE-2025-20170 | 1.6 | 7.7 | 0.0053 | 2025-02-05 |
CVE-2025-20174 | 1.6 | 7.7 | 0.0053 | 2025-02-05 |
CVE-2025-20175 | 1.6 | 7.7 | 0.0053 | 2025-02-05 |
CVE-2025-23318 | 1.6 | 8.1 | 0.0034 | 2025-08-06 |
CVE-2025-38743 | 1.6 | 7.8 | 0.0002 | 2025-08-21 |
CVE-2020-16101 | 1.5 | 7.5 | 0.0039 | 2020-09-15 |
CVE-2021-31885 | 1.5 | 7.5 | 0.0039 | 2021-11-09 |
CVE-2022-47375 | 1.5 | 7.5 | 0.0023 | 2023-12-12 |
CVE-2023-52557 | 1.5 | 7.5 | 0.0006 | 2024-03-01 |
CVE-2023-5396 | 1.5 | 7.4 | 0.0085 | 2024-04-17 |
CVE-2024-24851 | 1.5 | 7.5 | 0.0047 | 2024-05-28 |
CVE-2025-21591 | 1.5 | 7.4 | 0.0013 | 2025-04-09 |
CVE-2025-30651 | 1.5 | 7.5 | 0.0040 | 2025-04-09 |
CVE-2025-20191 | 1.5 | 7.4 | 0.0010 | 2025-05-07 |
CVE-2025-20202 | 1.5 | 7.4 | 0.0009 | 2025-05-07 |
CVE-2025-36460 | 1.5 | 7.3 | 0.0002 | 2025-11-17 |
CVE-2025-36461 | 1.5 | 7.3 | 0.0002 | 2025-11-17 |
CVE-2025-36462 | 1.5 | 7.3 | 0.0002 | 2025-11-17 |
CVE-2025-36463 | 1.5 | 7.3 | 0.0002 | 2025-11-17 |