CWE-120
4,202 CVEs • Abstraction: Base • Likelihood of Exploit: High
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.
CVEs (4,202)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
2Ivanti Pulsesecure4Connect Secure Policy SecurePulse Connect Secure+1 moreJun 17, 2026 Oct 28, 2020 N/A· v4 4.3 MEDIUM· v3 4.3 MEDIUM· v2 A vulnerability in the Pulse Connect Secure / Pulse Policy Secure < 9.1R9 is vulnerable to arbitrary cookie injection. |
1Pulsesecure 1Pulse Secure Desktop Client Jun 17, 2026 Oct 28, 2020 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 A vulnerability in the Pulse Secure Desktop Client (Linux) < 9.1R9 could allow local attackers to perform buffer overflow. |
A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Catalina 10.15.6, Security Update 2020-004 Mojave, Security Update 2020-004 High Sierra. A buffer overflow may result in arbitra...Show more |
A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra. In certain configurations, a remote...Show more |
A buffer overflow was addressed with improved bounds checking. This issue is fixed in macOS Catalina 10.15.2, Security Update 2019-002 Mojave, and Security Update 2019-007 High Sierra. An attacker in a privileged positio...Show more |
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra. An attacker in a privileged network...Show more |
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra. An attacker in a privileged network...Show more |
3Illumos JoyentOmniosce3Illumos OmniosSmartosJun 17, 2026 Oct 26, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An issue was discovered in illumos before 2020-10-22, as used in OmniOS before r151030by, r151032ay, and r151034y and SmartOS before 20201022. There is a buffer overflow in parse_user_name in lib/libpam/pam_framework.c. |
Verifone Verix OS on VerixV Pinpad Payment Terminals with QT000530 have a Buffer Overflow via the Run system call. |
Microchip CryptoAuthentication Library CryptoAuthLib prior to 20191122 has a Buffer Overflow (issue 1 of 2). |
1Apple 4Ipados Iphone OsMac Os X+1 moreJun 17, 2026 Oct 22, 2020 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, watchOS 6.2.8. Processing a maliciously crafted USD file may lead to unexpecte...Show more |
1Apple 4Ipados Iphone OsMac Os X+1 moreJun 17, 2026 Oct 22, 2020 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8. Processing a maliciously crafted USD file may lead to unexpected...Show more |
1Apple 4Ipados Iphone OsMac Os X+1 moreJun 17, 2026 Oct 22, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8. A remote attacker may be able to cause a denial of service. |
Microchip CryptoAuthentication Library CryptoAuthLib prior to 20191122 has a Buffer Overflow (issue 2 of 2). |
1Apple 8Icloud IpadosIphone Os+5 moreJun 17, 2026 Oct 22, 2020 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8, iTunes 12.10.8 for Windows, iCloud for Windows 11....Show more |
1Apple 4Ipados Iphone OsMac Os X+1 moreJun 17, 2026 Oct 22, 2020 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, watchOS 6.2.8. Processing a maliciously crafted USD file may lead to unexpecte...Show more |
1Apple 4Ipados Iphone OsMac Os X+1 moreJun 17, 2026 Oct 22, 2020 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, watchOS 6.2.8. Processing a maliciously crafted USD file may lead to unexpecte...Show more |
1Apple 5Ipados Iphone OsMac Os X+2 moreJun 17, 2026 Oct 22, 2020 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A buffer overflow was addressed with improved bounds checking. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8. Processing a maliciously crafted USD file may lead to un...Show more |
1Rockwellautomation 1Flex I/o 1794 Aent Jun 17, 2026 Oct 19, 2020 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 An exploitable denial of service vulnerability exists in the ENIP Request Path Logical Segment functionality of Allen-Bradley Flex IO 1794-AENT/B 4.003. A specially crafted network request can cause a loss of communicati...Show more |
1Rockwellautomation 1Flex I/o 1794 Aent Jun 17, 2026 Oct 19, 2020 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 An exploitable denial of service vulnerability exists in the ENIP Request Path Logical Segment functionality of Allen-Bradley Flex IO 1794-AENT/B 4.003. A specially crafted network request can cause a loss of communicati...Show more |