Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

CVEs (4,226)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-1897 1Tenda 1Tx3 Firmware Jun 17, 2026 Mar 4, 2025 7.1 HIGH· v4 7.5 HIGH· v3 6.8 MEDIUM· v2 A vulnerability, which was classified as critical, has been found in Tenda TX3 16.03.13.11_multi. This issue affects some unknown processing of the file /goform/SetNetControlList. The manipulation of the argument list le...Show more A vulnerability, which was classified as critical, has been found in Tenda TX3 16.03.13.11_multi. This issue affects some unknown processing of the file /goform/SetNetControlList. The manipulation of the argument list leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.Show less
CVE-2025-1896 1Tenda 1Tx3 Firmware Jun 17, 2026 Mar 4, 2025 7.1 HIGH· v4 7.5 HIGH· v3 6.8 MEDIUM· v2 A vulnerability classified as critical was found in Tenda TX3 16.03.13.11_multi. This vulnerability affects unknown code of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to buffer overfl...Show more A vulnerability classified as critical was found in Tenda TX3 16.03.13.11_multi. This vulnerability affects unknown code of the file /goform/SetStaticRouteCfg. The manipulation of the argument list leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.Show less
CVE-2025-1895 1Tenda 1Tx3 Firmware Jun 17, 2026 Mar 4, 2025 7.1 HIGH· v4 7.5 HIGH· v3 6.8 MEDIUM· v2 A vulnerability classified as critical has been found in Tenda TX3 16.03.13.11_multi. This affects an unknown part of the file /goform/setMacFilterCfg. The manipulation of the argument deviceList leads to buffer overflow...Show more A vulnerability classified as critical has been found in Tenda TX3 16.03.13.11_multi. This affects an unknown part of the file /goform/setMacFilterCfg. The manipulation of the argument deviceList leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.Show less
CVE-2025-0689 1Gnu 1Grub2 Jun 25, 2026 Mar 3, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 When reading data from disk, the grub's UDF filesystem module utilizes the user controlled data length metadata to allocate its internal buffers. In certain scenarios, while iterating through disk sectors, it assumes the...Show more When reading data from disk, the grub's UDF filesystem module utilizes the user controlled data length metadata to allocate its internal buffers. In certain scenarios, while iterating through disk sectors, it assumes the read size from the disk is always smaller than the allocated buffer size which is not guaranteed. A crafted filesystem image may lead to a heap-based buffer overflow resulting in critical data to be corrupted, resulting in the risk of arbitrary code execution by-passing secure boot protections.Show less
CVE-2024-53027 1Qualcomm 206205 Firmware Apq8017 FirmwareAr8035 Firmware+203 more Jun 17, 2026 Mar 3, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 Transient DOS may occur while processing the country IE.
CVE-2024-43055 1Qualcomm 14Fastconnect 6900 Firmware Fastconnect 7800 FirmwareSdm429w Firmware+11 more Jun 17, 2026 Mar 3, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while processing camera use case IOCTL call.
CVE-2025-25280 - - Jun 17, 2026 Mar 3, 2025 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Buffer overflow vulnerability exists in FutureNet AS series (Industrial Routers) and FA series (Protocol Conversion Machine) provided by Century Systems Co., Ltd. If this vulnerability is exploited, a remote unauthentica...Show more Buffer overflow vulnerability exists in FutureNet AS series (Industrial Routers) and FA series (Protocol Conversion Machine) provided by Century Systems Co., Ltd. If this vulnerability is exploited, a remote unauthenticated attacker may reboot the device by sending a specially crafted request.Show less
CVE-2025-1864 1Radare 1Radare2 Jun 17, 2026 Mar 3, 2025 10.0 CRITICAL· v4 9.8 CRITICAL· v3 N/A· v2 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in radareorg radare2 allows Overflow Buffers.This issue affects radare2: before <5.9.9.
CVE-2025-1852 1Totolink 1Ex1800t Firmware Jun 17, 2026 Mar 3, 2025 8.7 HIGH· v4 9.8 CRITICAL· v3 9.0 HIGH· v2 A vulnerability has been found in Totolink EX1800T 9.1.0cu.2112_B20220316 and classified as critical. This vulnerability affects the function loginAuth of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument p...Show more A vulnerability has been found in Totolink EX1800T 9.1.0cu.2112_B20220316 and classified as critical. This vulnerability affects the function loginAuth of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument password leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.Show less
CVE-2025-1786 1Rizin 1Rizin Jun 17, 2026 Mar 1, 2025 4.8 MEDIUM· v4 7.8 HIGH· v3 4.3 MEDIUM· v2 A vulnerability was found in rizinorg rizin up to 0.7.4. It has been rated as critical. This issue affects the function msf_stream_directory_free in the library /librz/bin/pdb/pdb.c. The manipulation of the argument -P l...Show more A vulnerability was found in rizinorg rizin up to 0.7.4. It has been rated as critical. This issue affects the function msf_stream_directory_free in the library /librz/bin/pdb/pdb.c. The manipulation of the argument -P leads to buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. Upgrading to version 0.8.0 is able to address this issue. It is recommended to upgrade the affected component.Show less
CVE-2025-25723 1Gpac 1Gpac Jun 17, 2026 Feb 28, 2025 N/A· v4 8.4 HIGH· v3 N/A· v2 Buffer Overflow vulnerability in GPAC version 2.5 allows a local attacker to execute arbitrary code.
CVE-2025-25635 1Totolink 1A3002r Firmware Jun 17, 2026 Feb 28, 2025 N/A· v4 8.0 HIGH· v3 N/A· v2 TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the pppoe_dns1 parameter in the formIpv6Setup interface of /bin/boa.
CVE-2025-25610 1Totolink 1A3002r Firmware Jun 17, 2026 Feb 28, 2025 N/A· v4 8.0 HIGH· v3 N/A· v2 TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the static_gw parameter in the formIpv6Setup interface of /bin/boa.
CVE-2025-25609 1Totolink 1A3002r Firmware Jun 17, 2026 Feb 28, 2025 N/A· v4 8.0 HIGH· v3 N/A· v2 TOTOlink A3002R V1.1.1-B20200824.0128 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the static_ipv6 parameter in the formIpv6Setup interface of /bin/boa
CVE-2024-51139 1Draytek 23Vigor1000b Firmware Vigor2133 FirmwareVigor2135 Firmware+20 more Jun 17, 2026 Feb 27, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Buffer Overflow vulnerability in Vigor2620/LTE200 3.9.8.9 and earlier and Vigor2860/2925 3.9.8 and earlier and Vigor2862/2926 3.9.9.5 and earlier and Vigor2133/2762/2832 3.9.9 and earlier and Vigor165/166 4.2.7 and earli...Show more Buffer Overflow vulnerability in Vigor2620/LTE200 3.9.8.9 and earlier and Vigor2860/2925 3.9.8 and earlier and Vigor2862/2926 3.9.9.5 and earlier and Vigor2133/2762/2832 3.9.9 and earlier and Vigor165/166 4.2.7 and earlier and Vigor2135/2765/2766 4.4.5.1 and earlier and Vigor2865/2866/2927 4.4.5.3 and earlier and Vigor2962/3910 4.3.2.8/4.4.3.1 and earlier and Vigor3912 4.3.6.1 and earlier allows a remote attacker to execute arbitrary code via the CGI parser's handling of the "Content-Length" header of HTTP POST requests.Show less
CVE-2025-21780 1Linux 1Linux Kernel Jun 17, 2026 Feb 27, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: avoid buffer overflow attach in smu_sys_set_pp_table() It malicious user provides a small pptable through sysfs and then a bigger pptable,...Show more In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: avoid buffer overflow attach in smu_sys_set_pp_table() It malicious user provides a small pptable through sysfs and then a bigger pptable, it may cause buffer overflow attack in function smu_sys_set_pp_table().Show less
CVE-2022-49267 1Linux 1Linux Kernel Mar 24, 2026 Feb 26, 2025 N/A· v4 N/A· v3 N/A· v2 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVE-2022-49058 1Linux 1Linux Kernel Jun 17, 2026 Feb 26, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 In the Linux kernel, the following vulnerability has been resolved: cifs: potential buffer overflow in handling symlinks Smatch printed a warning: arch/x86/crypto/poly1305_glue.c:198 poly1305_update_arch() error: __m...Show more In the Linux kernel, the following vulnerability has been resolved: cifs: potential buffer overflow in handling symlinks Smatch printed a warning: arch/x86/crypto/poly1305_glue.c:198 poly1305_update_arch() error: __memcpy() 'dctx->buf' too small (16 vs u32max) It's caused because Smatch marks 'link_len' as untrusted since it comes from sscanf(). Add a check to ensure that 'link_len' is not larger than the size of the 'link_str' buffer.Show less
CVE-2025-1587 1Razormist 1Telecom Billing Management System Jun 17, 2026 Feb 23, 2025 4.8 MEDIUM· v4 7.8 HIGH· v3 4.3 MEDIUM· v2 A vulnerability was found in SourceCodester Telecom Billing Management System 1.0. It has been rated as critical. This issue affects the function addrecords of the file main.cpp of the component Add New Record. The manip...Show more A vulnerability was found in SourceCodester Telecom Billing Management System 1.0. It has been rated as critical. This issue affects the function addrecords of the file main.cpp of the component Add New Record. The manipulation of the argument name/phonenumber leads to buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well.Show less
CVE-2025-25510 1Tenda 1Ac8 Firmware Jun 17, 2026 Feb 21, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Tenda AC8 V16.03.34.06 is vulnerable to Buffer Overflow in the get_parentControl_list_Info function.

Previous 1...606162...212 Next