Vulnerabilities > Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-24 | CVE-2021-29220 | Classic Buffer Overflow vulnerability in HP ILO Amplifier Pack 1.70 Multiple buffer overflow security vulnerabilities have been identified in HPE iLO Amplifier Pack version(s): Prior to 2.12. | 9.0 |
| 2022-02-23 | CVE-2022-22333 | Classic Buffer Overflow vulnerability in IBM products IBM Sterling Secure Proxy 6.0.3.0, 6.0.2.0, and 3.4.3.2 and IBM Sterling External Authentication Server are vulnerable a buffer overflow, due to the Jetty based GUI in the Secure Zone not properly validating the sizes of the form content and/or HTTP headers submitted. | 3.3 |
| 2022-02-16 | CVE-2021-43303 | Classic Buffer Overflow vulnerability in multiple products Buffer overflow in PJSUA API when calling pjsua_call_dump. | 9.8 |
| 2022-02-16 | CVE-2022-23188 | Classic Buffer Overflow vulnerability in Adobe Illustrator Adobe Illustrator versions 25.4.3 (and earlier) and 26.0.2 (and earlier) are affected by a buffer overflow vulnerability due to insecure handling of a crafted malicious file, potentially resulting in arbitrary code execution in the context of the current user. | 6.8 |
| 2022-02-16 | CVE-2022-23203 | Classic Buffer Overflow vulnerability in Adobe Photoshop Adobe Photoshop versions 22.5.4 (and earlier) and 23.1 (and earlier) are affected by a buffer overflow vulnerability due to insecure handling of a crafted file, potentially resulting in arbitrary code execution in the context of the current user. | 6.8 |
| 2022-02-14 | CVE-2022-24704 | Classic Buffer Overflow vulnerability in Accel-Ppp 1.10.0 The rad_packet_recv function in opt/src/accel-pppd/radius/packet.c suffers from a buffer overflow vulnerability, whereby user input len is copied into a fixed buffer &attr->val.integer without any bound checks. | 7.5 |
| 2022-02-14 | CVE-2022-24705 | Classic Buffer Overflow vulnerability in Accel-Ppp 1.10.0 The rad_packet_recv function in radius/packet.c suffers from a memcpy buffer overflow, resulting in an overly-large recvfrom into a fixed buffer that causes a buffer overflow and overwrites arbitrary memory. | 7.5 |
| 2022-02-11 | CVE-2021-22802 | Classic Buffer Overflow vulnerability in Schneider-Electric Interactive Graphical Scada System Data Collector A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could result in remote code execution due to missing length check on user supplied data, when a constructed message is received on the network. | 7.5 |
| 2022-02-11 | CVE-2021-22824 | Classic Buffer Overflow vulnerability in Schneider-Electric Interactive Graphical Scada System Data Collector A CWE-120: Buffer Copy without Checking Size of Input vulnerability exists that could result in denial of service, due to missing length check on user-supplied data from a constructed message received on the network. | 5.0 |
| 2022-02-11 | CVE-2022-23431 | Classic Buffer Overflow vulnerability in Google Android 10.0/11.0/12.0 An improper boundary check in RPMB ldfw prior to SMR Feb-2022 Release 1 allows arbitrary memory write and code execution. | 4.6 |