Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

CVEs (4,224)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-49464 1Zoom 1Zoom Jun 17, 2026 Jul 10, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Classic buffer overflow in certain Zoom Clients for Windows may allow an authorised user to conduct a denial of service via network access.
CVE-2025-46789 1Zoom 1Zoom Jun 17, 2026 Jul 10, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Classic buffer overflow in certain Zoom Clients for Windows may allow an authorized user to conduct a denial of service via network access.
CVE-2025-5037 1Autodesk 1Revit Jun 17, 2026 Jul 10, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 A maliciously crafted RFA, RTE, or RVT file, when parsed through Autodesk Revit, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of...Show more A maliciously crafted RFA, RTE, or RVT file, when parsed through Autodesk Revit, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.Show less
CVE-2025-48386 - - Jun 17, 2026 Jul 8, 2025 N/A· v4 6.3 MEDIUM· v3 N/A· v2 Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The wincred credential helper uses a static buffer (t...Show more Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. The wincred credential helper uses a static buffer (target) as a unique key for storing and comparing against internal storage. This credential helper does not properly bounds check the available space remaining in the buffer before appending to it with wcsncat(), leading to potential buffer overflows. This vulnerability is fixed in v2.43.7, v2.44.4, v2.45.4, v2.46.4, v2.47.3, v2.48.2, v2.49.1, and v2.50.1.Show less
CVE-2025-7345 - - Jun 25, 2026 Jul 8, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 A flaw exists in gdk‑pixbuf within the gdk_pixbuf__jpeg_image_load_increment function (io-jpeg.c) and in glib’s g_base64_encode_step (glib/gbase64.c). When processing maliciously crafted JPEG images, a heap buffer overfl...Show more A flaw exists in gdk‑pixbuf within the gdk_pixbuf__jpeg_image_load_increment function (io-jpeg.c) and in glib’s g_base64_encode_step (glib/gbase64.c). When processing maliciously crafted JPEG images, a heap buffer overflow can occur during Base64 encoding, allowing out-of-bounds reads from heap memory, potentially causing application crashes or arbitrary code execution.Show less
CVE-2025-27058 1Qualcomm 8Fastconnect 6900 Firmware Fastconnect 7800 FirmwareSc8380xp Firmware+5 more Jun 17, 2026 Jul 8, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while processing packet data with exceedingly large packet.
CVE-2025-27052 1Qualcomm 154Ar8035 Firmware Fastconnect 6200 FirmwareFastconnect 6700 Firmware+151 more Jun 17, 2026 Jul 8, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while processing data packets in diag received from Unix clients.
CVE-2025-27043 1Qualcomm 203Ar8035 Firmware Csr8811 FirmwareFastconnect 6200 Firmware+200 more Jun 17, 2026 Jul 8, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while processing manipulated payload in video firmware.
CVE-2025-21445 1Qualcomm 27Qam8255p Firmware Qam8295p FirmwareQam8620p Firmware+24 more Jun 17, 2026 Jul 8, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while copying the result to the transmission queue which is shared between the virtual machine and the host.
CVE-2025-21444 1Qualcomm 27Qam8255p Firmware Qam8295p FirmwareQam8620p Firmware+24 more Jun 17, 2026 Jul 8, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while copying the result to the transmission queue in EMAC.
CVE-2025-21426 1Qualcomm 10Fastconnect 7800 Firmware Snapdragon Ar1 Gen 1 Platform FirmwareSsg2115p Firmware+7 more Jun 17, 2026 Jul 8, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while processing camera TPG write request.
CVE-2025-24004 1Phoenixcontact 4Charx Sec 3000 Firmware Charx Sec 3050 FirmwareCharx Sec 3100 Firmware+1 more Jun 17, 2026 Jul 8, 2025 N/A· v4 5.2 MEDIUM· v3 N/A· v2 A physical attacker with access to the device display via USB-C can send a message to the device which triggers an unsecure copy to a buffer resulting in loss of integrity and a temporary denial-of-service for the statio...Show more A physical attacker with access to the device display via USB-C can send a message to the device which triggers an unsecure copy to a buffer resulting in loss of integrity and a temporary denial-of-service for the stations until they got restarted by the watchdog.Show less
CVE-2025-24003 1Phoenixcontact 4Charx Sec 3000 Firmware Charx Sec 3050 FirmwareCharx Sec 3100 Firmware+1 more Jun 17, 2026 Jul 8, 2025 N/A· v4 8.2 HIGH· v3 N/A· v2 An unauthenticated remote attacker can use MQTT messages to trigger out-of-bounds writes in charging stations complying with German Calibration Law, resulting in a loss of integrity for only EichrechtAgents and potential...Show more An unauthenticated remote attacker can use MQTT messages to trigger out-of-bounds writes in charging stations complying with German Calibration Law, resulting in a loss of integrity for only EichrechtAgents and potential denial-of-service for these stations.Show less
CVE-2025-7118 1Utt 1840g Firmware Jun 17, 2026 Jul 7, 2025 7.4 HIGH· v4 8.8 HIGH· v3 9.0 HIGH· v2 A vulnerability, which was classified as critical, has been found in UTT HiPER 840G up to 3.1.1-190328. This issue affects some unknown processing of the file /goform/formPictureUrl. The manipulation of the argument impo...Show more A vulnerability, which was classified as critical, has been found in UTT HiPER 840G up to 3.1.1-190328. This issue affects some unknown processing of the file /goform/formPictureUrl. The manipulation of the argument importpictureurl leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2025-7117 1Utt 1840g Firmware Jun 17, 2026 Jul 7, 2025 7.4 HIGH· v4 8.8 HIGH· v3 9.0 HIGH· v2 A vulnerability classified as critical was found in UTT HiPER 840G up to 3.1.1-190328. This vulnerability affects unknown code of the file /goform/websWhiteList. The manipulation of the argument addHostFilter leads to bu...Show more A vulnerability classified as critical was found in UTT HiPER 840G up to 3.1.1-190328. This vulnerability affects unknown code of the file /goform/websWhiteList. The manipulation of the argument addHostFilter leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2025-7116 1Utt 1750w Firmware Jun 17, 2026 Jul 7, 2025 7.4 HIGH· v4 7.5 HIGH· v3 9.0 HIGH· v2 A vulnerability classified as critical has been found in UTT 进取 750W up to 3.2.2-191225. This affects an unknown part of the file /goform/Fast_wireless_conf. The manipulation of the argument ssid leads to buffer overflow...Show more A vulnerability classified as critical has been found in UTT 进取 750W up to 3.2.2-191225. This affects an unknown part of the file /goform/Fast_wireless_conf. The manipulation of the argument ssid leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2025-7077 1Szlbt 1Lbt T300 T310 Firmware Jun 17, 2026 Jul 6, 2025 7.4 HIGH· v4 8.8 HIGH· v3 9.0 HIGH· v2 A vulnerability classified as critical has been found in Shenzhen Libituo Technology LBT-T300-T310 up to 2.2.3.6. This affects the function config_3g_para of the file /appy.cgi. The manipulation of the argument username_...Show more A vulnerability classified as critical has been found in Shenzhen Libituo Technology LBT-T300-T310 up to 2.2.3.6. This affects the function config_3g_para of the file /appy.cgi. The manipulation of the argument username_3g/password_3g leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. Other parameters might be affected as well. The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2025-50263 1Tenda 1Ac6 Firmware Jun 17, 2026 Jul 3, 2025 N/A· v4 8.1 HIGH· v3 N/A· v2 Tenda AC6 v15.03.05.16_multi is vulnerable to Buffer Overflow in the fromSetRouteStatic function via the list parameter.
CVE-2025-50262 1Tenda 1Ac6 Firmware Jun 17, 2026 Jul 3, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 Tenda AC6 v15.03.05.16_multi is vulnerable to Buffer Overflow in the formSetQosBand function via the list parameter.
CVE-2025-50258 1Tenda 1Ac6 Firmware Jun 17, 2026 Jul 3, 2025 N/A· v4 8.1 HIGH· v3 N/A· v2 Tenda AC6 v15.03.05.16_multi is vulnerable to Buffer Overflow in the SetSysTimeCfg function via the time parameter.

Previous 1...404142...212 Next