CVE-2025-47404 Buffer Copy Without Checking Size of Input in Automotive Audio

Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified...

ROS-20251111-10

Vulnerability of processsymtab function of eu-readelf component of ELF Elfutils binary modification and analysis utility is related to copying buffer without checking input data size. ELF Elfutils is related to buffer copying without checking input data size. Exploitation vulnerability could allo...

PHOENIX CONTACT CHARX SEC-3xxx 安全漏洞

PHOENIX CONTACT CHARX SEC-3000 etc. are products of PHOENIX CONTACT, Germany.PHOENIX CONTACT CHARX SEC-3000 is an AC charge controller.PHOENIX CONTACT CHARX SEC-3050 is an AC charge controller.PHOENIX CONTACT CHARX SEC-3100 is an AC charge controller. PHOENIX CONTACT CHARX SEC-3100 is an AC charg...

The vulnerability of the formEasySetupWizard function in the D-Link DIR-600L router’s microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the formEasySetupWizard function in the D-Link DIR-600L router’s microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code by using the host...

The vulnerability of the Assimp::SplitLargeMeshesProcess_Triangle::UpdateNode() function in the Open Asset Import Library (Assimp) import library allows a malicious actor to trigger a denial-of-service attack.

The vulnerability of the OpenDDLParser::parseStructure function in the Open Asset Import Library Assimp import library is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the __zzip_fetch_disk_trailer() function in the /zzip/zip.c component of the ZZIPlib compression library allows a hacker to induce a service failure.

The vulnerability of the zzipFetchFetchDiskTrailer function in the /zzip/zip.c component of the ZZIPlib compression library is related to the copying of buffers without checking the input data. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

The vulnerability of the formSetLog function (/goform/formSetLog) in D-Link DIR-619L router software allows a intruder to trigger a service failure.

The vulnerability of the formSetLog /goform/formSetLog function in D-Link DIR-619L router microprogramming software lies in the copying of buffers without checking the size of input data when processing the curTime parameter. Exploiting this vulnerability can allow an attacker to cause service...

The vulnerability of the formSetMACFilter function (/goform/formSetMACFilter) in D-Link DIR-619L router software allows a hacker to trigger a service failure.

The vulnerability of the formSetMACFilter function /goform/formSetMACFilter in D-Link DIR-619L router software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to cause a service failure by sending a specially crafte...

The vulnerabilities of the functions read_erst_record() and write_erst_record() in the QEMU hardware emulation software allow a malicious actor to induce a service failure.

The vulnerability of the readerstrecord and writeerstrecord functions in the QEMU hardware emulation software involves copying buffers without checking the input data. Exploiting this vulnerability allows an attacker to cause a service failure...

The vulnerability of the NET-SNMP-VACM-MIB() function in the Net-SNMP software suite for the Linux operating system allows a attacker to compromise the integrity of the system.

The vulnerability of the NET-SNMP-VACM-MIB function in the Net-SNMP software suite for the Linux operating system is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a remote attacker to compromise the integrity of the system...

The vulnerability of the interpolate component (libavfilter/vf_minterpolate.c) in the FFmpeg multimedia library allows a hacker to execute arbitrary code.

The vulnerability of the interpolate component libavfilter/vfminterpolate.c in the FFmpeg multimedia library involves copying buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the Adobe Framemaker desktop publishing system lies in the copying of buffers without checking the size of the input data. This allows a malicious actor to execute arbitrary code.

The vulnerability of the Adobe Framemaker desktop publishing system lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows an attacker to execute arbitrary code by opening a specially created malicious file...

The vulnerability of the devn_pcx_write_rle() function in the base/gdevdevn.c component of the Ghostscript document processing software allows a hacker to cause a service failure.

The vulnerability of the devnpcxwriterle function in the base/gdevdevn.c file of the Ghostscript document processing software is related to the copying of buffers without checking the input data. Exploiting this vulnerability could allow an attacker to cause a service failure using a specially...

The vulnerability of the nfs_lookup_reply function (net/nfs.c) in the U-Boot loader for embedded Linux operating systems allows a hacker to execute arbitrary code.

The vulnerability of the nfslookupreply function in the U-Boot loader for embedded Linux operating systems is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the GetValue function in the microprogramming software for LinkHub Mesh Wi-Fi AC1200 allows a hacker to execute arbitrary code.

The vulnerability of the GetValue function in the microprogramming software for LinkHub Mesh Wi-Fi AC1200 relates to the copying of buffers without checking the size of the input data during the processing of the libcommonprod.so file. Exploiting this vulnerability allows a remote attacker to...

The vulnerability in the implementation of the GetValue function in the microprogramming software for LinkHub Mesh Wi-Fi AC1200 allows a hacker to induce a service failure.

The vulnerability of the GetValue function in the microprogramming software for LinkHub Mesh Wi-Fi AC1200 lies in the copying of buffers without checking the size of the input data during the processing of the apsteer file. Exploiting this vulnerability could allow a remote attacker to cause...

The vulnerability of the GOOSE (Generic Object-Oriented Substation Event) protocol implementation in Schneider Electric Easergy P5 micro-programmed devices for relay protection and control allows a perpetrator to execute arbitrary code or cause malfunctions during maintenance.

The vulnerability of the GOOSE Generic Object-Oriented Substation Event protocol implementation in Schneider Electric Easergy P5 relay protection and control devices relates to the copying of buffers without checking the size of input data. Exploiting this vulnerability can allow attackers to...

The vulnerability of the JunOS operating system’s SRX series routers’ implementation of the Internet Content Adaptation Protocol (ICAP) allows attackers to enhance their privileges, execute arbitrary code, or cause service failures.

The vulnerability of the Internet Content Adaptation Protocol ICAP implementation in the JunOS operating system’s SRX series routers stems from the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to enhance their privileges,...

The vulnerability of the cfg80211_mgd_wext_giwessid function (net/wireless/wext-sme.c) in the Linux kernel allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the cfg80211mgdwextgiwessid function in the Linux kernel’s net/wireless/wext-sme.c file is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code or cause service...