Vulnerabilities > Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

DATE CVE VULNERABILITY TITLE RISK
2023-05-26 CVE-2021-46881 Classic Buffer Overflow vulnerability in Huawei Emui
The video framework has memory overwriting caused by addition overflow.
network
low complexity
huawei CWE-120
7.5
2023-05-26 CVE-2021-46882 Classic Buffer Overflow vulnerability in Huawei Emui
The video framework has memory overwriting caused by addition overflow.
network
low complexity
huawei CWE-120
7.5
2023-05-26 CVE-2021-46883 Classic Buffer Overflow vulnerability in Huawei Emui
The video framework has memory overwriting caused by addition overflow.
network
low complexity
huawei CWE-120
7.5
2023-05-26 CVE-2021-46884 Classic Buffer Overflow vulnerability in Huawei Emui
The video framework has memory overwriting caused by addition overflow.
network
low complexity
huawei CWE-120
7.5
2023-05-26 CVE-2021-46885 Classic Buffer Overflow vulnerability in Huawei Emui
The video framework has memory overwriting caused by addition overflow.
network
low complexity
huawei CWE-120
7.5
2023-05-26 CVE-2021-46886 Classic Buffer Overflow vulnerability in Huawei Emui
The video framework has memory overwriting caused by addition overflow.
network
low complexity
huawei CWE-120
7.5
2023-05-24 CVE-2023-33010 Classic Buffer Overflow vulnerability in Zyxel products
A buffer overflow vulnerability in the ID processing function in Zyxel ATP series firmware versions 4.32 through 5.36 Patch 1, USG FLEX series firmware versions 4.50 through 5.36 Patch 1, USG FLEX 50(W) firmware versions 4.25 through 5.36 Patch 1, USG20(W)-VPN firmware versions 4.25 through 5.36 Patch 1, VPN series firmware versions 4.30 through 5.36 Patch 1, ZyWALL/USG series firmware versions 4.25 through 4.73 Patch 1, could allow an unauthenticated attacker to cause denial-of-service (DoS) conditions and even a remote code execution on an affected device.
network
low complexity
zyxel CWE-120
critical
9.8
2023-05-24 CVE-2023-1424 Classic Buffer Overflow vulnerability in Mitsubishielectric products
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series CPU modules and MELSEC iQ-R Series CPU modules allows a remote unauthenticated attacker to cause a denial of service (DoS) condition or execute malicious code on a target product by sending specially crafted packets.
network
high complexity
mitsubishielectric CWE-120
8.1
2023-05-23 CVE-2023-23300 Classic Buffer Overflow vulnerability in Garmin Connect-Iq 4.1.7
The `Toybox.Cryptography.Cipher.initialize` API method in CIQ API version 3.0.0 through 4.1.7 does not validate its parameters, which can result in buffer overflows when copying data.
network
low complexity
garmin CWE-120
critical
9.8
2023-05-23 CVE-2023-23302 Classic Buffer Overflow vulnerability in Garmin Connect-Iq 2.3.0/4.1.7
The `Toybox.GenericChannel.setDeviceConfig` API method in CIQ API version 1.2.0 through 4.1.7 does not validate its parameter, which can result in buffer overflows when copying various attributes.
network
low complexity
garmin CWE-120
critical
9.8