← Back
CWE-120

4,202 CVEs • Abstraction: Base • Likelihood of Exploit: High

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

JSON object

Loading...

CVEs (4,202)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-25135
1Hpe
5Cloudline Cl3100 Gen10 Server Firmware
Cloudline Cl4100 Gen10 Server FirmwareCloudline Cl5200 Gen9 Server Firmware+2 more
Jun 17, 2026
Jan 29, 2021
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
The Baseboard Management Controller(BMC) in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC...Show more
The Baseboard Management Controller(BMC) in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC firmware has a local buffer overlfow in spx_restservice setsmtp_func function.Show less
CVE-2021-25134
1Hpe
5Cloudline Cl3100 Gen10 Server Firmware
Cloudline Cl4100 Gen10 Server FirmwareCloudline Cl5200 Gen9 Server Firmware+2 more
Jun 17, 2026
Jan 29, 2021
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
The Baseboard Management Controller(BMC) in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC...Show more
The Baseboard Management Controller(BMC) in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC firmware has a local buffer overlfow in spx_restservice setremoteimageinfo_func function.Show less
CVE-2021-25133
1Hpe
5Cloudline Cl3100 Gen10 Server Firmware
Cloudline Cl4100 Gen10 Server FirmwareCloudline Cl5200 Gen9 Server Firmware+2 more
Jun 17, 2026
Jan 29, 2021
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
The Baseboard Management Controller(BMC) in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC...Show more
The Baseboard Management Controller(BMC) in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC firmware has a local buffer overlfow in spx_restservice setradiusconfig_func function.Show less
CVE-2021-25132
1Hpe
5Cloudline Cl3100 Gen10 Server Firmware
Cloudline Cl4100 Gen10 Server FirmwareCloudline Cl5200 Gen9 Server Firmware+2 more
Jun 17, 2026
Jan 29, 2021
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
The Baseboard Management Controller(BMC) in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC...Show more
The Baseboard Management Controller(BMC) in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC firmware has a local buffer overlfow in spx_restservice setmediaconfig_func function.Show less
CVE-2021-25131
1Hpe
5Cloudline Cl3100 Gen10 Server Firmware
Cloudline Cl4100 Gen10 Server FirmwareCloudline Cl5200 Gen9 Server Firmware+2 more
Jun 17, 2026
Jan 29, 2021
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
The Baseboard Management Controller(BMC) in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC...Show more
The Baseboard Management Controller(BMC) in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC firmware has a local buffer overlfow in spx_restservice setfwimagelocation_func function.Show less
CVE-2021-25130
1Hpe
5Cloudline Cl3100 Gen10 Server Firmware
Cloudline Cl4100 Gen10 Server FirmwareCloudline Cl5200 Gen9 Server Firmware+2 more
Jun 17, 2026
Jan 29, 2021
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
The Baseboard Management Controller(BMC) in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC...Show more
The Baseboard Management Controller(BMC) in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC firmware has a local buffer overlfow in spx_restservice setactdir_func function.Show less
CVE-2021-25127
1Hpe
5Cloudline Cl3100 Gen10 Server Firmware
Cloudline Cl4100 Gen10 Server FirmwareCloudline Cl5200 Gen9 Server Firmware+2 more
Jun 17, 2026
Jan 29, 2021
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
The Baseboard Management Controller(BMC) in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC...Show more
The Baseboard Management Controller(BMC) in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC firmware has a local buffer overlfow in spx_restservice generatesslcertificate_func function.Show less
CVE-2021-25126
1Hpe
5Cloudline Cl3100 Gen10 Server Firmware
Cloudline Cl4100 Gen10 Server FirmwareCloudline Cl5200 Gen9 Server Firmware+2 more
Jun 17, 2026
Jan 29, 2021
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
The Baseboard Management Controller(BMC) in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC...Show more
The Baseboard Management Controller(BMC) in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC firmware has a local buffer overlfow in spx_restservice downloadkvmjnlp_func function.Show less
CVE-2021-25123
1Hpe
5Cloudline Cl3100 Gen10 Server Firmware
Cloudline Cl4100 Gen10 Server FirmwareCloudline Cl5200 Gen9 Server Firmware+2 more
Jun 17, 2026
Jan 29, 2021
N/A· v4
7.8 HIGH· v3
4.6 MEDIUM· v2
The Baseboard Management Controller(BMC) in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC...Show more
The Baseboard Management Controller(BMC) in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC firmware has a local buffer overlfow in spx_restservice addlicense_func function.Show less
CVE-2021-3304
1Sagemcom
1F@st 3686 Firmware
Jun 17, 2026
Jan 26, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Sagemcom F@ST 3686 v2 3.495 devices have a buffer overflow via a long sessionKey to the goform/login URI.
CVE-2021-3185
1Freedesktop
1Gst Plugins Bad
Jun 17, 2026
Jan 26, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
A flaw was found in the gstreamer h264 component of gst-plugins-bad before v1.18.1 where when parsing a h264 header, an attacker could cause the stack to be smashed, memory corruption and possibly code execution.
CVE-2020-3686
1Qualcomm
492Apq8009
Apq8009wApq8017+489 more
Jun 17, 2026
Jan 21, 2021
N/A· v4
9.8 CRITICAL· v3
10.0 HIGH· v2
Possible memory out of bound issue during music playback when an incorrect bit stream content is copied into array without checking the length of array in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Sna...Show more
Possible memory out of bound issue during music playback when an incorrect bit stream content is copied into array without checking the length of array in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and NetworkingShow less
CVE-2020-11225
1Qualcomm
405Apq8064au
Apq8096auAqt1000+402 more
Jun 17, 2026
Jan 21, 2021
N/A· v4
9.8 CRITICAL· v3
10.0 HIGH· v2
Out of bound access in WLAN driver due to lack of validation of array length before copying into array in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdr...Show more
Out of bound access in WLAN driver due to lack of validation of array length before copying into array in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and NetworkingShow less
CVE-2020-11183
1Qualcomm
151Apq8009
Apq8009wApq8017+148 more
Jun 17, 2026
Jan 21, 2021
N/A· v4
6.7 MEDIUM· v3
7.2 HIGH· v2
A process can potentially cause a buffer overflow in the display service allowing privilege escalation by executing code as that service in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon In...Show more
A process can potentially cause a buffer overflow in the display service allowing privilege escalation by executing code as that service in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon WearablesShow less
CVE-2021-1300
1Cisco
5Catalyst Sd Wan Manager
Ios Xe Sd WanSd Wan Firmware+2 more
Jun 17, 2026
Jan 20, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an affected device. For more information about these vulnerabilities, see the Details section o...Show more
Multiple vulnerabilities in Cisco SD-WAN products could allow an unauthenticated, remote attacker to execute attacks against an affected device. For more information about these vulnerabilities, see the Details section of this advisory.Show less
CVE-2021-3182
1Dlink
1Dcs 5220 Firmware
Jun 17, 2026
Jan 19, 2021
N/A· v4
8.0 HIGH· v3
7.7 HIGH· v2
D-Link DCS-5220 devices have a buffer overflow. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
CVE-2021-3177
5Debian
FedoraprojectNetapp+2 more
10Active Iq Unified Manager
Communications Cloud Native Core Network Function Cloud Native EnvironmentCommunications Offline Mediation Controller+7 more
Jun 17, 2026
Jan 19, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Python 3.x through 3.9.1 has a buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution in certain Python applications that accept floating-point numbers as untrusted input, as demons...Show more
Python 3.x through 3.9.1 has a buffer overflow in PyCArg_repr in _ctypes/callproc.c, which may lead to remote code execution in certain Python applications that accept floating-point numbers as untrusted input, as demonstrated by a 1e300 argument to c_double.from_param. This occurs because sprintf is used unsafely.Show less
CVE-2020-16146
1Espressif
1Esp Idf
Jun 17, 2026
Jan 12, 2021
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Espressif ESP-IDF 2.x, 3.0.x through 3.0.9, 3.1.x through 3.1.7, 3.2.x through 3.2.3, 3.3.x through 3.3.2, and 4.0.x through 4.0.1 has a Buffer Overflow in BluFi provisioning in btc_blufi_recv_handler function in blufi_p...Show more
Espressif ESP-IDF 2.x, 3.0.x through 3.0.9, 3.1.x through 3.1.7, 3.2.x through 3.2.3, 3.3.x through 3.3.2, and 4.0.x through 4.0.1 has a Buffer Overflow in BluFi provisioning in btc_blufi_recv_handler function in blufi_prf.c. An attacker can send a crafted BluFi protocol Write Attribute command to characteristic 0xFF01. With manipulated packet fields, there is a buffer overflow.Show less
CVE-2020-4869
1Ibm
1Mq Appliance
Jun 17, 2026
Jan 11, 2021
N/A· v4
6.5 MEDIUM· v3
4.0 MEDIUM· v2
IBM MQ Appliance 9.2 CD and 9.2 LTS is vulnerable to a denial of service, caused by a buffer overflow. A remote attacker could send a specially crafted SNMP query to cause the appliance to reload. IBM X-Force ID: 190831.
CVE-2018-9333
1K7computing
4Antivrius
Enterprise SecurityTotal Security+1 more
Jun 17, 2026
Jan 11, 2021
N/A· v4
7.8 HIGH· v3
4.6 MEDIUM· v2
K7Computing Pvt Ltd K7AntiVirus Premium 15.1.0.53 is affected by: Buffer Overflow. The impact is: execute arbitrary code (local). The component is: K7TSMngr.exe.