Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

CVEs (4,225)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-22416 1Juniper 1Junos Jun 17, 2026 Jan 13, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 A Buffer Overflow vulnerability in SIP ALG of Juniper Networks Junos OS allows a network-based, unauthenticated attacker to cause a Denial of Service (DoS). On all MX Series and SRX Series platform with SIP ALG enabled,...Show more A Buffer Overflow vulnerability in SIP ALG of Juniper Networks Junos OS allows a network-based, unauthenticated attacker to cause a Denial of Service (DoS). On all MX Series and SRX Series platform with SIP ALG enabled, when a malformed SIP packet is received, the flow processing daemon (flowd) will crash and restart. This issue affects: Juniper Networks Junos OS on MX Series and SRX Series 20.4 versions prior to 20.4R3-S5; 21.1 versions prior to 21.1R3-S4; 21.2 versions prior to 21.2R3-S2; 21.3 versions prior to 21.3R3-S1; 21.4 versions prior to 21.4R3; 22.1 versions prior to 22.1R1-S2, 22.1R2; 22.2 versions prior to 22.2R1-S1, 22.2R2. This issue does not affect Juniper Networks Junos OS versions prior to 20.4R1 on SRX Series.Show less
CVE-2023-22399 1Juniper 1Junos Jun 17, 2026 Jan 13, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 When sFlow is enabled and it monitors a packet forwarded via ECMP, a buffer management vulnerability in the dcpfe process of Juniper Networks Junos OS on QFX10K Series systems allows an attacker to cause the Packet Forwa...Show more When sFlow is enabled and it monitors a packet forwarded via ECMP, a buffer management vulnerability in the dcpfe process of Juniper Networks Junos OS on QFX10K Series systems allows an attacker to cause the Packet Forwarding Engine (PFE) to crash and restart by sending specific genuine packets to the device, resulting in a Denial of Service (DoS) condition. The dcpfe process tries to copy more data into a smaller buffer, which overflows and corrupts the buffer, causing a crash of the dcpfe process. Continued receipt and processing of these packets will create a sustained Denial of Service (DoS) condition. This issue affects Juniper Networks Junos OS on QFX10K Series: All versions prior to 19.4R3-S9; 20.2 versions prior to 20.2R3-S6; 20.3 versions prior to 20.3R3-S6; 20.4 versions prior to 20.4R3-S5; 21.1 versions prior to 21.1R3-S4; 21.2 versions prior to 21.2R3-S3; 21.3 versions prior to 21.3R3-S2; 21.4 versions prior to 21.4R2-S2, 21.4R3; 22.1 versions prior to 22.1R2; 22.2 versions prior to 22.2R1-S2, 22.2R2.Show less
CVE-2022-42273 1Nvidia 1Dgx A100 Firmware Jun 17, 2026 Jan 12, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 NVIDIA BMC contains a vulnerability in libwebsocket, where an authorized attacker can cause a buffer overflow and cause a denial of service or gain code execution.
CVE-2022-42272 1Nvidia 1Dgx A100 Firmware Jun 17, 2026 Jan 12, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 NVIDIA BMC contains a vulnerability in IPMI handler, where an authorized attacker can cause a buffer overflow, which may lead to code execution, denial of service or escalation of privileges.
CVE-2022-3628 1Linux 1Linux Kernel Jun 17, 2026 Jan 12, 2023 N/A· v4 6.6 MEDIUM· v3 N/A· v2 A buffer overflow flaw was found in the Linux kernel Broadcom Full MAC Wi-Fi driver. This issue occurs when a user connects to a malicious USB device. This can allow a local user to crash the system or escalate their pri...Show more A buffer overflow flaw was found in the Linux kernel Broadcom Full MAC Wi-Fi driver. This issue occurs when a user connects to a malicious USB device. This can allow a local user to crash the system or escalate their privileges.Show less
CVE-2017-14454 1Insteon 1Hub Firmware Nov 21, 2024 Jan 12, 2023 N/A· v4 8.5 HIGH· v3 N/A· v2 Multiple exploitable buffer overflow vulnerabilities exists in the PubNub message handler for the "control" channel of Insteon Hub running firmware version 1012. Specially crafted replies received from the PubNub service...Show more Multiple exploitable buffer overflow vulnerabilities exists in the PubNub message handler for the "control" channel of Insteon Hub running firmware version 1012. Specially crafted replies received from the PubNub service can cause buffer overflows on a global section overwriting arbitrary data. An attacker should impersonate PubNub and answer an HTTPS GET request to trigger this vulnerability. The `strcpy` at [18] overflows the buffer `insteon_pubnub.channel_al`, which has a size of 16 bytes.Show less
CVE-2021-26409 1Amd 1Milanpi Firmware Jun 17, 2026 Jan 11, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Insufficient bounds checking in SEV-ES may allow an attacker to corrupt Reverse Map table (RMP) memory, potentially resulting in a loss of SNP (Secure Nested Paging) memory integrity.
CVE-2022-42271 1Nvidia 1Dgx A100 Firmware Jun 17, 2026 Jan 11, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 NVIDIA BMC contains a vulnerability in IPMI handler, where an authorized attacker can cause a buffer overflow and cause a denial of service or gain code execution
CVE-2021-3966 1Zephyrproject 1Zephyr Jun 17, 2026 Jan 11, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 usb device bluetooth class includes a buffer overflow related to implementation of net_buf_add_mem.
CVE-2022-43392 1Zyxel 48Ax7501 B0 Firmware Dx3301 T0 FirmwareDx4510 B1 Firmware+45 more Jun 17, 2026 Jan 11, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A buffer overflow vulnerability in the parameter of web server in Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an authenticated attacker to cause denial-of-service (DoS) conditions by sending a craft...Show more A buffer overflow vulnerability in the parameter of web server in Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an authenticated attacker to cause denial-of-service (DoS) conditions by sending a crafted authorization request.Show less
CVE-2022-43391 1Zyxel 48Ax7501 B0 Firmware Dx3301 T0 FirmwareDx4510 B1 Firmware+45 more Jun 17, 2026 Jan 11, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A buffer overflow vulnerability in the parameter of the CGI program in Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an authenticated attacker to cause denial-of-service (DoS) conditions by sending a...Show more A buffer overflow vulnerability in the parameter of the CGI program in Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an authenticated attacker to cause denial-of-service (DoS) conditions by sending a crafted HTTP request.Show less
CVE-2022-43389 1Zyxel 17Ep240p Firmware Lte3202 M437 FirmwareLte3316 M604 Firmware+14 more Jun 17, 2026 Jan 11, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A buffer overflow vulnerability in the library of the web server in Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an unauthenticated attacker to execute some OS commands or to cause denial-of-service...Show more A buffer overflow vulnerability in the library of the web server in Zyxel NR7101 firmware prior to V1.15(ACCC.3)C0, which could allow an unauthenticated attacker to execute some OS commands or to cause denial-of-service (DoS) conditions on a vulnerable device.Show less
CVE-2022-43970 1Linksys 1Wrt54gl Firmware Jun 17, 2026 Jan 9, 2023 N/A· v4 7.2 HIGH· v3 N/A· v2 A buffer overflow vulnerability exists in Linksys WRT54GL Wireless-G Broadband Router with firmware <= 4.30.18.006. A stack-based buffer overflow in the Start_EPI function within the httpd binary allows an authenticated...Show more A buffer overflow vulnerability exists in Linksys WRT54GL Wireless-G Broadband Router with firmware <= 4.30.18.006. A stack-based buffer overflow in the Start_EPI function within the httpd binary allows an authenticated attacker with administrator privileges to execute arbitrary commands on the underlying Linux operating system as root. This vulnerablity can be triggered over the network via a malicious POST request to /apply.cgi.Show less
CVE-2022-33276 1Qualcomm 134Ar8035 Firmware Ar9380 FirmwareCsr8811 Firmware+131 more Jun 17, 2026 Jan 9, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption due to buffer copy without checking size of input in modem while receiving WMI_REQUEST_STATS_CMDID command.
CVE-2022-25746 1Qualcomm 98Aqt1000 Firmware Ar8035 FirmwareQam8295p Firmware+95 more Jun 17, 2026 Jan 9, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption in kernel due to missing checks when updating the access rights of a memextent mapping.
CVE-2022-45126 2Openatom Openharmony 2Openharmony Openharmony Jun 17, 2026 Jan 9, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Kernel subsystem within OpenHarmony-v3.1.4 and prior versions in kernel_liteos_a has a kernel stack overflow vulnerability when call SysClockGettime. 4 bytes padding data from kernel stack are copied to user space incorr...Show more Kernel subsystem within OpenHarmony-v3.1.4 and prior versions in kernel_liteos_a has a kernel stack overflow vulnerability when call SysClockGettime. 4 bytes padding data from kernel stack are copied to user space incorrectly and leaked.Show less
CVE-2022-43662 2Openatom Openharmony 2Openharmony Openharmony Jun 17, 2026 Jan 9, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Kernel subsystem within OpenHarmony-v3.1.4 and prior versions in kernel_liteos_a has a kernel stack overflow vulnerability when call SysTimerGettime. 4 bytes padding data from kernel stack are copied to user space incorr...Show more Kernel subsystem within OpenHarmony-v3.1.4 and prior versions in kernel_liteos_a has a kernel stack overflow vulnerability when call SysTimerGettime. 4 bytes padding data from kernel stack are copied to user space incorrectly and leaked.Show less
CVE-2022-47663 1Gpac 1Gpac Jun 17, 2026 Jan 5, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 GPAC MP4box 2.1-DEV-rev649-ga8f438d20 is vulnerable to buffer overflow in h263dmx_process filters/reframe_h263.c:609
CVE-2022-47658 1Gpac 1Gpac Jun 17, 2026 Jan 5, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to buffer overflow in function gf_hevc_read_vps_bs_internal of media_tools/av_parsers.c:8039
CVE-2022-47657 1Gpac 1Gpac Jun 17, 2026 Jan 5, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 GPAC MP4Box 2.1-DEV-rev644-g5c4df2a67 is vulnerable to buffer overflow in function hevc_parse_vps_extension of media_tools/av_parsers.c:7662

Previous 1...130131132...212 Next