Vulnerabilities > Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

DATE CVE VULNERABILITY TITLE RISK
2023-02-03 CVE-2021-37311 Classic Buffer Overflow vulnerability in Fcitx 5 Project Fcitx 5 5.0.8
Buffer Overflow vulnerability in fcitx5 5.0.8 allows attackers to cause a denial of service via crafted message to the application's listening port.
network
low complexity
fcitx-5-project CWE-120
7.5
2023-02-01 CVE-2023-22422 Classic Buffer Overflow vulnerability in F5 products
On BIG-IP versions 17.0.x before 17.0.0.2 and 16.1.x before 16.1.3.3, when a HTTP profile with the non-default Enforcement options of Enforce HTTP Compliance and Unknown Methods: Reject are configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate.
network
low complexity
f5 CWE-120
7.5
2023-01-31 CVE-2022-47035 Classic Buffer Overflow vulnerability in Dlink Dir-825 Firmware 1.33.0.44Ebdd4Embedded
Buffer Overflow Vulnerability in D-Link DIR-825 v1.33.0.44ebdd4-embedded and below allows attacker to execute arbitrary code via the GetConfig method to the /CPE endpoint.
network
low complexity
dlink CWE-120
critical
9.8
2023-01-30 CVE-2022-32526 Classic Buffer Overflow vulnerability in Schneider-Electric Interactive Graphical Scada System
A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could cause a stack-based buffer overflow, potentially leading to remote code execution when an attacker sends specially crafted setting value messages.
network
low complexity
schneider-electric CWE-120
critical
9.8
2023-01-30 CVE-2022-40137 Classic Buffer Overflow vulnerability in Lenovo products
A buffer overflow in the WMI SMI Handler in some Lenovo models may allow an attacker with local access and elevated privileges to execute arbitrary code.
local
low complexity
lenovo CWE-120
6.7
2023-01-26 CVE-2022-36279 Classic Buffer Overflow vulnerability in Siretta Quartz-Gold Firmware G5.0.1.5210720141020
A stack-based buffer overflow vulnerability exists in the httpd delfile.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020.
network
low complexity
siretta CWE-120
8.8
2023-01-26 CVE-2022-38459 Classic Buffer Overflow vulnerability in Siretta Quartz-Gold Firmware G5.0.1.5210720141020
A stack-based buffer overflow vulnerability exists in the httpd downfile.cgi functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020.
network
low complexity
siretta CWE-120
8.8
2023-01-26 CVE-2022-40985 Classic Buffer Overflow vulnerability in Siretta Quartz-Gold Firmware G5.0.1.5210720141020
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020.
network
low complexity
siretta CWE-120
critical
9.8
2023-01-26 CVE-2022-40986 Classic Buffer Overflow vulnerability in Siretta Quartz-Gold Firmware G5.0.1.5210720141020
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020.
network
low complexity
siretta CWE-120
critical
9.8
2023-01-26 CVE-2022-40987 Classic Buffer Overflow vulnerability in Siretta Quartz-Gold Firmware G5.0.1.5210720141020
Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020.
network
low complexity
siretta CWE-120
critical
9.8