Vulnerabilities > Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-01-10 | CVE-2017-11003 | Classic Buffer Overflow vulnerability in Google Android In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while updating a firmware image, data is read from flash into RAM without checking that the data fits into allotted RAM size. | 7.8 |
| 2017-11-16 | CVE-2017-11015 | Classic Buffer Overflow vulnerability in Google Android In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, currently, the value of SIR_MAC_AUTH_CHALLENGE_LENGTH is set to 128 which may result in buffer overflow since the frame parser allows challenge text of length up to 253 bytes, but the driver can not handle challenge text larger than 128 bytes. | 7.8 |
| 2017-11-16 | CVE-2017-11014 | Classic Buffer Overflow vulnerability in Google Android In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while parsing a Measurement Request IE in a Roam Neighbor Action Report, a buffer overflow can occur. | 7.8 |
| 2017-11-16 | CVE-2017-11013 | Classic Buffer Overflow vulnerability in Google Android In android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, countOffset (in function UnpackCore) is increased for each loop, while there is no boundary check against "pIe->arraybound". | 7.8 |
| 2017-10-24 | CVE-2017-15222 | Classic Buffer Overflow vulnerability in Nftp Project Nftp Buffer Overflow vulnerability in Ayukov NFTPD 2.0 and earlier allows remote attackers to execute arbitrary code. | 9.8 |
| 2017-09-21 | CVE-2017-8278 | Classic Buffer Overflow vulnerability in Google Android In all Qualcomm products with Android releases from CAF using the Linux kernel, while reading audio data from an unspecified driver, a buffer overflow or integer overflow could occur. | 7.8 |
| 2017-09-14 | CVE-2017-0782 | Classic Buffer Overflow vulnerability in Google Android A remote code execution vulnerability in the Android system (bluetooth). | 8.8 |
| 2017-09-08 | CVE-2017-0767 | Classic Buffer Overflow vulnerability in Google Android A elevation of privilege vulnerability in the Android media framework (libeffects). | 7.8 |
| 2017-08-24 | CVE-2017-12137 | Classic Buffer Overflow vulnerability in multiple products arch/x86/mm.c in Xen allows local PV guest OS users to gain host OS privileges via vectors related to map_grant_ref. | 8.8 |
| 2017-08-16 | CVE-2017-6421 | Classic Buffer Overflow vulnerability in Google Android In the touch controller function in all Qualcomm products with Android for MSM, Firefox OS for MSM, or QRD Android, a variable may be controlled by the user and can lead to a buffer overflow. | 8.8 |