Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

CVEs (4,227)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-21635 1Qualcomm 48Aqt1000 Firmware Csrb31024 FirmwareFastconnect 6200 Firmware+45 more Jun 17, 2026 Jul 4, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory Corruption in Data Network Stack & Connectivity when sim gets detected on telephony.
CVE-2023-36377 1Osslsigncode Project 1Osslsigncode Jun 17, 2026 Jul 3, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Buffer Overflow vulnerability in mtrojnar osslsigncode v.2.3 and before allows a local attacker to execute arbitrary code via a crafted .exe, .sys, and .dll files.
CVE-2023-36183 1Openimageio 1Openimageio Jun 17, 2026 Jul 3, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Buffer Overflow vulnerability in OpenImageIO v.2.4.12.0 and before allows a remote to execute arbitrary code and obtain sensitive information via a crafted file to the readimg function.
CVE-2023-35178 1Hp 46Laserjet Pro M304 M305 W1a46a Firmware Laserjet Pro M304 M305 W1a47a FirmwareLaserjet Pro M304 M305 W1a48a Firmware+43 more Jun 25, 2026 Jun 30, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Certain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow when performing a GET request to scan jobs.
CVE-2023-35176 1Hp 46Laserjet Pro M304 M305 W1a46a Firmware Laserjet Pro M304 M305 W1a47a FirmwareLaserjet Pro M304 M305 W1a48a Firmware+43 more Jun 25, 2026 Jun 30, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Certain HP LaserJet Pro print products are potentially vulnerable to Buffer Overflow and/or Denial of Service when using the backup & restore feature through the embedded web service on the device.
CVE-2023-26966 1Libtiff 1Libtiff Jun 17, 2026 Jun 29, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 libtiff 4.5.0 is vulnerable to Buffer Overflow in uv_encode() when libtiff reads a corrupted little-endian TIFF file and specifies the output to be big-endian.
CVE-2023-25433 1Libtiff 1Libtiff Jun 17, 2026 Jun 29, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 libtiff 4.5.0 is vulnerable to Buffer Overflow via /libtiff/tools/tiffcrop.c:8499. Incorrect updating of buffer size after rotateImage() in tiffcrop cause heap-buffer-overflow and SEGV.
CVE-2023-26616 1Dlink 1Dir 823g Firmware Jun 17, 2026 Jun 29, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 D-Link DIR-823G firmware version 1.02B05 has a buffer overflow vulnerability, which originates from the URL field in SetParentsControlInfo.
CVE-2023-26612 1Dlink 1Dir 823g Firmware Jun 17, 2026 Jun 29, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 D-Link DIR-823G firmware version 1.02B05 has a buffer overflow vulnerability, which originates from the HostName field in SetParentsControlInfo.
CVE-2023-21517 1Samsung 1Exynos Jun 17, 2026 Jun 28, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Heap out-of-bound write vulnerability in Exynos baseband prior to SMR Jun-2023 Release 1 allows remote attacker to execute arbitrary code.
CVE-2015-20109 1Gnu 1Glibc Nov 21, 2024 Jun 25, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 end_pattern (called from internal_fnmatch) in the GNU C Library (aka glibc or libc6) before 2.22 might allow context-dependent attackers to cause a denial of service (application crash), as demonstrated by use of the fnm...Show more end_pattern (called from internal_fnmatch) in the GNU C Library (aka glibc or libc6) before 2.22 might allow context-dependent attackers to cause a denial of service (application crash), as demonstrated by use of the fnmatch library function with the **(!() pattern. NOTE: this is not the same as CVE-2015-8984; also, some Linux distributions have fixed CVE-2015-8984 but have not fixed this additional fnmatch issue.Show less
CVE-2023-32423 1Apple 6Ipados Iphone OsMacos+3 more Jun 17, 2026 Jun 23, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A buffer overflow issue was addressed with improved memory handling. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, Safari 16.5, iOS 16.5 and iPadOS 16.5. Processing web content may disclose sensitive...Show more A buffer overflow issue was addressed with improved memory handling. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, Safari 16.5, iOS 16.5 and iPadOS 16.5. Processing web content may disclose sensitive information.Show less
CVE-2023-32384 1Apple 5Ipados Iphone OsMacos+2 more Jun 17, 2026 Jun 23, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A buffer overflow was addressed with improved bounds checking. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iP...Show more A buffer overflow was addressed with improved bounds checking. This issue is fixed in watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, iOS 15.7.6 and iPadOS 15.7.6, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 16.5 and iPadOS 16.5. Processing an image may lead to arbitrary code execution.Show less
CVE-2023-23539 1Apple 1Macos Jun 17, 2026 Jun 23, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.2. Mounting a maliciously crafted Samba network share may lead to arbitrary code execution.
CVE-2023-36359 1Tp Link 3Tl Wr841n Firmware Tl Wr940n FirmwareTl Wr941nd Firmware Jun 17, 2026 Jun 22, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 TP-Link TL-WR940N V4, TL-WR841N V8/V10, TL-WR940N V2/V3 and TL-WR941ND V5/V6 were discovered to contain a buffer overflow in the component /userRpm/QoSRuleListRpm. This vulnerability allows attackers to cause a Denial of...Show more TP-Link TL-WR940N V4, TL-WR841N V8/V10, TL-WR940N V2/V3 and TL-WR941ND V5/V6 were discovered to contain a buffer overflow in the component /userRpm/QoSRuleListRpm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted GET request.Show less
CVE-2023-36358 1Tp Link 4Tl Wr743nd Firmware Tl Wr841n FirmwareTl Wr940n Firmware+1 more Jun 17, 2026 Jun 22, 2023 N/A· v4 7.7 HIGH· v3 N/A· v2 TP-Link TL-WR940N V2/V3/V4, TL-WR941ND V5/V6, TL-WR743ND V1 and TL-WR841N V8 were discovered to contain a buffer overflow in the component /userRpm/AccessCtrlAccessTargetsRpm. This vulnerability allows attackers to cause...Show more TP-Link TL-WR940N V2/V3/V4, TL-WR941ND V5/V6, TL-WR743ND V1 and TL-WR841N V8 were discovered to contain a buffer overflow in the component /userRpm/AccessCtrlAccessTargetsRpm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted GET request.Show less
CVE-2023-36355 1Tp Link 1Tl Wr940n Firmware Jun 17, 2026 Jun 22, 2023 N/A· v4 9.9 CRITICAL· v3 N/A· v2 TP-Link TL-WR940N V4 was discovered to contain a buffer overflow via the ipStart parameter at /userRpm/WanDynamicIpV6CfgRpm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted GET reques...Show more TP-Link TL-WR940N V4 was discovered to contain a buffer overflow via the ipStart parameter at /userRpm/WanDynamicIpV6CfgRpm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted GET request.Show less
CVE-2023-36354 1Tp Link 4Tl Wr740n Firmware Tl Wr841n FirmwareTl Wr940n Firmware+1 more Jun 17, 2026 Jun 22, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 TP-Link TL-WR940N V4, TL-WR841N V8/V10, TL-WR740N V1/V2, TL-WR940N V2/V3, and TL-WR941ND V5/V6 were discovered to contain a buffer overflow in the component /userRpm/AccessCtrlTimeSchedRpm. This vulnerability allows atta...Show more TP-Link TL-WR940N V4, TL-WR841N V8/V10, TL-WR740N V1/V2, TL-WR940N V2/V3, and TL-WR941ND V5/V6 were discovered to contain a buffer overflow in the component /userRpm/AccessCtrlTimeSchedRpm. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted GET request.Show less
CVE-2023-36243 1Flvmeta 1Flvmeta Jun 17, 2026 Jun 22, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 FLVMeta v1.2.1 was discovered to contain a buffer overflow via the xml_on_metadata_tag_only function at dump_xml.c.
CVE-2023-36239 1Libming 1Libming Jun 17, 2026 Jun 22, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 libming listswf 0.4.7 was discovered to contain a buffer overflow in the parseSWF_DEFINEFONTINFO() function at parser.c.

Previous 1...116117118...212 Next