Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

CVEs (4,202)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-50610 1Netis Systems 1Wf2880 Firmware Jun 17, 2026 Aug 13, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 A buffer overflow vulnerability has been discovered in Netis WF2880 v2.1.40207 in the FUN_00476598 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the value of wl_base_set_5g in...Show more A buffer overflow vulnerability has been discovered in Netis WF2880 v2.1.40207 in the FUN_00476598 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the value of wl_base_set_5g in the payload, which can cause the program to crash and potentially lead to a Denial of Service (DoS) attack.Show less
CVE-2025-50609 1Netis Systems 1Wf2880 Firmware Jun 17, 2026 Aug 13, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 A buffer overflow vulnerability has been discovered in Netis WF2880 v2.1.40207 in the Function_00465620 of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the value of specify_parame in the...Show more A buffer overflow vulnerability has been discovered in Netis WF2880 v2.1.40207 in the Function_00465620 of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the value of specify_parame in the payload, which can cause the program to crash and potentially lead to a Denial of Service (DoS) attack.Show less
CVE-2025-50608 1Netis Systems 1Wf2880 Firmware Jun 17, 2026 Aug 13, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 A buffer overflow vulnerability has been discovered in Netis WF2880 v2.1.40207 in the FUN_00471994 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the value of wl_base_set in the...Show more A buffer overflow vulnerability has been discovered in Netis WF2880 v2.1.40207 in the FUN_00471994 function of the cgitest.cgi file. Attackers can trigger this vulnerability by controlling the value of wl_base_set in the payload, which can cause the program to crash and potentially lead to a Denial of Service (DoS) attack.Show less
CVE-2025-8760 - - Jun 17, 2026 Aug 13, 2025 9.3 CRITICAL· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 A vulnerability was identified in INSTAR 2K+ and 4K 3.11.1 Build 1124. This affects the function base64_decode of the component fcgi_server. The manipulation of the argument Authorization leads to buffer overflow. It is...Show more A vulnerability was identified in INSTAR 2K+ and 4K 3.11.1 Build 1124. This affects the function base64_decode of the component fcgi_server. The manipulation of the argument Authorization leads to buffer overflow. It is possible to initiate the attack remotely.Show less
CVE-2025-7677 - - Jun 17, 2026 Aug 11, 2025 8.2 HIGH· v4 5.9 MEDIUM· v3 N/A· v2 A denial-of-service (DoS) attack is possible if access to the local network is provided to unauthorized users. This is due to a buffer copy issue that may lead to a software crash. This issue affects all versions of ASP...Show more A denial-of-service (DoS) attack is possible if access to the local network is provided to unauthorized users. This is due to a buffer copy issue that may lead to a software crash. This issue affects all versions of ASPECT.Show less
CVE-2025-51824 1Libcsp 1Libcsp Jun 17, 2026 Aug 11, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 libcsp 2.0 is vulnerable to Buffer Overflow in the csp_usart_open() function at drivers/usart/zephyr.c.
CVE-2025-51823 1Libcsp 1Libcsp Jun 17, 2026 Aug 11, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 libcsp 2.0 is vulnerable to Buffer Overflow in the csp_eth_init() function due to improper handling of the ifname parameter. The function uses strcpy to copy the interface name into a structure member (ctx->name) without...Show more libcsp 2.0 is vulnerable to Buffer Overflow in the csp_eth_init() function due to improper handling of the ifname parameter. The function uses strcpy to copy the interface name into a structure member (ctx->name) without validating the input length.Show less
CVE-2025-8854 1Bulletphysics 1Pybullet Jun 17, 2026 Aug 11, 2025 8.4 HIGH· v4 9.8 CRITICAL· v3 N/A· v2 Stack-based buffer overflow in LoadOFF in bulletphysics bullet3 before 3.26 on all platforms allows remote attackers to execute arbitrary code via a crafted OFF file with an overlong initial token processed by the VHACD...Show more Stack-based buffer overflow in LoadOFF in bulletphysics bullet3 before 3.26 on all platforms allows remote attackers to execute arbitrary code via a crafted OFF file with an overlong initial token processed by the VHACD test utility or invoked indirectly through PyBullet's vhacd function.Show less
CVE-2025-8736 - - Jun 17, 2026 Aug 8, 2025 1.9 LOW· v4 5.3 MEDIUM· v3 4.3 MEDIUM· v2 A vulnerability, which was classified as critical, has been found in GNU cflow up to 1.8. Affected by this issue is the function yylex of the file c.c of the component Lexer. The manipulation leads to buffer overflow. Lo...Show more A vulnerability, which was classified as critical, has been found in GNU cflow up to 1.8. Affected by this issue is the function yylex of the file c.c of the component Lexer. The manipulation leads to buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used.Show less
CVE-2025-6634 1Autodesk 13ds Max Jun 17, 2026 Aug 6, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 A maliciously crafted TGA file, when linked or imported into Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of th...Show more A maliciously crafted TGA file, when linked or imported into Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.Show less
CVE-2025-27072 1Qualcomm 36Qam8255p Firmware Qam8295p FirmwareQam8620p Firmware+33 more Jun 17, 2026 Aug 6, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Information disclosure while processing a packet at EAVB BE side with invalid header length.
CVE-2025-27071 1Qualcomm 34Fastconnect 6800 Firmware Fastconnect 6900 FirmwareFastconnect 7800 Firmware+31 more Jun 17, 2026 Aug 6, 2025 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Memory corruption while processing specific files in Powerline Communication Firmware.
CVE-2025-54642 1Huawei 2Emui Harmonyos Jun 17, 2026 Aug 6, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Issue of buffer overflow caused by insufficient data verification in the kernel gyroscope module. Impact: Successful exploitation of this vulnerability may affect availability.
CVE-2025-54641 1Huawei 2Emui Harmonyos Jun 17, 2026 Aug 6, 2025 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Issue of buffer overflow caused by insufficient data verification in the kernel acceleration module. Impact: Successful exploitation of this vulnerability may affect availability.
CVE-2025-54632 1Huawei 2Emui Harmonyos Jun 17, 2026 Aug 6, 2025 N/A· v4 4.6 MEDIUM· v3 N/A· v2 Vulnerability of insufficient data length verification in the HVB module. Impact: Successful exploitation of this vulnerability may affect service integrity.
CVE-2012-10035 - - Aug 7, 2025 Aug 5, 2025 10.0 CRITICAL· v4 N/A· v3 N/A· v2 Turbo FTP Server versions 1.30.823 and 1.30.826 contain a buffer overflow vulnerability in the handling of the PORT command. By sending a specially crafted payload, an unauthenticated remote attacker can overwrite memory...Show more Turbo FTP Server versions 1.30.823 and 1.30.826 contain a buffer overflow vulnerability in the handling of the PORT command. By sending a specially crafted payload, an unauthenticated remote attacker can overwrite memory structures and execute arbitrary code with SYSTEM privileges.Show less
CVE-2025-5038 1Autodesk 1Shared Components Jun 17, 2026 Jul 29, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 A maliciously crafted X_T file, when parsed through certain Autodesk products, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of th...Show more A maliciously crafted X_T file, when parsed through certain Autodesk products, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.Show less
CVE-2025-53713 1Tp Link 1Tl Wr841n Firmware Jun 17, 2026 Jul 29, 2025 6.9 MEDIUM· v4 7.5 HIGH· v3 N/A· v2 A vulnerability has been found in TP-Link TL-WR841N V11. The vulnerability exists in the /userRpm/WlanNetworkRpm_APC.htm file due to missing input parameter validation, which may lead to the buffer overflow to cause a cr...Show more A vulnerability has been found in TP-Link TL-WR841N V11. The vulnerability exists in the /userRpm/WlanNetworkRpm_APC.htm file due to missing input parameter validation, which may lead to the buffer overflow to cause a crash of the web service and result in a denial-of-service (DoS) condition. The attack may be launched remotely. This vulnerability only affects products that are no longer supported by the maintainer.Show less
CVE-2025-53712 1Tp Link 1Tl Wr841n Firmware Jun 17, 2026 Jul 29, 2025 6.9 MEDIUM· v4 7.5 HIGH· v3 N/A· v2 A vulnerability has been found in TP-Link TL-WR841N V11. The vulnerability exists in the /userRpm/WlanNetworkRpm_AP.htm file due to missing input parameter validation, which may lead to the buffer overflow to cause a cra...Show more A vulnerability has been found in TP-Link TL-WR841N V11. The vulnerability exists in the /userRpm/WlanNetworkRpm_AP.htm file due to missing input parameter validation, which may lead to the buffer overflow to cause a crash of the web service and result in a denial-of-service (DoS) condition. The attack may be launched remotely. This vulnerability only affects products that are no longer supported by the maintainer.Show less
CVE-2025-53711 1Tp Link 1Tl Wr841n Firmware Jun 17, 2026 Jul 29, 2025 6.9 MEDIUM· v4 7.5 HIGH· v3 N/A· v2 A vulnerability has been found in TP-Link TL-WR841N v11, TL-WR842ND v2 and TL-WR494N v3. The vulnerability exists in the /userRpm/WlanNetworkRpm.htm file due to missing input parameter validation, which may lead to the b...Show more A vulnerability has been found in TP-Link TL-WR841N v11, TL-WR842ND v2 and TL-WR494N v3. The vulnerability exists in the /userRpm/WlanNetworkRpm.htm file due to missing input parameter validation, which may lead to the buffer overflow to cause a crash of the web service and result in a denial-of-service (DoS) condition. The attack may be launched remotely. This vulnerability only affects products that are no longer supported by the maintainer.Show less

Previous 1...363738...211 Next