CWE · MITRE source
CWE-131Incorrect Calculation of Buffer Size
The product does not correctly calculate the size to be used when allocating a buffer, which could lead to a buffer overflow.
Last updated: 20 May 2026 11:03 UTC
NIST 800-53 r5 controls that address this weakness (0)AI
| Control | Title | Family | Why it addresses this CWE |
|---|---|---|---|
| No NIST controls proposed yet. | |||
Top CVEs of this weakness type, ranked by Risk Priority
| CVE | Risk | CVSS | EPSS | Published |
|---|---|---|---|---|
CVE-2023-36824 | 6.8 | 7.4 | 0.8900 | 2023-07-11 |
CVE-2020-17087 KEV | 4.9 | 7.8 | 0.2165 | 2020-11-11 |
CVE-2008-0599 UPD | 4.3 | 9.8 | 0.3887 | 2008-05-05 |
CVE-2020-8450 | 4.2 | 7.3 | 0.4631 | 2020-02-04 |
CVE-2005-3120 | 3.8 | 9.8 | 0.3044 | 2005-10-17 |
CVE-2004-1363 | 3.6 | 9.8 | 0.2766 | 2004-08-04 |
CVE-2005-2103 | 3.5 | 9.8 | 0.2585 | 2005-08-16 |
CVE-2020-11901 | 3.5 | 9.0 | 0.2901 | 2020-06-17 |
CVE-2001-0334 | 3.3 | 7.5 | 0.3056 | 2001-06-27 |
CVE-2004-0434 | 3.3 | 9.8 | 0.2237 | 2004-07-07 |
CVE-2003-0899 | 3.2 | 9.8 | 0.2046 | 2003-11-03 |
CVE-2002-1347 | 2.6 | 9.8 | 0.0998 | 2002-12-18 |
CVE-2001-0248 | 2.3 | 9.8 | 0.0532 | 2001-06-18 |
CVE-2018-1000224 | 2.3 | 7.5 | 0.1316 | 2018-08-20 |
CVE-2001-0249 | 2.2 | 9.8 | 0.0470 | 2001-06-18 |
CVE-2023-24819 | 2.1 | 9.8 | 0.0153 | 2023-04-24 |
CVE-2024-23621 | 2.1 | 10.0 | 0.0094 | 2024-01-26 |
CVE-2024-23622 | 2.1 | 10.0 | 0.0095 | 2024-01-26 |
CVE-2019-10627 | 2.0 | 9.8 | 0.0056 | 2019-11-21 |
CVE-2019-10500 | 2.0 | 9.8 | 0.0036 | 2019-12-18 |
CVE-2020-15350 | 2.0 | 9.8 | 0.0046 | 2020-07-07 |
CVE-2021-27378 | 2.0 | 9.8 | 0.0047 | 2021-02-18 |
CVE-2021-0254 | 2.0 | 9.8 | 0.0064 | 2021-04-22 |
CVE-2021-21824 | 2.0 | 9.8 | 0.0043 | 2021-06-11 |
CVE-2022-33211 | 2.0 | 9.8 | 0.0029 | 2023-04-13 |