Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

CVEs (4,226)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-28772 1Linux 1Linux Kernel Jun 17, 2026 Mar 23, 2023 N/A· v4 6.7 MEDIUM· v3 N/A· v2 An issue was discovered in the Linux kernel before 5.13.3. lib/seq_buf.c has a seq_buf_putmem_hex buffer overflow.
CVE-2023-1560 1Tinytiff Project 1Tinytiff Jun 17, 2026 Mar 22, 2023 N/A· v4 5.5 MEDIUM· v3 1.7 LOW· v2 A vulnerability, which was classified as problematic, has been found in TinyTIFF 3.0.0.0. This issue affects some unknown processing of the file tinytiffreader.c of the component File Handler. The manipulation leads to b...Show more A vulnerability, which was classified as problematic, has been found in TinyTIFF 3.0.0.0. This issue affects some unknown processing of the file tinytiffreader.c of the component File Handler. The manipulation leads to buffer overflow. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used. The identifier VDB-223553 was assigned to this vulnerability.Show less
CVE-2023-28116 1Contiki Ng 1Contiki Ng. Jun 17, 2026 Mar 17, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Contiki-NG is an open-source, cross-platform operating system for internet of things (IoT) devices. In versions 4.8 and prior, an out-of-bounds write can occur in the BLE L2CAP module of the Contiki-NG operating system....Show more Contiki-NG is an open-source, cross-platform operating system for internet of things (IoT) devices. In versions 4.8 and prior, an out-of-bounds write can occur in the BLE L2CAP module of the Contiki-NG operating system. The network stack of Contiki-NG uses a global buffer (packetbuf) for processing of packets, with the size of PACKETBUF_SIZE. In particular, when using the BLE L2CAP module with the default configuration, the PACKETBUF_SIZE value becomes larger then the actual size of the packetbuf. When large packets are processed by the L2CAP module, a buffer overflow can therefore occur when copying the packet data to the packetbuf. The vulnerability has been patched in the "develop" branch of Contiki-NG, and will be included in release 4.9. The problem can be worked around by applying the patch manually.Show less
CVE-2023-1452 1Gpac 1Gpac Jun 17, 2026 Mar 17, 2023 N/A· v4 7.8 HIGH· v3 4.3 MEDIUM· v2 A vulnerability was found in GPAC 2.3-DEV-rev35-gbbca86917-master. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file filters/load_text.c. The manipulation leads to b...Show more A vulnerability was found in GPAC 2.3-DEV-rev35-gbbca86917-master. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file filters/load_text.c. The manipulation leads to buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue. The identifier VDB-223297 was assigned to this vulnerability.Show less
CVE-2023-26769 1Liblouis 1Liblouis Jun 17, 2026 Mar 16, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Buffer Overflow vulnerability found in Liblouis Lou_Trace v.3.24.0 allows a remote attacker to cause a denial of service via the resolveSubtable function at compileTranslationTabel.c.
CVE-2023-26768 1Liblouis 1Liblouis Jun 17, 2026 Mar 16, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remote attacker to cause a denial of service via the compileTranslationTable.c and lou_setDataPath functions.
CVE-2023-26767 1Liblouis 1Liblouis Jun 17, 2026 Mar 16, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Buffer Overflow vulnerability found in Liblouis v.3.24.0 allows a remote attacker to cause a denial of service via the lou_logFile function at logginc.c endpoint.
CVE-2020-27507 1Kamailio 1Kamailio Jun 17, 2026 Mar 15, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 The Kamailio SIP before 5.5.0 server mishandles INVITE requests with duplicated fields and overlength tag, leading to a buffer overflow that crashes the server or possibly have unspecified other impact.
CVE-2023-27590 1Rizin 1Rizin Jun 17, 2026 Mar 14, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Rizin is a UNIX-like reverse engineering framework and command-line toolset. In version 0.5.1 and prior, converting a GDB registers profile file into a Rizin register profile can result in a stack-based buffer overflow w...Show more Rizin is a UNIX-like reverse engineering framework and command-line toolset. In version 0.5.1 and prior, converting a GDB registers profile file into a Rizin register profile can result in a stack-based buffer overflow when the `name`, `type`, or `groups` fields have longer values than expected. Users opening untrusted GDB registers files (e.g. with the `drpg` or `arpg` commands) are affected by this flaw. Commit d6196703d89c84467b600ba2692534579dc25ed4 contains a patch for this issue. As a workaround, review the GDB register profiles before loading them with `drpg`/`arpg` commands.Show less
CVE-2023-27585 1Teluu 1Pjsip Jun 17, 2026 Mar 14, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 PJSIP is a free and open source multimedia communication library written in C. A buffer overflow vulnerability in versions 2.13 and prior affects applications that use PJSIP DNS resolver. It doesn't affect PJSIP users wh...Show more PJSIP is a free and open source multimedia communication library written in C. A buffer overflow vulnerability in versions 2.13 and prior affects applications that use PJSIP DNS resolver. It doesn't affect PJSIP users who do not utilise PJSIP DNS resolver. This vulnerability is related to CVE-2022-24793. The difference is that this issue is in parsing the query record `parse_query()`, while the issue in CVE-2022-24793 is in `parse_rr()`. A patch is available as commit `d1c5e4d` in the `master` branch. A workaround is to disable DNS resolution in PJSIP config (by setting `nameserver_count` to zero) or use an external resolver implementation instead.Show less
CVE-2021-45423 1Pev Project 1Pev Jun 17, 2026 Mar 13, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A Buffer Overflow vulnerabilityexists in Pev 0.81 via the pe_exports function from exports.c.. The array offsets_to_Names is dynamically allocated on the stack using exp->NumberOfFunctions as its size. However, the loop...Show more A Buffer Overflow vulnerabilityexists in Pev 0.81 via the pe_exports function from exports.c.. The array offsets_to_Names is dynamically allocated on the stack using exp->NumberOfFunctions as its size. However, the loop uses exp->NumberOfNames to iterate over it and set its components value. Therefore, the loop code assumes that exp->NumberOfFunctions is greater than ordinal at each iteration. This can lead to arbitrary code execution.Show less
CVE-2023-26076 1Samsung 5Exynos 1280 Firmware Exynos 2200 FirmwareExynos Auto T5123 Firmware+2 more Jun 17, 2026 Mar 13, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue was discovered in Samsung Mobile Chipset and Baseband Modem Chipset for Exynos 1280, Exynos 2200, Exynos Modem 5123, Exynos Modem 5300, and Exynos Auto T5123. An intra-object overflow in the 5G SM message codec...Show more An issue was discovered in Samsung Mobile Chipset and Baseband Modem Chipset for Exynos 1280, Exynos 2200, Exynos Modem 5123, Exynos Modem 5300, and Exynos Auto T5123. An intra-object overflow in the 5G SM message codec can occur due to insufficient parameter validation when decoding reserved options.Show less
CVE-2023-27065 1Tenda 1W15e Firmware Jun 17, 2026 Mar 13, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda V15V1.0 V15.11.0.14(1521_3190_1058) was discovered to contain a buffer overflow vulnerability via the picName parameter in the formDelWewifiPi function. This vulnerability allows attackers to cause a Denial of Serv...Show more Tenda V15V1.0 V15.11.0.14(1521_3190_1058) was discovered to contain a buffer overflow vulnerability via the picName parameter in the formDelWewifiPi function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.Show less
CVE-2023-27064 1Tenda 1W15e Firmware Jun 17, 2026 Mar 13, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda V15V1.0 V15.11.0.14(1521_3190_1058) was discovered to contain a buffer overflow vulnerability via the index parameter in the formDelDnsForward function. This vulnerability allows attackers to cause a Denial of Serv...Show more Tenda V15V1.0 V15.11.0.14(1521_3190_1058) was discovered to contain a buffer overflow vulnerability via the index parameter in the formDelDnsForward function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.Show less
CVE-2023-27063 1Tenda 1W15e Firmware Jun 17, 2026 Mar 13, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda V15V1.0 V15.11.0.14(1521_3190_1058) was discovered to contain a buffer overflow vulnerability via the DNSDomainName parameter in the formModifyDnsForward function. This vulnerability allows attackers to cause a Den...Show more Tenda V15V1.0 V15.11.0.14(1521_3190_1058) was discovered to contain a buffer overflow vulnerability via the DNSDomainName parameter in the formModifyDnsForward function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.Show less
CVE-2023-27062 1Tenda 1W15e Firmware Jun 17, 2026 Mar 13, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda V15V1.0 was discovered to contain a buffer overflow vulnerability via the gotoUrl parameter in the formPortalAuth function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted reque...Show more Tenda V15V1.0 was discovered to contain a buffer overflow vulnerability via the gotoUrl parameter in the formPortalAuth function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.Show less
CVE-2023-27061 1Tenda 1W15e Firmware Jun 17, 2026 Mar 13, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Tenda V15V1.0 V15.11.0.14(1521_3190_1058) was discovered to contain a buffer overflow vulnerability via the wifiFilterListRemark parameter in the modifyWifiFilterRules function. This vulnerability allows attackers to cau...Show more Tenda V15V1.0 V15.11.0.14(1521_3190_1058) was discovered to contain a buffer overflow vulnerability via the wifiFilterListRemark parameter in the modifyWifiFilterRules function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.Show less
CVE-2022-40540 1Qualcomm 16Sd888 5g Firmware Sd 8 Gen1 5g FirmwareSw5100 Firmware+13 more Jun 17, 2026 Mar 10, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption due to buffer copy without checking the size of input while loading firmware in Linux Kernel.
CVE-2022-33278 1Qualcomm 123Aqt1000 Firmware Ar8035 FirmwareCsra6620 Firmware+120 more Jun 17, 2026 Mar 10, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption due to buffer copy without checking the size of input in HLOS when input message size is larger than the buffer capacity.
CVE-2022-33213 1Qualcomm 209Apq8009 Firmware Apq8009w FirmwareApq8017 Firmware+206 more Jun 17, 2026 Mar 10, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Memory corruption in modem due to buffer overflow while processing a PPP packet

Previous 1...124125126...212 Next