Vulnerabilities > Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

DATE	CVE	VULNERABILITY TITLE	RISK
2020-01-21	CVE-2019-10606	Classic Buffer Overflow vulnerability in Qualcomm products Out-of-bound access will occur in USB driver due to lack of check to validate the frame size passed by user in Snapdragon Auto, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in MDM9607, MSM8909W, MSM8917, MSM8920, MSM8937, MSM8940, QCS605, SDX24 local low complexity qualcomm CWE-120	7.8
2020-01-15	CVE-2015-7874	Classic Buffer Overflow vulnerability in Portapps Kitty Portable 0.65.0.2P Buffer overflow in the chat server in KiTTY Portable 0.65.0.2p and earlier allows remote attackers to execute arbitrary code via a long nickname. network low complexity portapps CWE-120 critical	9.8
2020-01-09	CVE-2019-19494	Classic Buffer Overflow vulnerability in multiple products Broadcom based cable modems across multiple vendors are vulnerable to a buffer overflow, which allows a remote attacker to execute arbitrary code at the kernel level via JavaScript run in a victim's browser. network low complexity sagemcom netgear technicolor compal CWE-120	8.8
2020-01-08	CVE-2019-11759	Classic Buffer Overflow vulnerability in multiple products An attacker could have caused 4 bytes of HMAC output to be written past the end of a buffer stored on the stack. network low complexity mozilla canonical CWE-120	8.8
2020-01-07	CVE-2019-17147	Classic Buffer Overflow vulnerability in Tp-Link Tl-Wr841N Firmware 0.9.14.16 This vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-LINK TL-WR841N routers. network low complexity tp-link CWE-120	8.8
2020-01-06	CVE-2020-5204	Classic Buffer Overflow vulnerability in Troglobit Uftpd In uftpd before 2.11, there is a buffer overflow vulnerability in handle_PORT in ftpcmd.c that is caused by a buffer that is 16 bytes large being filled via sprintf() with user input based on the format specifier string %d.%d.%d.%d. network low complexity troglobit CWE-120	8.8
2020-01-03	CVE-2019-5304	Classic Buffer Overflow vulnerability in Huawei products Some Huawei products have a buffer error vulnerability. network low complexity huawei CWE-120	7.5
2020-01-03	CVE-2020-5312	Classic Buffer Overflow vulnerability in multiple products libImaging/PcxDecode.c in Pillow before 6.2.2 has a PCX P mode buffer overflow. network low complexity python canonical debian fedoraproject CWE-120 critical	9.8
2020-01-03	CVE-2020-5311	Classic Buffer Overflow vulnerability in multiple products libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow. network low complexity python debian canonical fedoraproject CWE-120 critical	9.8
2019-12-31	CVE-2013-4357	Classic Buffer Overflow vulnerability in multiple products The eglibc package before 2.14 incorrectly handled the getaddrinfo() function. network low complexity eglibc novell debian canonical fedoraproject CWE-120	7.5