Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

CVEs (4,227)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-30593 1Tenda 1Fh1202 Firmware Jun 17, 2026 Mar 28, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda FH1202 v1.2.0.14(408) has a stack overflow vulnerability located in the deviceName parameter of the formSetDeviceName function.
CVE-2023-45929 1Jedsoft 1S Lang Jun 17, 2026 Mar 27, 2024 N/A· v4 9.1 CRITICAL· v3 N/A· v2 S-Lang 2.3.2 was discovered to contain a segmentation fault via the function fixup_tgetstr().
CVE-2024-25580 1Qt 1Qt Jun 17, 2026 Mar 27, 2024 N/A· v4 6.2 MEDIUM· v3 N/A· v2 An issue was discovered in gui/util/qktxhandler.cpp in Qt before 5.15.17, 6.x before 6.2.12, 6.3.x through 6.5.x before 6.5.5, and 6.6.x before 6.6.2. A buffer overflow and application crash can occur via a crafted KTX i...Show more An issue was discovered in gui/util/qktxhandler.cpp in Qt before 5.15.17, 6.x before 6.2.12, 6.3.x through 6.5.x before 6.5.5, and 6.6.x before 6.6.2. A buffer overflow and application crash can occur via a crafted KTX image file.Show less
CVE-2024-25395 1Rt Thread 1Rt Thread Jun 17, 2026 Mar 27, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 A buffer overflow occurs in utilities/rt-link/src/rtlink.c in RT-Thread through 5.0.2.
CVE-2024-25394 1Rt Thread 1Rt Thread Jun 17, 2026 Mar 27, 2024 N/A· v4 4.3 MEDIUM· v3 N/A· v2 A buffer overflow occurs in utilities/ymodem/ry_sy.c in RT-Thread through 5.0.2 because of an incorrect sprintf call or a missing '\0' character.
CVE-2024-2452 1Eclipse 1Threadx Netx Duo Jun 17, 2026 Mar 26, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 In Eclipse ThreadX NetX Duo before 6.4.0, if an attacker can control parameters of __portable_aligned_alloc() could cause an integer wrap-around and an allocation smaller than expected. This could cause subsequent hea...Show more In Eclipse ThreadX NetX Duo before 6.4.0, if an attacker can control parameters of __portable_aligned_alloc() could cause an integer wrap-around and an allocation smaller than expected. This could cause subsequent heap buffer overflows.Show less
CVE-2023-6175 1Wireshark 1Wireshark Jun 17, 2026 Mar 26, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 NetScreen file parser crash in Wireshark 4.0.0 to 4.0.10 and 3.6.0 to 3.6.18 allows denial of service via crafted capture file
CVE-2024-29195 1Microsoft 1Azure C Shared Utility Jun 17, 2026 Mar 26, 2024 N/A· v4 8.1 HIGH· v3 N/A· v2 The azure-c-shared-utility is a C library for AMQP/MQTT communication to Azure Cloud Services. This library may be used by the Azure IoT C SDK for communication between IoT Hub and IoT Hub devices. An attacker can cause...Show more The azure-c-shared-utility is a C library for AMQP/MQTT communication to Azure Cloud Services. This library may be used by the Azure IoT C SDK for communication between IoT Hub and IoT Hub devices. An attacker can cause an integer wraparound or under-allocation or heap buffer overflow due to vulnerabilities in parameter checking mechanism, by exploiting the buffer length parameter in Azure C SDK, which may lead to remote code execution. Requirements for RCE are 1. Compromised Azure account allowing malformed payloads to be sent to the device via IoT Hub service, 2. By passing IoT hub service max message payload limit of 128KB, and 3. Ability to overwrite code space with remote code. Fixed in commit https://github.com/Azure/azure-c-shared-utility/commit/1129147c38ac02ad974c4c701a1e01b2141b9fe2.Show less
CVE-2023-47430 1Readymedia Project 1Readymedia Jun 17, 2026 Mar 25, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Stack-buffer-overflow vulnerability in ReadyMedia (MiniDLNA) v1.3.3 allows attackers to cause a denial of service via via the SendContainer() function at tivo_commands.c.
CVE-2021-47172 1Linux 1Linux Kernel Jun 17, 2026 Mar 25, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In the Linux kernel, the following vulnerability has been resolved: iio: adc: ad7124: Fix potential overflow due to non sequential channel numbers Channel numbering must start at 0 and then not have any holes, or it is...Show more In the Linux kernel, the following vulnerability has been resolved: iio: adc: ad7124: Fix potential overflow due to non sequential channel numbers Channel numbering must start at 0 and then not have any holes, or it is possible to overflow the available storage. Note this bug was introduced as part of a fix to ensure we didn't rely on the ordering of child nodes. So we need to support arbitrary ordering but they all need to be there somewhere. Note I hit this when using qemu to test the rest of this series. Arguably this isn't the best fix, but it is probably the most minimal option for backporting etc. Alexandru's sign-off is here because he carried this patch in a larger set that Jonathan then applied.Show less
CVE-2024-29244 1Szlbt 1Lbt T300 Mini1 Firmware Jun 17, 2026 Mar 21, 2024 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Shenzhen Libituo Technology Co., Ltd LBT-T300-mini v1.2.9 was discovered to contain a buffer overflow via the pin_code_3g parameter at /apply.cgi.
CVE-2024-29243 1Szlbt 1Lbt T300 Mini1 Firmware Jun 17, 2026 Mar 21, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Shenzhen Libituo Technology Co., Ltd LBT-T300-mini v1.2.9 was discovered to contain a buffer overflow via the vpn_client_ip parameter at /apply.cgi.
CVE-2024-28583 1Freeimage Project 1Freeimage Jun 17, 2026 Mar 20, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the readLine() function when reading images in XPM format.
CVE-2024-28576 1Freeimage Project 1Freeimage Jun 17, 2026 Mar 20, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the opj_j2k_tcp_destroy() function when reading images in J2K format.
CVE-2024-28570 1Freeimage Project 1Freeimage Jun 17, 2026 Mar 20, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the processMakerNote() function when reading images in JPEG format.
CVE-2024-28569 1Freeimage Project 1Freeimage Jun 17, 2026 Mar 20, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to execute arbitrary code via the Imf_2_2::Xdr::read() function when reading images in EXR format.
CVE-2024-28565 1Freeimage Project 1Freeimage Jun 17, 2026 Mar 20, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the psdParser::ReadImageData() function when reading images in PSD format.
CVE-2024-28564 1Freeimage Project 1Freeimage Jun 17, 2026 Mar 20, 2024 N/A· v4 6.2 MEDIUM· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the Imf_2_2::CharPtrIO::readChars() function when reading images in EXR format.
CVE-2023-52614 1Linux 1Linux Kernel Jun 17, 2026 Mar 18, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Fix buffer overflow in trans_stat_show Fix buffer overflow in trans_stat_show(). Convert simple snprintf to the more secure scnprintf w...Show more In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Fix buffer overflow in trans_stat_show Fix buffer overflow in trans_stat_show(). Convert simple snprintf to the more secure scnprintf with size of PAGE_SIZE. Add condition checking if we are exceeding PAGE_SIZE and exit early from loop. Also add at the end a warning that we exceeded PAGE_SIZE and that stats is disabled. Return -EFBIG in the case where we don't have enough space to write the full transition table. Also document in the ABI that this function can return -EFBIG error.Show less
CVE-2023-52612 2Debian Linux 2Debian Linux Linux Kernel Jun 17, 2026 Mar 18, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 In the Linux kernel, the following vulnerability has been resolved: crypto: scomp - fix req->dst buffer overflow The req->dst buffer size should be checked before copying from the scomp_scratch->dst to avoid req->dst b...Show more In the Linux kernel, the following vulnerability has been resolved: crypto: scomp - fix req->dst buffer overflow The req->dst buffer size should be checked before copying from the scomp_scratch->dst to avoid req->dst buffer overflow problem.Show less

Previous 1...959697...212 Next