Vulnerabilities > Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-17 | CVE-2020-11299 | Classic Buffer Overflow vulnerability in Qualcomm products Buffer overflow can occur in video while playing the non-standard clip in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables | 10.0 |
| 2021-03-15 | CVE-2021-27208 | Classic Buffer Overflow vulnerability in Xilinx Zynq-7000 Firmware and Zynq-7000S Firmware When booting a Zync-7000 SOC device from nand flash memory, the nand driver in the ROM does not validate the inputs when reading in any parameters in the nand’s parameter page. | 4.6 |
| 2021-03-11 | CVE-2020-5025 | Classic Buffer Overflow vulnerability in multiple products IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 db2fm is vulnerable to a buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code on the system with root privileges. | 7.2 |
| 2021-03-10 | CVE-2020-35227 | Classic Buffer Overflow vulnerability in Netgear Gs116E Firmware and Jgs516Pe Firmware A buffer overflow vulnerability in the access control section on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices (in the administration web panel) allows an attacker to inject IP addresses into the whitelist via the checkedList parameter to the delete command. | 6.5 |
| 2021-03-10 | CVE-2020-35225 | Classic Buffer Overflow vulnerability in Netgear Gs116E Firmware and Jgs516Pe Firmware The NSDP protocol implementation on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was not properly validating the length of string parameters sent in write requests, potentially allowing denial of service attacks. | 5.2 |
| 2021-03-10 | CVE-2020-35224 | Classic Buffer Overflow vulnerability in Netgear Gs116E Firmware and Jgs516Pe Firmware A buffer overflow vulnerability in the NSDP protocol authentication method on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allows remote unauthenticated attackers to force a device reboot. | 6.1 |
| 2021-03-05 | CVE-2021-27965 | Classic Buffer Overflow vulnerability in MSI Dragon Center The MsIo64.sys driver before 1.1.19.1016 in MSI Dragon Center before 2.0.98.0 has a buffer overflow that allows privilege escalation via a crafted 0x80102040, 0x80102044, 0x80102050, or 0x80102054 IOCTL request. | 7.5 |
| 2021-03-02 | CVE-2021-25306 | Classic Buffer Overflow vulnerability in Gigaset Dx600A Firmware V41.00175 A buffer overflow vulnerability in the AT command interface of Gigaset DX600A v41.00-175 devices allows remote attackers to force a device reboot by sending relatively long AT commands. | 7.8 |
| 2021-02-23 | CVE-2020-7120 | Classic Buffer Overflow vulnerability in Arubanetworks Clearpass Policy Manager A local authenticated buffer overflow vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. | 4.6 |
| 2021-02-22 | CVE-2020-11223 | Classic Buffer Overflow vulnerability in Qualcomm products Out of bound in camera driver due to lack of check of validation of array index before copying into array in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables | 7.2 |