Qnap QTS and QuTS hero Buffer Copy without Checking Size of Input (CVE-2024-37044)

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to execute code. We have already fixed the vulnerability in the followin...

EUVD-2025-33402

A Buffer Copy without Checking Size of Input vulnerability in the Session Initialization Protocol SIP ALG of Juniper Networks Junos OS on MX Series and SRX Series allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. When memory utilization is high, and specific...

EUVD-2020-29577

Malware in sbrugna...

EUVD-2023-38217

Malicious code in bioql PyPI...

The vulnerability of the Framework component of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the Framework component in the Android operating system relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability of the Framework component of the Android operating system, which allows a hacker to increase their privileges

The vulnerability of the Framework component in the Android operating system relates to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to increase their privileges...

CVE-2024-53013 Buffer Copy Without Checking Size of Input in Audio

Memory corruption may occur while processing voice call registration with user...

CVE-2023-23363

A buffer copy without checking size of input vulnerability has been reported to affect QNAP operating system. If exploited, the vulnerability possibly allows remote users to execute code via unspecified vectors. We have already fixed the vulnerability in the following versions: QTS 4.3.6.2441 bui...

The vulnerability of the HTTP POST Request Handler component of the /boafrm/formSiteSurveyProfile file in the microprogramming software for router devices A702R, A3002R, and A3002RU allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the HTTP POST Request Handler component of the /boafrm/formSiteSurveyProfile file in the microprogramming software for routers A702R, A3002R, and A3002RU lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an...

The vulnerability of the formMapDelDevice function in the Totolink A3002R router’s microprogramming software allows a intruder to compromise the confidentiality and integrity of the protected information.

The vulnerability of the formMapDelDevice function in the Totolink A3002R router’s microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker operating remotely to compromise the confidentiality and...

The vulnerability of the AdvSetMacMtuWan function in the microprogramming software for Tenda AC10 routers allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the AdvSetMacMtuWan function in the Tenda AC10 router software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

The vulnerability of the Linux operating system’s kernel, related to copying buffers without checking the size of the input data, allows attackers to exploit their privileges.

The vulnerability of the Linux operating system’s kernel is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow a remote attacker to increase their privileges...

The vulnerability of PDF-XChange Editor’s PDF document viewing and editing software lies in its ability to copy buffers without checking the size of the input data. This allows attackers to execute arbitrary code.

The vulnerability of PDF-XChange Editor’s PDF document viewing and editing software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created RTF file...

The vulnerability of the EctEnhancedCT method in the DICOM DCMT format allows a intruder to gain unauthorized access to protected information.

The vulnerability of the EctEnhancedCT method in the DICOM DCMT library lies in the copying of buffers without checking the input data. Exploiting this vulnerability could allow an unauthorized actor to gain unauthorized access to protected information...

The vulnerability of the GSL mathematical library, related to copying buffers without checking the input data, allows a violator to trigger a service failure.

The vulnerability of the GSL mathematical library relates to the copying of buffers without checking the input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

PT-2025-1033 · Google · Android

Name of the Vulnerable Software and Affected Versions: Android affected versions not specified Description: The issue is related to a race condition in multiple functions of AccountManagerService.java, which could allow an attacker to bypass permissions and launch protected activities. This could...

CVE-2024-37050

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to execute code. We have already fixed the vulnerability in the followin...

CVE-2024-37049

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to execute code. We have already fixed the vulnerability in the followin...

The vulnerability of the formSetWAN_Wizard51() and formSetWAN_Wizard52() functions in the D-Link DIR-605L router software allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formSetWANWizard51 and formSetWANWizard52 functions in the D-Link DIR-605L router’s microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the...

The vulnerability of the formSetPortTr function (/goform/formSetPortTr) in D-Link DIR-619L router software allows a hacker to trigger a service failure.

The vulnerability of the formSetPortTr function /goform/formSetPortTr in D-Link DIR-619L router microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to cause a service failure by sending a...