Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

CVEs (4,226)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-24157 1Apple 1Macos Jun 17, 2026 Mar 31, 2025 N/A· v4 5.6 MEDIUM· v3 N/A· v2 A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An app may be able to cause unexpected system termination or corr...Show more A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. An app may be able to cause unexpected system termination or corrupt kernel memory.Show less
CVE-2024-24456 - - Jun 17, 2026 Mar 31, 2025 N/A· v4 5.9 MEDIUM· v3 N/A· v2 An E-RAB Release Command packet containing a malformed NAS PDU will cause the Athonet MME to immediately crash, potentially due to a buffer overflow.
CVE-2023-33302 1Fortinet 2Fortimail Fortindr Jun 17, 2026 Mar 31, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 A buffer copy without checking size of input ('classic buffer overflow') in Fortinet FortiMail webmail and administrative interface version 6.4.0 through 6.4.4 and before 6.2.6 and FortiNDR administrative interface vers...Show more A buffer copy without checking size of input ('classic buffer overflow') in Fortinet FortiMail webmail and administrative interface version 6.4.0 through 6.4.4 and before 6.2.6 and FortiNDR administrative interface version 7.2.0 and before 7.1.0 allows an authenticated attacker with regular webmail access to trigger a buffer overflow and to possibly execute unauthorized code or commands via specifically crafted HTTP requests.Show less
CVE-2025-28221 1Tenda 1W6 S Firmware Jun 17, 2026 Mar 28, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda W6_S v1.0.0.4_510 has a Buffer Overflow vulnerability in the set_local_time function, which allows remote attackers to cause web server crash via parameter time passed to the binary through a POST request.
CVE-2025-28220 1Tenda 1W6 S Firmware Jun 17, 2026 Mar 28, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda W6_S v1.0.0.4_510 has a Buffer Overflow vulnerability in the setcfm function, which allows remote attackers to cause web server crash via parameter funcpara1 passed to the binary through a POST request.
CVE-2022-49754 1Linux 1Linux Kernel Jun 17, 2026 Mar 27, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix a buffer overflow in mgmt_mesh_add() Smatch Warning: net/bluetooth/mgmt_util.c:375 mgmt_mesh_add() error: __memcpy() 'mesh_tx->param' t...Show more In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix a buffer overflow in mgmt_mesh_add() Smatch Warning: net/bluetooth/mgmt_util.c:375 mgmt_mesh_add() error: __memcpy() 'mesh_tx->param' too small (48 vs 50) Analysis: 'mesh_tx->param' is array of size 48. This is the destination. u8 param[sizeof(struct mgmt_cp_mesh_send) + 29]; // 19 + 29 = 48. But in the caller 'mesh_send' we reject only when len > 50. len > (MGMT_MESH_SEND_SIZE + 31) // 19 + 31 = 50.Show less
CVE-2025-28361 1Telesquare 1Tlr 2005ksh Firmware Jun 17, 2026 Mar 26, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 Unauthorized stack overflow vulnerability in Telesquare TLR-2005KSH v.1.1.4 allows a remote attacker to obtain sensitive information via the systemutil.cgi component.
CVE-2025-26011 1Telesquare 1Tlr 2005ksh Firmware Jun 17, 2026 Mar 26, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Telesquare TLR-2005KSH 1.1.4 has an unauthorized stack overflow vulnerability when requesting the admin.cgi parameter with setUsernamePassword.
CVE-2025-26008 1Telesquare 1Tlr 2005ksh Firmware Jun 17, 2026 Mar 26, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In Telesquare TLR-2005KSH 1.1.4, an unauthorized stack overflow vulnerability exists when requesting admin.cgi parameter with setSyncTimeHost.
CVE-2025-26007 1Telesquare 1Tlr 2005ksh Firmware Jun 17, 2026 Mar 26, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Telesquare TLR-2005KSH 1.1.4 has an unauthorized stack overflow vulnerability in the login interface when requesting systemtil.cgi.
CVE-2025-26006 1Telesquare 1Tlr 2005ksh Firmware Jun 17, 2026 Mar 26, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Telesquare TLR-2005KSH 1.1.4 has an unauthorized stack overflow vulnerability when requesting the admin.cgi parameter with setAutorest.
CVE-2025-26005 1Telesquare 1Tlr 2005ksh Firmware Jun 17, 2026 Mar 26, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Telesquare TLR-2005KSH 1.1.4 is vulnerable to unauthorized stack overflow vulnerability when requesting admin.cgi parameter with setNtp.
CVE-2025-26004 1Telesquare 1Tlr 2005ksh Firmware Jun 17, 2026 Mar 26, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Telesquare TLR-2005KSH 1.1.4 is vulnerable to unauthorized stack buffer overflow vulnerability when requesting admin.cgi parameter with setDdns.
CVE-2025-26002 1Telesquare 1Tlr 2005ksh Firmware Jun 17, 2026 Mar 26, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Telesquare TLR-2005KSH 1.1.4 is affected by an unauthorized stack overflow vulnerability when requesting the admin.cgi parameter with setSyncTimeHost.
CVE-2025-27836 1Artifex 1Ghostscript Jun 17, 2026 Mar 25, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue was discovered in Artifex Ghostscript before 10.05.0. The BJ10V device has a Print buffer overflow in contrib/japanese/gdev10v.c.
CVE-2025-27835 1Artifex 1Ghostscript Jun 17, 2026 Mar 25, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 An issue was discovered in Artifex Ghostscript before 10.05.0. A buffer overflow occurs when converting glyphs to Unicode in psi/zbfont.c.
CVE-2025-27834 1Artifex 1Ghostscript Jun 17, 2026 Mar 25, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 An issue was discovered in Artifex Ghostscript before 10.05.0. A buffer overflow occurs via an oversized Type 4 function in a PDF document to pdf/pdf_func.c.
CVE-2025-27833 1Artifex 1Ghostscript Jun 17, 2026 Mar 25, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 An issue was discovered in Artifex Ghostscript before 10.05.0. A buffer overflow occurs for a long TTF font name to pdf/pdf_fmap.c.
CVE-2025-27832 1Artifex 1Ghostscript Jun 17, 2026 Mar 25, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue was discovered in Artifex Ghostscript before 10.05.0. The NPDL device has a Compression buffer overflow for contrib/japanese/gdevnpdl.c.
CVE-2025-27831 1Artifex 1Ghostscript Jun 17, 2026 Mar 25, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue was discovered in Artifex Ghostscript before 10.05.0. The DOCXWRITE TXTWRITE device has a text buffer overflow via long characters to devices/vector/doc_common.c.

Previous 1...585960...212 Next