Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

CVEs (4,227)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-38922 1Netgear 3Jwnr2000v2 Firmware Xavn2001v2 FirmwareXwn5001 Firmware Jun 17, 2026 Aug 7, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Netgear JWNR2000v2 v1.0.0.11, XWN5001 v0.4.1.1, and XAVN2001v2 v0.4.0.7 were discovered to contain multiple buffer overflows via the http_passwd and http_username parameters in the update_auth function.
CVE-2023-38591 1Netgear 1Dg834gv5 Firmware Jun 17, 2026 Aug 7, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Netgear DG834Gv5 1.6.01.34 was discovered to contain multiple buffer overflows via the wla_ssid and wla_temp_ssid parameters at bsw_ssid.cgi.
CVE-2023-38412 1Netgear 1R6900p Firmware Jun 17, 2026 Aug 7, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Netgear R6900P v1.3.3.154 was discovered to contain multiple buffer overflows via the wla_ssid and wlg_ssid parameters at ia_ap_setting.cgi.
CVE-2023-36499 1Netgear 1Xr300 Firmware Jun 17, 2026 Aug 7, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Netgear XR300 v1.0.3.78 was discovered to contain multiple buffer overflows via the wla_ssid and wlg_ssid parameters at genie_ap_wifi_change.cgi.
CVE-2023-3766 1Cloudflare 1Odoh Rs Jun 17, 2026 Aug 3, 2023 N/A· v4 5.9 MEDIUM· v3 N/A· v2 A vulnerability was discovered in the odoh-rs rust crate that stems from faulty logic during the parsing of encrypted queries. This issue specifically occurs when processing encrypted query data received from remote clie...Show more A vulnerability was discovered in the odoh-rs rust crate that stems from faulty logic during the parsing of encrypted queries. This issue specifically occurs when processing encrypted query data received from remote clients and enables an attacker with knowledge of this vulnerability to craft and send specially designed encrypted queries to targeted ODOH servers running with odoh-rs. Upon successful exploitation, the server will crash abruptly, disrupting its normal operation and rendering the service temporarily unavailable. Show less
CVE-2023-3346 1Mitsubishielectric 21C80 Firmware E70 FirmwareE80 Firmware+18 more Jun 17, 2026 Aug 3, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in MITSUBSHI CNC Series allows a remote unauthenticated attacker to cause Denial of Service (DoS) condition and execute arbitrary code...Show more Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in MITSUBSHI CNC Series allows a remote unauthenticated attacker to cause Denial of Service (DoS) condition and execute arbitrary code on the product by sending specially crafted packets. In addition, system reset is required for recovery.Show less
CVE-2023-31431 1Broadcom 1Brocade Fabric Operating System Jun 17, 2026 Aug 2, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A buffer overflow vulnerability in “diagstatus” command in Brocade Fabric OS before Brocade Fabric v9.2.0 and v9.1.1c could allow an authenticated user to crash the Brocade Fabric OS switch leading to a denial of service...Show more A buffer overflow vulnerability in “diagstatus” command in Brocade Fabric OS before Brocade Fabric v9.2.0 and v9.1.1c could allow an authenticated user to crash the Brocade Fabric OS switch leading to a denial of service.Show less
CVE-2023-31430 1Broadcom 1Brocade Fabric Operating System Jun 17, 2026 Aug 2, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A buffer overflow vulnerability in “secpolicydelete” command in Brocade Fabric OS before Brocade Fabric OS v9.1.1c and v9.2.0 could allow an authenticated privileged user to crash the Brocade Fabric OS switch leading to...Show more A buffer overflow vulnerability in “secpolicydelete” command in Brocade Fabric OS before Brocade Fabric OS v9.1.1c and v9.2.0 could allow an authenticated privileged user to crash the Brocade Fabric OS switch leading to a denial of service.Show less
CVE-2023-3494 1Freebsd 1Freebsd Jun 17, 2026 Aug 1, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 The fwctl driver implements a state machine which is executed when a bhyve guest accesses certain x86 I/O ports. The interface lets the guest copy a string into a buffer resident in the bhyve process' memory. A bug in...Show more The fwctl driver implements a state machine which is executed when a bhyve guest accesses certain x86 I/O ports. The interface lets the guest copy a string into a buffer resident in the bhyve process' memory. A bug in the state machine implementation can result in a buffer overflowing when copying this string. Malicious, privileged software running in a guest VM can exploit the buffer overflow to achieve code execution on the host in the bhyve userspace process, which typically runs as root, mitigated by the capabilities assigned through the Capsicum sandbox available to the bhyve process.Show less
CVE-2023-38559 4Artifex DebianFedoraproject+1 more 4Debian Linux Enterprise LinuxFedora+1 more Jun 23, 2026 Aug 1, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A buffer overflow flaw was found in base/gdevdevn.c:1973 in devn_pcx_write_rle() in ghostscript. This issue may allow a local attacker to cause a denial of service via outputting a crafted PDF file for a DEVN device with...Show more A buffer overflow flaw was found in base/gdevdevn.c:1973 in devn_pcx_write_rle() in ghostscript. This issue may allow a local attacker to cause a denial of service via outputting a crafted PDF file for a DEVN device with gs.Show less
CVE-2023-4055 2Debian Mozilla 2Debian Linux Firefox Jun 17, 2026 Aug 1, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 When the number of cookies per domain was exceeded in `document.cookie`, the actual cookie jar sent to the host was no longer consistent with expected cookie jar state. This could have caused requests to be sent with som...Show more When the number of cookies per domain was exceeded in `document.cookie`, the actual cookie jar sent to the host was no longer consistent with expected cookie jar state. This could have caused requests to be sent with some cookies missing. This vulnerability affects Firefox < 116, Firefox ESR < 102.14, and Firefox ESR < 115.1.Show less
CVE-2023-38590 1Apple 5Ipados Iphone OsMacos+2 more Jun 17, 2026 Jul 28, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A buffer overflow issue was addressed with improved memory handling. This issue is fixed in watchOS 9.6, macOS Big Sur 11.7.9, iOS 15.7.8 and iPadOS 15.7.8, macOS Monterey 12.6.8, tvOS 16.6, iOS 16.6 and iPadOS 16.6, mac...Show more A buffer overflow issue was addressed with improved memory handling. This issue is fixed in watchOS 9.6, macOS Big Sur 11.7.9, iOS 15.7.8 and iPadOS 15.7.8, macOS Monterey 12.6.8, tvOS 16.6, iOS 16.6 and iPadOS 16.6, macOS Ventura 13.5. A remote user may be able to cause unexpected system termination or corrupt kernel memory.Show less
CVE-2023-33802 1Sumatrapdfreader 1Sumatrapdf Jun 17, 2026 Jul 26, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A buffer overflow in SumatraPDF Reader v3.4.6 allows attackers to cause a Denial of Service (DoS) via a crafted text file.
CVE-2023-38671 1Paddlepaddle 1Paddlepaddle Jun 17, 2026 Jul 26, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Heap buffer overflow in paddle.trace in PaddlePaddle before 2.5.0. This flaw can lead to a denial of service, information disclosure, or more damage is possible.
CVE-2023-35982 2Arubanetworks Hp 2Arubaos Instantos Jun 17, 2026 Jul 25, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point managemen...Show more There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point management protocol) UDP port (8211). Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged user on the underlying operating system.Show less
CVE-2023-35981 2Arubanetworks Hp 2Arubaos Instantos Jun 17, 2026 Jul 25, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point managemen...Show more There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point management protocol) UDP port (8211). Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged user on the underlying operating system.Show less
CVE-2023-35980 2Arubanetworks Hp 2Arubaos Instantos Jun 17, 2026 Jul 25, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point managemen...Show more There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point management protocol) UDP port (8211). Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged user on the underlying operating system.Show less
CVE-2023-21406 1Axis 1A1001 Firmware Jun 17, 2026 Jul 25, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Ariel Harush and Roy Hodir from OTORIO have found a flaw in the AXIS A1001 when communicating over OSDP. A heap-based buffer overflow was found in the pacsiod process which is handling the OSDP communication allowing to...Show more Ariel Harush and Roy Hodir from OTORIO have found a flaw in the AXIS A1001 when communicating over OSDP. A heap-based buffer overflow was found in the pacsiod process which is handling the OSDP communication allowing to write outside of the allocated buffer. By appending invalid data to an OSDP message it was possible to write data beyond the heap allocated buffer. The data written outside the buffer could be used to execute arbitrary code. lease refer to the Axis security advisory for more information, mitigation and affected products and software versions.Show less
CVE-2022-41793 1Openbabel 1Open Babel Jun 17, 2026 Jul 21, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 An out-of-bounds write vulnerability exists in the CSR format title functionality of Open Babel 3.1.1 and master commit 530dbfa3. A specially crafted malformed file can lead to arbitrary code execution. An attacker can p...Show more An out-of-bounds write vulnerability exists in the CSR format title functionality of Open Babel 3.1.1 and master commit 530dbfa3. A specially crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.Show less
CVE-2023-37758 1Dlink 1Dir 815 Firmware Jun 17, 2026 Jul 18, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 D-LINK DIR-815 v1.01 was discovered to contain a buffer overflow via the component /web/captcha.cgi.

Previous 1...114115116...212 Next