Vulnerabilities > Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-03-18 | CVE-2023-52612 | Classic Buffer Overflow vulnerability in multiple products In the Linux kernel, the following vulnerability has been resolved: crypto: scomp - fix req->dst buffer overflow The req->dst buffer size should be checked before copying from the scomp_scratch->dst to avoid req->dst buffer overflow problem. | 7.8 |
| 2024-03-18 | CVE-2023-52614 | Classic Buffer Overflow vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Fix buffer overflow in trans_stat_show Fix buffer overflow in trans_stat_show(). Convert simple snprintf to the more secure scnprintf with size of PAGE_SIZE. Add condition checking if we are exceeding PAGE_SIZE and exit early from loop. | 7.8 |
| 2024-03-16 | CVE-2024-28639 | Classic Buffer Overflow vulnerability in Totolink A7000R Firmware and X5000R Firmware Buffer Overflow vulnerability in TOTOLink X5000R V9.1.0u.6118-B20201102 and A7000R V9.1.0u.6115-B20201022, allow remote attackers to execute arbitrary code and cause a denial of service (DoS) via the IP field. | 9.8 |
| 2024-03-08 | CVE-2024-23286 | Classic Buffer Overflow vulnerability in Apple products A buffer overflow issue was addressed with improved memory handling. | 7.8 |
| 2024-03-06 | CVE-2024-25817 | Classic Buffer Overflow vulnerability in Eza.Rock EZA Buffer Overflow vulnerability in eza before version 0.18.2, allows local attackers to execute arbitrary code via the .git/HEAD, .git/refs, and .git/objects components. | 7.8 |
| 2024-03-04 | CVE-2021-47107 | Classic Buffer Overflow vulnerability in Linux Kernel In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix READDIR buffer overflow If a client sends a READDIR count argument that is too small (say, zero), then the buffer size calculation in the new init_dirlist helper functions results in an underflow, allowing the XDR stream functions to write beyond the actual buffer. This calculation has always been suspect. | 7.8 |
| 2024-03-04 | CVE-2023-32331 | Classic Buffer Overflow vulnerability in IBM Sterling Connect:Express for Unix 1.5.0 IBM Connect:Express for UNIX 1.5.0 is vulnerable to a buffer overflow that could allow a remote attacker to cause a denial of service through its browser UI. | 7.5 |
| 2024-03-04 | CVE-2024-0156 | Classic Buffer Overflow vulnerability in Dell Digital Delivery Dell Digital Delivery, versions prior to 5.2.0.0, contain a Buffer Overflow Vulnerability. | 7.8 |
| 2024-02-29 | CVE-2024-20267 | Classic Buffer Overflow vulnerability in Cisco Nx-Os A vulnerability with the handling of MPLS traffic for Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause the netstack process to unexpectedly restart, which could cause the device to stop processing network traffic or to reload. | 8.6 |
| 2024-02-29 | CVE-2023-6881 | Classic Buffer Overflow vulnerability in Zephyrproject Zephyr Possible buffer overflow in is_mount_point | 9.8 |