Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

CVEs (4,227)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-42800 1Moonlight Stream 7Moonlight Moonlight Common CMoonlight Embedded+4 more Jun 17, 2026 Dec 14, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Moonlight-common-c contains the core GameStream client code shared between Moonlight clients. Moonlight-common-c is vulnerable to buffer overflow starting in commit 50c0a51b10ecc5b3415ea78c21d96d679e2288f9 due to unmitig...Show more Moonlight-common-c contains the core GameStream client code shared between Moonlight clients. Moonlight-common-c is vulnerable to buffer overflow starting in commit 50c0a51b10ecc5b3415ea78c21d96d679e2288f9 due to unmitigated usage of unsafe C functions and improper bounds checking. A malicious game streaming server could exploit a buffer overflow vulnerability to crash a moonlight client, or achieve remote code execution (RCE) on the client (with insufficient exploit mitigations or if mitigations can be bypassed). The bug was addressed in commit 24750d4b748fefa03d09fcfd6d45056faca354e0.Show less
CVE-2023-42799 1Moonlight Stream 7Moonlight Moonlight Common CMoonlight Embedded+4 more Jun 17, 2026 Dec 14, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Moonlight-common-c contains the core GameStream client code shared between Moonlight clients. Moonlight-common-c is vulnerable to buffer overflow starting in commit 50c0a51b10ecc5b3415ea78c21d96d679e2288f9 due to unmitig...Show more Moonlight-common-c contains the core GameStream client code shared between Moonlight clients. Moonlight-common-c is vulnerable to buffer overflow starting in commit 50c0a51b10ecc5b3415ea78c21d96d679e2288f9 due to unmitigated usage of unsafe C functions and improper bounds checking. A malicious game streaming server could exploit a buffer overflow vulnerability to crash a moonlight client, or achieve remote code execution (RCE) on the client (with insufficient exploit mitigations or if mitigations can be bypassed). The bug was addressed in commit 02b7742f4d19631024bd766bd2bb76715780004e.Show less
CVE-2023-25642 1Zte 2Mc801a1 Firmware Mc801a Firmware Jun 17, 2026 Dec 14, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 There is a buffer overflow vulnerability in some ZTE mobile internet producsts. Due to insufficient validation of tcp port parameter, an authenticated attacker could use the vulnerability to perform a denial of service...Show more There is a buffer overflow vulnerability in some ZTE mobile internet producsts. Due to insufficient validation of tcp port parameter, an authenticated attacker could use the vulnerability to perform a denial of service attack. Show less
CVE-2023-50268 1Jqlang 1Jq Jun 17, 2026 Dec 13, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 jq is a command-line JSON processor. Version 1.7 is vulnerable to stack-based buffer overflow in builds using decNumber. Version 1.7.1 contains a patch for this issue.
CVE-2023-50246 1Jqlang 1Jq Jun 17, 2026 Dec 13, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 jq is a command-line JSON processor. Version 1.7 is vulnerable to heap-based buffer overflow. Version 1.7.1 contains a patch for this issue.
CVE-2023-49993 1Espeak Ng 1Espeak Ng Jun 17, 2026 Dec 12, 2023 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Espeak-ng 1.52-dev was discovered to contain a Buffer Overflow via the function ReadClause at readclause.c.
CVE-2023-49990 1Espeak Ng 1Espeak Ng Jun 17, 2026 Dec 12, 2023 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Espeak-ng 1.52-dev was discovered to contain a buffer-overflow via the function SetUpPhonemeTable at synthdata.c.
CVE-2023-46284 1Siemens 4Opcenter Quality Simatic Pcs NeoSinumerik Integrate Runmyhmi /automotive+1 more Jun 17, 2026 Dec 12, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 A vulnerability has been identified in Opcenter Execution Foundation (All versions < V2407), Opcenter Quality (All versions < V2312), SIMATIC PCS neo (All versions < V4.1), SINEC NMS (All versions < V2.0 SP1), Totally In...Show more A vulnerability has been identified in Opcenter Execution Foundation (All versions < V2407), Opcenter Quality (All versions < V2312), SIMATIC PCS neo (All versions < V4.1), SINEC NMS (All versions < V2.0 SP1), Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally Integrated Automation Portal (TIA Portal) V15.1 (All versions), Totally Integrated Automation Portal (TIA Portal) V16 (All versions), Totally Integrated Automation Portal (TIA Portal) V17 (All versions < V17 Update 8), Totally Integrated Automation Portal (TIA Portal) V18 (All versions < V18 Update 3). The affected application contains an out of bounds write past the end of an allocated buffer when handling specific requests on port 4002/tcp and 4004/tcp. This could allow an attacker to crash the application. The corresponding service is auto-restarted after the crash.Show less
CVE-2023-46283 1Siemens 4Opcenter Quality Simatic Pcs NeoSinumerik Integrate Runmyhmi /automotive+1 more Jun 17, 2026 Dec 12, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 A vulnerability has been identified in Opcenter Execution Foundation (All versions < V2407), Opcenter Quality (All versions < V2312), SIMATIC PCS neo (All versions < V4.1), SINEC NMS (All versions < V2.0 SP1), Totally In...Show more A vulnerability has been identified in Opcenter Execution Foundation (All versions < V2407), Opcenter Quality (All versions < V2312), SIMATIC PCS neo (All versions < V4.1), SINEC NMS (All versions < V2.0 SP1), Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally Integrated Automation Portal (TIA Portal) V15.1 (All versions), Totally Integrated Automation Portal (TIA Portal) V16 (All versions), Totally Integrated Automation Portal (TIA Portal) V17 (All versions < V17 Update 8), Totally Integrated Automation Portal (TIA Portal) V18 (All versions < V18 Update 3). The affected application contains an out of bounds write past the end of an allocated buffer when handling specific requests on port 4002/tcp. This could allow an attacker to crash the application. The corresponding service is auto-restarted after the crash.Show less
CVE-2023-50245 1Afichet 1Openexr Viewer Jun 17, 2026 Dec 11, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 OpenEXR-viewer is a viewer for OpenEXR files with detailed metadata probing. Versions prior to 0.6.1 have a memory overflow vulnerability. This issue is fixed in version 0.6.1.
CVE-2023-32975 1Qnap 2Qts Quts Hero Jun 17, 2026 Dec 8, 2023 N/A· v4 7.2 HIGH· v3 N/A· v2 A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via...Show more A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions: QTS 5.0.1.2514 build 20230906 and later QTS 5.1.2.2533 build 20230926 and later QuTS hero h5.0.1.2515 build 20230907 and later QuTS hero h5.1.2.2534 build 20230927 and later Show less
CVE-2023-32968 1Qnap 2Qts Quts Hero Jun 17, 2026 Dec 8, 2023 N/A· v4 7.2 HIGH· v3 N/A· v2 A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via...Show more A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions: QTS 5.0.1.2514 build 20230906 and later QTS 5.1.2.2533 build 20230926 and later QuTS hero h5.0.1.2515 build 20230907 and later QuTS hero h5.1.2.2534 build 20230927 and later Show less
CVE-2023-49468 1Struktur 1Libde265 Jun 17, 2026 Dec 7, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Libde265 v1.0.14 was discovered to contain a global buffer overflow vulnerability in the read_coding_unit function at slice.cc.
CVE-2023-41913 1Strongswan 1Strongswan Jun 17, 2026 Dec 7, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer in charon-tkm's DH proxy. The earliest affected version is 5.3.0. A...Show more strongSwan before 5.9.12 has a buffer overflow and possible unauthenticated remote code execution via a DH public value that exceeds the internal buffer in charon-tkm's DH proxy. The earliest affected version is 5.3.0. An attack can occur via a crafted IKE_SA_INIT message.Show less
CVE-2023-33092 1Qualcomm 90Aqt1000 Firmware Fastconnect 6200 FirmwareFastconnect 6700 Firmware+87 more Jun 17, 2026 Dec 5, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while processing pin reply in Bluetooth, when pin code received from APP layer is greater than expected size.
CVE-2023-33087 1Qualcomm 117Apq5053 Aa Firmware Ar8035 FirmwareCsra6620 Firmware+114 more Jun 17, 2026 Dec 5, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption in Core while processing RX intent request.
CVE-2023-33083 1Qualcomm 115Ar8035 Firmware Ar9380 FirmwareCsr8811 Firmware+112 more Jun 17, 2026 Dec 5, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Memory corruption in WLAN Host while processing RRM beacon on the AP.
CVE-2023-33082 1Qualcomm 115Ar8035 Firmware Ar9380 FirmwareCsr8811 Firmware+112 more Jun 17, 2026 Dec 5, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Memory corruption while sending an Assoc Request having BTM Query or BTM Response containing MBO IE.
CVE-2023-33024 1Qualcomm 718098 Firmware 8998 FirmwareAqt1000 Firmware+68 more Jun 17, 2026 Dec 5, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while sending SMS from AP firmware.
CVE-2023-33017 1Qualcomm 276315 5g Iot Modem Firmware 9205 Lte Modem Firmware9206 Lte Modem Firmware+273 more Jun 17, 2026 Dec 5, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption in Boot while running a ListVars test in UEFI Menu during boot.

Previous 1...102103104...212 Next