Vulnerabilities > Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

DATE CVE VULNERABILITY TITLE RISK
2023-11-07 CVE-2023-5748 Classic Buffer Overflow vulnerability in Synology SSL VPN Client
Buffer copy without checking size of input ('Classic Buffer Overflow') vulnerability in cgi component in Synology SSL VPN Client before 1.4.7-0687 allows local users to conduct denial-of-service attacks via unspecified vectors.
local
low complexity
synology CWE-120
5.5
2023-11-03 CVE-2023-46847 Classic Buffer Overflow vulnerability in multiple products
Squid is vulnerable to a Denial of Service, where a remote attacker can perform buffer overflow attack by writing up to 2 MB of arbitrary data to heap memory when Squid is configured to accept HTTP Digest Authentication.
network
low complexity
squid-cache redhat CWE-120
7.5
2023-11-02 CVE-2023-42299 Classic Buffer Overflow vulnerability in Openimageio 2.4.12.0
Buffer Overflow vulnerability in OpenImageIO oiio v.2.4.12.0 allows a remote attacker to execute arbitrary code and cause a denial of service via the read_subimage_data function.
network
low complexity
openimageio CWE-120
critical
9.8
2023-11-01 CVE-2023-4452 Classic Buffer Overflow vulnerability in Moxa products
A vulnerability has been identified in the EDR-810, EDR-G902, and EDR-G903 Series, making them vulnerable to the denial-of-service vulnerability.
network
low complexity
moxa CWE-120
7.5
2023-10-30 CVE-2023-45797 Classic Buffer Overflow vulnerability in Dreamsecurity Magicline 4.0 1.0.0.1/1.0.0.26
A Buffer overflow vulnerability in DreamSecurity MagicLine4NX versions 1.0.0.1 to 1.0.0.26 allows an attacker to remotely execute code.
network
low complexity
dreamsecurity CWE-120
critical
9.8
2023-10-27 CVE-2023-46587 Classic Buffer Overflow vulnerability in Xnview 2.51.5
Buffer Overflow vulnerability in XnView Classic v.2.51.5 allows a local attacker to execute arbitrary code via a crafted TIF file.
local
low complexity
xnview CWE-120
7.8
2023-10-27 CVE-2023-46852 Classic Buffer Overflow vulnerability in Memcached
In Memcached before 1.6.22, a buffer overflow exists when processing multiget requests in proxy mode, if there are many spaces after the "get" substring.
network
low complexity
memcached CWE-120
7.5
2023-10-26 CVE-2018-17878 Classic Buffer Overflow vulnerability in Abus products
Buffer Overflow vulnerability in certain ABUS TVIP cameras allows attackers to gain control of the program via crafted string sent to sprintf() function.
network
low complexity
abus CWE-120
critical
9.8
2023-10-26 CVE-2023-5139 Classic Buffer Overflow vulnerability in Zephyrproject Zephyr
Potential buffer overflow vulnerability at the following location in the Zephyr STM32 Crypto driver
local
low complexity
zephyrproject CWE-120
7.8
2023-10-25 CVE-2023-5753 Classic Buffer Overflow vulnerability in Zephyrproject Zephyr
Potential buffer overflows in the Bluetooth subsystem due to asserts being disabled in /subsys/bluetooth/host/hci_core.c
low complexity
zephyrproject CWE-120
8.8