Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

CVEs (4,202)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-28952 3Fedoraproject LinuxNetapp 7A250 Firmware Aff 500f FirmwareCloud Backup+4 more Jun 17, 2026 Mar 20, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 An issue was discovered in the Linux kernel through 5.11.8. The sound/soc/qcom/sdm845.c soundwire device driver has a buffer overflow when an unexpected port ID number is encountered, aka CID-1c668e1c0a0f. (This has been...Show more An issue was discovered in the Linux kernel through 5.11.8. The sound/soc/qcom/sdm845.c soundwire device driver has a buffer overflow when an unexpected port ID number is encountered, aka CID-1c668e1c0a0f. (This has been fixed in 5.12-rc4.)Show less
CVE-2020-11299 1Qualcomm 381Apq8009 Firmware Apq8009w FirmwareApq8017 Firmware+378 more Jun 17, 2026 Mar 17, 2021 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Buffer overflow can occur in video while playing the non-standard clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Vo...Show more Buffer overflow can occur in video while playing the non-standard clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon WearablesShow less
CVE-2021-27208 1Xilinx 2Zynq 7000 Firmware Zynq 7000s Firmware Jun 17, 2026 Mar 15, 2021 N/A· v4 6.8 MEDIUM· v3 4.6 MEDIUM· v2 When booting a Zync-7000 SOC device from nand flash memory, the nand driver in the ROM does not validate the inputs when reading in any parameters in the nand’s parameter page. IF a field read in from the parameter page...Show more When booting a Zync-7000 SOC device from nand flash memory, the nand driver in the ROM does not validate the inputs when reading in any parameters in the nand’s parameter page. IF a field read in from the parameter page is too large, this causes a buffer overflow that could lead to arbitrary code execution. Physical access and modification of the board assembly on which the Zynq-7000 SoC device mounted is needed to replace the original NAND flash memory with a NAND flash emulation device for this attack to be successful.Show less
CVE-2020-5025 2Ibm Netapp 2Db2 Oncommand Insight Jun 17, 2026 Mar 11, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 db2fm is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local attacker to execute...Show more IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 db2fm is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code on the system with root privileges. IBM X-Force ID: 193661.Show less
CVE-2020-35227 1Netgear 2Gs116e Firmware Jgs516pe Firmware Jun 17, 2026 Mar 10, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 A buffer overflow vulnerability in the access control section on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices (in the administration web panel) allows an attacker to inject IP addresses into the whitelist via the checkedL...Show more A buffer overflow vulnerability in the access control section on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices (in the administration web panel) allows an attacker to inject IP addresses into the whitelist via the checkedList parameter to the delete command.Show less
CVE-2020-35225 1Netgear 2Gs116e Firmware Jgs516pe Firmware Jun 17, 2026 Mar 10, 2021 N/A· v4 6.8 MEDIUM· v3 5.2 MEDIUM· v2 The NSDP protocol implementation on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was not properly validating the length of string parameters sent in write requests, potentially allowing denial of service attacks.
CVE-2020-35224 1Netgear 2Gs116e Firmware Jgs516pe Firmware Jun 17, 2026 Mar 10, 2021 N/A· v4 6.5 MEDIUM· v3 6.1 MEDIUM· v2 A buffer overflow vulnerability in the NSDP protocol authentication method on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allows remote unauthenticated attackers to force a device reboot.
CVE-2021-27965 1Msi 1Dragon Center Jun 17, 2026 Mar 5, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The MsIo64.sys driver before 1.1.19.1016 in MSI Dragon Center before 2.0.98.0 has a buffer overflow that allows privilege escalation via a crafted 0x80102040, 0x80102044, 0x80102050, or 0x80102054 IOCTL request.
CVE-2021-25306 1Gigaset 1Dx600a Firmware Jun 17, 2026 Mar 2, 2021 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 A buffer overflow vulnerability in the AT command interface of Gigaset DX600A v41.00-175 devices allows remote attackers to force a device reboot by sending relatively long AT commands.
CVE-2020-7120 1Arubanetworks 1Clearpass Policy Manager Jun 17, 2026 Feb 23, 2021 N/A· v4 5.3 MEDIUM· v3 4.6 MEDIUM· v2 A local authenticated buffer overflow vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in ClearPass OnGuard could allow local authenticated...Show more A local authenticated buffer overflow vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in ClearPass OnGuard could allow local authenticated users to cause a buffer overflow condition. A successful exploit could allow a local attacker to execute arbitrary code within the context the binary is running in, which is a lower privileged account.Show less
CVE-2020-11223 1Qualcomm 202Aqt1000 Firmware Pm3003a FirmwarePm456 Firmware+199 more Jun 17, 2026 Feb 22, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Out of bound in camera driver due to lack of check of validation of array index before copying into array in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Sna...Show more Out of bound in camera driver due to lack of check of validation of array index before copying into array in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon WearablesShow less
CVE-2020-11170 1Qualcomm 505Apq8009 Firmware Apq8009w FirmwareApq8017 Firmware+502 more Jun 17, 2026 Feb 22, 2021 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Out of bound memory access while playing music playbacks with crafted vorbis content due to improper checks in header extraction in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, S...Show more Out of bound memory access while playing music playbacks with crafted vorbis content due to improper checks in header extraction in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and NetworkingShow less
CVE-2020-12374 1Intel 1Bmc Firmware Jun 17, 2026 Feb 19, 2021 N/A· v4 6.7 MEDIUM· v3 4.6 MEDIUM· v2 Buffer overflow in the BMC firmware for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.47 may allow a privileged user to potentially enable escalation of privilege via local access.
CVE-2020-35776 1Digium 1Asterisk Jun 17, 2026 Feb 18, 2021 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 A buffer overflow in res_pjsip_diversion.c in Sangoma Asterisk versions 13.38.1, 16.15.1, 17.9.1, and 18.1.1 allows remote attacker to crash Asterisk by deliberately misusing SIP 181 responses.
CVE-2020-8625 5Debian FedoraprojectIsc+2 more 7500f Firmware A250 FirmwareBind+4 more Jun 17, 2026 Feb 17, 2021 N/A· v4 8.1 HIGH· v3 6.8 MEDIUM· v2 BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND's default settings the vulnerable code path is not exposed, but a server...Show more BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND's default settings the vulnerable code path is not exposed, but a server can be rendered vulnerable by explicitly setting valid values for the tkey-gssapi-keytab or tkey-gssapi-credentialconfiguration options. Although the default configuration is not vulnerable, GSS-TSIG is frequently used in networks where BIND is integrated with Samba, as well as in mixed-server environments that combine BIND servers with Active Directory domain controllers. The most likely outcome of a successful exploitation of the vulnerability is a crash of the named process. However, remote code execution, while unproven, is theoretically possible. Affects: BIND 9.5.0 -> 9.11.27, 9.12.0 -> 9.16.11, and versions BIND 9.11.3-S1 -> 9.11.27-S1 and 9.16.8-S1 -> 9.16.11-S1 of BIND Supported Preview Edition. Also release versions 9.17.0 -> 9.17.1 of the BIND 9.17 development branchShow less
CVE-2020-24501 1Intel 1Ethernet Network Adapter E810 Firmware Jun 17, 2026 Feb 17, 2021 N/A· v4 6.5 MEDIUM· v3 3.3 LOW· v2 Buffer overflow in the firmware for Intel(R) E810 Ethernet Controllers before version 1.4.1.13 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
CVE-2020-24500 1Intel 1Ethernet Network Adapter E810 Firmware Jun 17, 2026 Feb 17, 2021 N/A· v4 4.4 MEDIUM· v3 2.1 LOW· v2 Buffer overflow in the firmware for Intel(R) E810 Ethernet Controllers before version 1.4.1.13 may allow a privileged user to potentially enable a denial of service via local access.
CVE-2020-24498 1Intel 1Ethernet Network Adapter E810 Firmware Jun 17, 2026 Feb 17, 2021 N/A· v4 4.4 MEDIUM· v3 2.1 LOW· v2 Buffer overflow in the firmware for Intel(R) E810 Ethernet Controllers before version 1.4.1.13 may allow a privileged user to potentially enable denial of service via local access.
CVE-2021-22982 1F5 2Big Ip Domain Name System Big Ip Global Traffic Manager Jun 17, 2026 Feb 12, 2021 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 On BIG-IP DNS and GTM version 13.1.x before 13.1.0.4, and all versions of 12.1.x and 11.6.x, big3d does not securely handle and parse certain payloads resulting in a buffer overflow. Note: Software versions which have re...Show more On BIG-IP DNS and GTM version 13.1.x before 13.1.0.4, and all versions of 12.1.x and 11.6.x, big3d does not securely handle and parse certain payloads resulting in a buffer overflow. Note: Software versions which have reached End of Software Development (EoSD) are not evaluated.Show less
CVE-2021-20640 1Logitech 1Lan W300n/pgrb Firmware Jun 17, 2026 Feb 12, 2021 N/A· v4 6.8 MEDIUM· v3 7.7 HIGH· v2 Buffer overflow vulnerability in LOGITEC LAN-W300N/PGRB allows an attacker with administrative privilege to execute an arbitrary OS command via unspecified vectors.

Previous 1...171172173...211 Next