CWE-120
4,201 CVEs • Abstraction: Base • Likelihood of Exploit: High
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.
CVEs (4,201)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
NetSarang XFTP Client 6.0149 and earlier version contains a buffer overflow vulnerability caused by improper boundary checks when copying file name from an attacker controlled FTP server. That leads attacker to execute a...Show more |
1Upredsun 1File Sharing Wizard Jun 17, 2026 Oct 9, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A Structured Exception Handler (SEH) based buffer overflow in File Sharing Wizard 1.5.0 26-8-2008 allows remote unauthenticated attackers to execute arbitrary code via the HTTP DELETE method, a similar issue to CVE-2019-...Show more |
3Canonical DebianExiv23Debian Linux Exiv2Ubuntu LinuxJun 17, 2026 Oct 9, 2019 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimage_int.cpp, because there is no validation of the relationship of t...Show more |
IrfanView 4.53 allows Data from a Faulting Address to control a subsequent Write Address starting at JPEG_LS+0x0000000000007da8. |
IrfanView 4.53 allows Data from a Faulting Address to control Code Flow starting at JPEG_LS+0x0000000000001d8a. |
IrfanView 4.53 allows Data from a Faulting Address to control Code Flow starting at JPEG_LS+0x0000000000003155. |
4Canonical DebianLinux+1 more4Debian Linux LeapLinux Kernel+1 moreJun 17, 2026 Oct 4, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow. |
In libopenmpt before 0.3.19 and 0.4.x before 0.4.9, ModPlug_InstrumentName and ModPlug_SampleName in libopenmpt_modplug.c do not restrict the lengths of libmodplug output-buffer strings in the C API, leading to a buffer...Show more |
8Apple CanonicalDebian+5 more10Cloud Backup Debian LinuxEnterprise Linux+7 moreJun 17, 2026 Oct 3, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 lmp_print_data_link_subobjs() in print-lmp.c in tcpdump before 4.9.3 lacks certain bounds checks. |
The command-line argument parser in tcpdump before 4.99.0 has a buffer overflow in tcpdump.c:read_infile(). To trigger this vulnerability the attacker needs to create a 4GB file on the local filesystem and to specify the...Show more |
7Apple DebianF5+4 more7Debian Linux Enterprise LinuxFedora+4 moreDec 3, 2025 Oct 3, 2019 N/A· v4 7.0 HIGH· v3 5.1 MEDIUM· v2 The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:get_next_file(). |
1Qualcomm 44Mdm9150 Firmware Mdm9206 FirmwareMdm9607 Firmware+41 moreJun 17, 2026 Sep 30, 2019 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Buffer overflow when the audio buffer size provided by user is larger than the maximum allowable audio buffer size. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon I...Show more |
1Qualcomm 38Mdm9150 Firmware Mdm9607 FirmwareMdm9650 Firmware+35 moreJun 17, 2026 Sep 30, 2019 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Buffer overflow due to improper validation of buffer size while IPA driver processing to perform read operation in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobil...Show more |
1Qualcomm 36Mdm9650 Firmware Msm8909w FirmwareMsm8996au Firmware+33 moreJun 17, 2026 Sep 30, 2019 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Classic buffer overflow vulnerability while playing the specific video whose Decode picture buffer size is more than 16 in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon...Show more |
1Qualcomm 27Ipq8074 Firmware Msm8996au FirmwareQca6174a Firmware+24 moreJun 17, 2026 Sep 30, 2019 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Buffer overflow in WLAN NAN function due to lack of check of count value received in NAN availability attribute in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivit...Show more |
1Qualcomm 49Ipq8074 Firmware Mdm9206 FirmwareMdm9607 Firmware+46 moreJun 17, 2026 Sep 30, 2019 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 Possible buffer overflow issue due to lack of length check when parsing the extended cap IE header length in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Sna...Show more |
1Qualcomm 26Mdm9150 Firmware Mdm9206 FirmwareMdm9607 Firmware+23 moreJun 17, 2026 Sep 30, 2019 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Lack of input validation for data received from user space can lead to OOB access in WLAN in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon I...Show more |
1Qualcomm 44Mdm9150 Firmware Mdm9206 FirmwareMdm9607 Firmware+41 moreJun 17, 2026 Sep 30, 2019 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Buffer overflow scenario if the client sends more than 5 io_vec requests to the server in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdr...Show more |
The Netskope client service, v57 before 57.2.0.219 and v60 before 60.2.0.214, running with NT\SYSTEM privilege, accepts network connections from localhost. The connection handling function in this service suffers from a...Show more |
A vulnerability in the FTP application layer gateway (ALG) functionality used by Network Address Translation (NAT), NAT IPv6 to IPv4 (NAT64), and the Zone-Based Policy Firewall (ZBFW) in Cisco IOS XE Software could allow...Show more |