ROS-20260401-73-0039

Vulnerability in mongo-c-driver related to buffer copying without checking input data size. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

ROS-20260128-73-0008

A vulnerability in the ieee802154hdrpeekaddrs function of the Linux kernel is related to buffer copying without checking the size of input data. Exploitation of the vulnerability may allow a remote attacker to affect confidentiality, integrity and availability of protected information...

CVE-2025-14310

CVE-2025-14310 describes a classic buffer overflow in rethinkdb caused by a buffer copy without checking input size, affecting rethinkdb before 2.4.4. According to connected sources, the flaw can enable arbitrary code execution or denial of service, with high impact to confidentiality, integrity,...

EUVD-2025-34216

APTIOV contains a vulnerability in BIOS where an attacker may cause a Buffer Copy without Checking Size of Input by local accessing. Successful exploitation of this vulnerability may lead to arbitrary code execution...

PT-2025-41923

Name of the Vulnerable Software and Affected Versions APTIOV affected versions not specified Description The BIOS software, APTIOV, contains a flaw where a buffer copy operation does not properly validate the size of the input data. A local attacker can exploit this to potentially execute arbitra...

CVE-2025-21481 Buffer Copy Without Checking Size of Input in HLOS

Memory corruption while performing private key encryption in trusted application...

The vulnerability of the HTTP POST Request Handler component of the /boafrm/formWlanRedirect file in the microprogramming system for routers A702R, A3002R, and A3002RU allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the HTTP POST Request Handler component of the /boafrm/formWlanRedirect file in the microprogramming software for routers A702R, A3002R, and A3002RU is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an...

The vulnerability of the formSetWizard2 function in the D-Link DIR-619L router’s microprogramming software allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formSetWizard2 function in D-Link DIR-619L router microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

The vulnerability of the Type 4 function in the PDF processing, conversion, and generation software for Ghostscript allows a hacker to execute arbitrary code.

The vulnerability of Type 4 function in the software suite for processing, converting, and generating Ghostscript documents is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows an attacker to execute arbitrary code using a speciall...

The vulnerability of the Framework component of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the Framework component in the Android operating system relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the cgi_del_photo() function (/cgi-bin/photocenter_mgr.cgi) in the microprogramming software of D-Link devices such as DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05, and DNS-1550-04 allows a hacker to execute arbitrary commands.

The vulnerability of the cgidelphoto function /cgi-bin/photocentermgr.cgi in the microprogramming software of D-Link devices such as DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4,...

The vulnerability of AMI BIOS in Hewlett-Packard Development Company L.P.’s personal computers allows a perpetrator to execute arbitrary code.

The vulnerability of AMI BIOS in Hewlett-Packard Development Company L.P.’s personal computers is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

CVE-2023-41292

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...

The vulnerability of the wifiRadioSetIndoor function in the Tenda i29 wireless access point’s microprogramming software allows a intruder to execute arbitrary code.

The vulnerability of the wifiRadioSetIndoor function in the Tenda i29 wireless access point software relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

PT-2023-13800 · Qualcomm · Snapdragon +183

Name of the Vulnerable Software and Affected Versions: No specific software name or affected versions are mentioned in the provided descriptions. Description: The issue is related to memory corruption due to a buffer copy without checking the size of the input in Audio while a voice call is made...

The vulnerability of the microprogrammed software of Zyxel ATP network devices, such as USG FLEX, USG FLEX50(W), USG20(W)-VPN, VPN, ZyWALL/USG, arises from copying buffers without checking the size of the input data. This allows a malicious actor to execute arbitrary code or cause service failures.

The vulnerability of microprogrammed network devices such as Zyxel ATP, USG FLEX, USG FLEX50W, USG20W-VPN, VPN, ZyWALL/USG lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause service...

PT-2023-13253 · Qualcomm · Snapdragon +99

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to memory corruption caused by a buffer copy without checking the size of the input. This occurs while running memory sharing tests...

The vulnerability of the Home Network Administration Protocol (HNAP) implementation in D-Link DIR-1935 router microsoftware allows a attacker to execute arbitrary code.

The vulnerability of the Home Network Administration Protocol HNAP implementation in D-Link DIR-1935 router microprogramming software lies in the copying of a buffer without checking the size of the input data during the processing of the HNAPAUTH header. Exploiting this vulnerability allows an...