Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

CVEs (4,227)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-26354 1Amd 152Amd 3015ce Firmware Amd 3015e FirmwareEpyc 7002 Firmware+149 more Jun 17, 2026 May 9, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Insufficient bounds checking in ASP may allow an attacker to issue a system call from a compromised ABL which may cause arbitrary memory values to be initialized to zero, potentially leading to a loss of integrity.
CVE-2023-30085 1Libming 1Libming Jun 17, 2026 May 9, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Buffer Overflow vulnerability found in Libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the cws2fws function in util/decompile.c.
CVE-2023-30083 1Libming 1Libming Jun 17, 2026 May 9, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Buffer Overflow vulnerability found in Libming swftophp v.0.4.8 allows a local attacker to cause a denial of service via the newVar_N in util/decompile.c.
CVE-2023-31979 2Catdoc Project Fossies 2Catdoc Catdoc Jun 17, 2026 May 9, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Catdoc v0.95 was discovered to contain a global buffer overflow via the function process_file at /src/reader.c.
CVE-2021-44283 1Shieldstore Project 1Shieldstore Jun 17, 2026 May 9, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 A buffer overflow in the component /Enclave.cpp of Electronics and Telecommunications Research Institute ShieldStore commit 58d455617f99705f0ffd8a27616abdf77bdc1bdc allows attackers to cause an information leak via a cra...Show more A buffer overflow in the component /Enclave.cpp of Electronics and Telecommunications Research Institute ShieldStore commit 58d455617f99705f0ffd8a27616abdf77bdc1bdc allows attackers to cause an information leak via a crafted structure from an untrusted operating system.Show less
CVE-2022-47499 1Google 1Android Jun 17, 2026 May 9, 2023 N/A· v4 4.4 MEDIUM· v3 N/A· v2 In soter service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
CVE-2022-47498 1Google 1Android Jun 17, 2026 May 9, 2023 N/A· v4 4.4 MEDIUM· v3 N/A· v2 In soter service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
CVE-2022-47497 1Google 1Android Jun 17, 2026 May 9, 2023 N/A· v4 4.4 MEDIUM· v3 N/A· v2 In soter service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
CVE-2022-47496 1Google 1Android Jun 17, 2026 May 9, 2023 N/A· v4 4.4 MEDIUM· v3 N/A· v2 In soter service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
CVE-2022-47495 1Google 1Android Jun 17, 2026 May 9, 2023 N/A· v4 4.4 MEDIUM· v3 N/A· v2 In soter service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
CVE-2022-47494 1Google 1Android Jun 17, 2026 May 9, 2023 N/A· v4 4.4 MEDIUM· v3 N/A· v2 In soter service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
CVE-2022-47491 1Google 1Android Jun 17, 2026 May 9, 2023 N/A· v4 4.4 MEDIUM· v3 N/A· v2 In soter service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service with System execution privileges needed.
CVE-2022-47487 1Google 1Android Jun 17, 2026 May 9, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In thermal service, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service local denial of service with no additional execution privileges.
CVE-2023-27968 1Apple 1Macos Jun 17, 2026 May 8, 2023 N/A· v4 7.1 HIGH· v3 N/A· v2 A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.3. An app may be able to cause unexpected system termination or write kernel memory.
CVE-2023-27957 1Apple 1Macos Jun 17, 2026 May 8, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.3. Processing a maliciously crafted file may lead to unexpected app termination or arbitrary code execution.
CVE-2023-27956 1Apple 5Ipados Iphone OsMacos+2 more Jun 17, 2026 May 8, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, tvOS 16.4, watchOS 9.4. Processing a maliciously crafted image may...Show more The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, iOS 15.7.4 and iPadOS 15.7.4, tvOS 16.4, watchOS 9.4. Processing a maliciously crafted image may result in disclosure of process memory.Show less
CVE-2023-27955 1Apple 3Ipados Iphone OsMacos Jun 17, 2026 May 8, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, macOS Monterey 12.6.4, tvOS 16.4, macOS Big Sur 11.7.5. An app may be able to read arbitrary files.
CVE-2023-27935 1Apple 1Macos Jun 17, 2026 May 8, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 The issue was addressed with improved bounds checks. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. A remote user may be able to cause unexpected app termination or arbitrary code...Show more The issue was addressed with improved bounds checks. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, macOS Big Sur 11.7.5. A remote user may be able to cause unexpected app termination or arbitrary code execution.Show less
CVE-2023-27934 1Apple 1Macos Jun 17, 2026 May 8, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A memory initialization issue was addressed. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4. A remote attacker may be able to cause unexpected app termination or arbitrary code execution.
CVE-2023-23535 1Apple 5Ipados Iphone OsMacos+2 more Jun 17, 2026 May 8, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, macOS Big Sur 11.7.5, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.6, tvOS 16.4, watchOS 9....Show more The issue was addressed with improved memory handling. This issue is fixed in macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4, macOS Big Sur 11.7.5, iOS 15.7.4 and iPadOS 15.7.4, macOS Monterey 12.6.6, tvOS 16.4, watchOS 9.4. Processing a maliciously crafted image may result in disclosure of process memory.Show less

Previous 1...120121122...212 Next