Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

CVEs (4,202)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-9063 1Ncr 1Aptra Xfs Jun 17, 2026 Aug 21, 2020 N/A· v4 7.6 HIGH· v3 7.2 HIGH· v2 NCR SelfServ ATMs running APTRA XFS 05.01.00 or earlier do not authenticate or protect the integrity of USB HID communications between the currency dispenser and the host computer, permitting an attacker with physical ac...Show more NCR SelfServ ATMs running APTRA XFS 05.01.00 or earlier do not authenticate or protect the integrity of USB HID communications between the currency dispenser and the host computer, permitting an attacker with physical access to internal ATM components the ability to inject a malicious payload and execute arbitrary code with SYSTEM privileges on the host computer by causing a buffer overflow on the host.Show less
CVE-2019-11859 1Sierrawireless 1Aleos Jun 17, 2026 Aug 21, 2020 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A buffer overflow exists in the SMS handler API of ALEOS before 4.13.0, 4.9.5, 4.9.4 that may allow code execution as root.
CVE-2019-11858 1Sierrawireless 1Aleos Jun 17, 2026 Aug 21, 2020 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 Multiple buffer overflow vulnerabilities exist in the AceManager Web API of ALEOS before 4.13.0, 4.9.5, and 4.4.9.
CVE-2020-15532 1Silabs 1Bluetooth Low Energy Software Development Kit Jun 17, 2026 Aug 20, 2020 N/A· v4 6.5 MEDIUM· v3 3.3 LOW· v2 Silicon Labs Bluetooth Low Energy SDK before 2.13.3 has a buffer overflow via packet data. This is an over-the-air denial of service vulnerability in Bluetooth LE in EFR32 SoCs and associated modules running Bluetooth SD...Show more Silicon Labs Bluetooth Low Energy SDK before 2.13.3 has a buffer overflow via packet data. This is an over-the-air denial of service vulnerability in Bluetooth LE in EFR32 SoCs and associated modules running Bluetooth SDK, supporting Central or Observer roles.Show less
CVE-2020-15531 1Silabs 1Bluetooth Low Energy Software Development Kit Jun 17, 2026 Aug 20, 2020 N/A· v4 8.8 HIGH· v3 5.8 MEDIUM· v2 Silicon Labs Bluetooth Low Energy SDK before 2.13.3 has a buffer overflow via packet data. This is an over-the-air remote code execution vulnerability in Bluetooth LE in EFR32 SoCs and associated modules running Bluetoot...Show more Silicon Labs Bluetooth Low Energy SDK before 2.13.3 has a buffer overflow via packet data. This is an over-the-air remote code execution vulnerability in Bluetooth LE in EFR32 SoCs and associated modules running Bluetooth SDK, supporting Central or Observer roles.Show less
CVE-2020-9704 1Adobe 2Acrobat Dc Acrobat Reader Dc Jun 17, 2026 Aug 19, 2020 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a buffer error vulnerability. Successful exploitation could lead to arbitrary...Show more Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a buffer error vulnerability. Successful exploitation could lead to arbitrary code execution .Show less
CVE-2020-9701 1Adobe 2Acrobat Dc Acrobat Reader Dc Jun 17, 2026 Aug 19, 2020 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a buffer error vulnerability. Successful exploitation could lead to arbitrary...Show more Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a buffer error vulnerability. Successful exploitation could lead to arbitrary code execution .Show less
CVE-2020-9700 1Adobe 2Acrobat Dc Acrobat Reader Dc Jun 17, 2026 Aug 19, 2020 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a buffer error vulnerability. Successful exploitation could lead to arbitrary...Show more Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a buffer error vulnerability. Successful exploitation could lead to arbitrary code execution .Show less
CVE-2020-9699 1Adobe 2Acrobat Dc Acrobat Reader Dc Jun 17, 2026 Aug 19, 2020 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a buffer error vulnerability. Successful exploitation could lead to arbitrary...Show more Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a buffer error vulnerability. Successful exploitation could lead to arbitrary code execution .Show less
CVE-2020-9698 1Adobe 2Acrobat Dc Acrobat Reader Dc Jun 17, 2026 Aug 19, 2020 N/A· v4 7.8 HIGH· v3 9.3 HIGH· v2 Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a buffer error vulnerability. Successful exploitation could lead to arbitrary...Show more Adobe Acrobat and Reader versions 2020.009.20074 and earlier, 2020.001.30002, 2017.011.30171 and earlier, and 2015.006.30523 and earlier have a buffer error vulnerability. Successful exploitation could lead to arbitrary code execution .Show less
CVE-2019-6258 1D Link 1Dir 822 Firmware Jun 17, 2026 Aug 18, 2020 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 D-Link DIR-822 Rev.Bx devices with firmware v.202KRb06 and older allow a buffer overflow via long MacAddress data in a /HNAP1/SetClientInfo HNAP protocol message, which is mishandled in /usr/sbin/udhcpd during reading of...Show more D-Link DIR-822 Rev.Bx devices with firmware v.202KRb06 and older allow a buffer overflow via long MacAddress data in a /HNAP1/SetClientInfo HNAP protocol message, which is mishandled in /usr/sbin/udhcpd during reading of the /var/servd/LAN-1-udhcpd.conf file.Show less
CVE-2020-8720 1Intel 18Compute Module Hns2600bp Firmware Compute Module Hns2600kp FirmwareCompute Module Hns2600tp Firmware+15 more Jun 17, 2026 Aug 13, 2020 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 Buffer overflow in a subsystem for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow a privileged user to potentially enable denial of service via local access.
CVE-2020-8729 1Intel 18Compute Module Hns2600bp Firmware Compute Module Hns2600kp FirmwareCompute Module Hns2600tp Firmware+15 more Jun 17, 2026 Aug 13, 2020 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Buffer copy without checking size of input for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an authenticated user to potentially enable escalation of privilege via local a...Show more Buffer copy without checking size of input for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an authenticated user to potentially enable escalation of privilege via local access.Show less
CVE-2020-8722 1Intel 18Compute Module Hns2600bp Firmware Compute Module Hns2600kp FirmwareCompute Module Hns2600tp Firmware+15 more Jun 17, 2026 Aug 13, 2020 N/A· v4 8.2 HIGH· v3 4.6 MEDIUM· v2 Buffer overflow in a subsystem for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow a privileged user to potentially enable escalation of privilege via local access.
CVE-2020-8719 1Intel 18Compute Module Hns2600bp Firmware Compute Module Hns2600kp FirmwareCompute Module Hns2600tp Firmware+15 more Jun 17, 2026 Aug 13, 2020 N/A· v4 8.2 HIGH· v3 4.6 MEDIUM· v2 Buffer overflow in subsystem for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow a privileged user to potentially enable escalation of privilege via local access.
CVE-2020-8718 1Intel 18Compute Module Hns2600bp Firmware Compute Module Hns2600kp FirmwareCompute Module Hns2600tp Firmware+15 more Jun 17, 2026 Aug 13, 2020 N/A· v4 8.8 HIGH· v3 4.6 MEDIUM· v2 Buffer overflow in a subsystem for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an authenticated user to potentially enable escalation of privilege via local access.
CVE-2020-8712 1Intel 18Compute Module Hns2600bp Firmware Compute Module Hns2600kp FirmwareCompute Module Hns2600tp Firmware+15 more Jun 17, 2026 Aug 13, 2020 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Buffer overflow in a verification process for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.45 may allow an authenticated user to potentially enable escalation of privilege via local ac...Show more Buffer overflow in a verification process for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.45 may allow an authenticated user to potentially enable escalation of privilege via local access.Show less
CVE-2020-8710 1Intel 18Compute Module Hns2600bp Firmware Compute Module Hns2600kp FirmwareCompute Module Hns2600tp Firmware+15 more Jun 17, 2026 Aug 13, 2020 N/A· v4 6.7 MEDIUM· v3 4.6 MEDIUM· v2 Buffer overflow in the bootloader for some Intel(R) Server Boards, Server Systems and Compute Modules before version 2.45 may allow a privileged user to potentially enable escalation of privilege via local access.
CVE-2020-8707 1Intel 18Compute Module Hns2600bp Firmware Compute Module Hns2600kp FirmwareCompute Module Hns2600tp Firmware+15 more Jun 17, 2026 Aug 13, 2020 N/A· v4 8.8 HIGH· v3 5.8 MEDIUM· v2 Buffer overflow in daemon for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.
CVE-2020-8706 1Intel 18Compute Module Hns2600bp Firmware Compute Module Hns2600kp FirmwareCompute Module Hns2600tp Firmware+15 more Jun 17, 2026 Aug 13, 2020 N/A· v4 8.8 HIGH· v3 5.8 MEDIUM· v2 Buffer overflow in a daemon for some Intel(R) Server Boards, Server Systems and Compute Modules before version 1.59 may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.

Previous 1...180181182...211 Next