USN-8368-1 libeconf vulnerability

It was discovered that libeconf did not properly check the size of input when copying data to a buffer. An attacker could possibly use this issue to cause libeconf to crash, resulting in a denial of service...

CVE-2023-45036

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated administrators to execute code via a network. We have already fixed the vulnerability in the following versions:...

CVE-2022-33230

Memory corruption in FM Host due to buffer copy without checking the size of input in FM Host...

PT-2025-44273

Name of the Vulnerable Software and Affected Versions ABB Terra AC wallbox versions through 1.8.33 Description A buffer copy issue exists where the size of the input is not checked, potentially leading to a buffer overflow. This affects the ABB Terra AC wallbox. Recommendations Update to a versio...

EUVD-2014-9733

Malware in sbrugna...

EUVD-2021-21767

Malware in sbrugna...

EUVD-2023-40431

Malicious code in bioql PyPI...

EUVD-2022-36260

Malicious code in bioql PyPI...

EUVD-2023-59144

Malicious code in bioql PyPI...

ABB Cylon Aspect BMS/BAS

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to assume control of the target device or perform a denial-of-service DoS attack. 2. RECOMMENDED PRACTICES CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying...

CVE-2025-27071

CVE-2025-27071 is a memory corruption vulnerability affecting Powerline Communication Firmware (buffer copy without checking input size). The CVE entry (CVE-2025-27071) and related feeds describe memory corruption when processing specific files. The NVD entry lists a high-severity impact with CVS...

The vulnerability of the UploadCustomModule() function in the TOTOLink T10 router software allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the UploadCustomModule function in the TOTOLink T10 router microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

CVE-2024-53013 Buffer Copy Without Checking Size of Input in Audio

Memory corruption may occur while processing voice call registration with user...

CVE-2023-36482

An issue was discovered in Samsung NFC S3NRN4V, S3NSN4V, S3NSEN4, SEN82AB, and S3NRN82. A buffer copy without checking its input size can cause an NFC service restart...

CVE-2021-30191

CODESYS V2 Web-Server before 1.1.9.20 has a a Buffer Copy without Checking the Size of the Input...

CVE-2025-21734

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix copy buffer page size For non-registered buffer, fastrpc driver copies the buffer and pass it to the remote subsystem. There is a problem with current implementation of page size calculation which is not...

CVE-2022-25708

Memory corruption in WLAN due to buffer copy without checking size of input while parsing keys in Snapdragon Connectivity, Snapdragon Mobile...

CVE-2024-27130

A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to execute code via a network. We have already fixed the vulnerability in the following version: QTS 5.1.7.2770 build...

PT-2024-27266 · Qnap · Qnap Qts +1

Name of the Vulnerable Software and Affected Versions: QNAP QTS versions prior to 5.2.1.2930 build 20241025 QNAP QuTS hero versions prior to h5.2.1.2929 build 20241025 Description: A buffer copy without checking the size of input issue has been reported, potentially allowing remote attackers with...

The vulnerability of the startread() function in the hcom.c component of the SoX sound processing software allows a hacker to cause a service failure.

The vulnerability of the startread function in the hcom.c component of the SoX sound processing program is related to the copying of buffers without checking the input data. Exploiting this vulnerability allows a attacker to cause a service failure using a specially created file...