Vulnerabilities > Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

DATE CVE VULNERABILITY TITLE RISK
2021-02-08 CVE-2021-25170 Classic Buffer Overflow vulnerability in HPE Baseboard Management Controller
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer overflow in libifc.so websetremoteimageinfo function.
local
low complexity
hpe CWE-120
7.8
7.8
2021-02-08 CVE-2021-25169 Classic Buffer Overflow vulnerability in HPE Baseboard Management Controller
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer overflow in libifc.so websetservicecfg function.
local
low complexity
hpe CWE-120
7.8
7.8
2021-02-08 CVE-2021-25168 Classic Buffer Overflow vulnerability in HPE Baseboard Management Controller
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer overflow in libifc.so webupdatecomponent function.
local
low complexity
hpe CWE-120
7.8
7.8
2021-02-08 CVE-2021-25142 Classic Buffer Overflow vulnerability in HPE Baseboard Management Controller
The Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0 has a local buffer overflow in libifc.so webstartflash function.
local
low complexity
hpe CWE-120
7.8
7.8
2021-02-06 CVE-2021-22305 Classic Buffer Overflow vulnerability in Huawei Mate 30 Firmware 10.1.0.126(C00E125R5P3)
There is a buffer overflow vulnerability in Mate 30 10.1.0.126(C00E125R5P3).
local
low complexity
huawei CWE-120
3.3
3.3
2021-02-06 CVE-2021-22301 Classic Buffer Overflow vulnerability in Huawei Mate 30 Firmware 10.0.0.203(C00E201R7P2)
Mate 30 10.0.0.203(C00E201R7P2) have a buffer overflow vulnerability.
local
low complexity
huawei CWE-120
6.7
6.7
2021-02-05 CVE-2020-18750 Classic Buffer Overflow vulnerability in Flowpaper Pdf2Json 0.69
Buffer overflow in pdf2json 0.69 allows local users to execute arbitrary code by converting a crafted PDF file.
local
low complexity
flowpaper CWE-120
7.8
7.8
2021-02-04 CVE-2020-6088 Classic Buffer Overflow vulnerability in Rockwellautomation Flex IO 1794-Aent/B Firmware 4.003
An exploitable denial of service vulnerability exists in the ENIP Request Path Network Segment functionality of Allen-Bradley Flex IO 1794-AENT/B 4.003.
network
low complexity
rockwellautomation CWE-120
7.5
7.5
2021-02-01 CVE-2020-36109 Classic Buffer Overflow vulnerability in Asus Rt-Ax86U Firmware 3.0.0.4.386.46061/3.0.0.4.38649447
ASUS RT-AX86U router firmware below version under 9.0.0.4_386 has a buffer overflow in the blocking_request.cgi function of the httpd module that can cause code execution when an attacker constructs malicious data.
network
low complexity
asus CWE-120
critical
 9.8
9.8
2021-01-29 CVE-2021-25138 Classic Buffer Overflow vulnerability in HPE products
The Baseboard Management Controller(BMC) in HPE Cloudline CL5800 Gen9 Server; HPE Cloudline CL5200 Gen9 Server; HPE Cloudline CL4100 Gen10 Server; HPE Cloudline CL3100 Gen10 Server; HPE Cloudline CL5800 Gen10 Server BMC firmware has a local buffer overlfow in spx_restservice uploadsshkey function.
local
low complexity
hpe CWE-120
7.8
7.8