CVE-2024-38409 Buffer Copy Without Checking Size of Input in WLAN Windows Host

Memory corruption while station LL statistic handling...

CVE-2024-38409 Buffer Copy Without Checking Size of Input in WLAN Windows Host

Memory corruption while station LL statistic handling...

CVE-2024-33030 Buffer Copy without Checking Size of Input (`Classic Buffer Overflow`) in Performance

Memory corruption while parsing IPC frequency table parameters for LPLH that has size greater than expected size...

CVE-2024-33030 Buffer Copy without Checking Size of Input (`Classic Buffer Overflow`) in Performance

Memory corruption while parsing IPC frequency table parameters for LPLH that has size greater than expected size...

The vulnerability of the formSetWAN_Wizard51() and formSetWAN_Wizard52() functions in the D-Link DIR-605L router software allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formSetWANWizard51 and formSetWANWizard52 functions in the D-Link DIR-605L router’s microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the...

The vulnerability of the wacWhitelistJsonToBin() function in TP-Link TL-WDR7660 router software allows a hacker to trigger a service failure.

The vulnerability of the wacWhitelistJsonToBin function in the microprogramming software for TP-Link TL-WDR7660 routers stems from the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a malicious actor, operating remotely, to trigger a...

The vulnerability of the formWlanWizardSetup function (/goform/formWlanWizardSetup) in D-Link DIR-605L router software allows a hacker to execute arbitrary code.

The vulnerability of the formWlanWizardSetup function /goform/formWlanWizardSetup in the D-Link DIR-605L router software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the formSetPassword function (/goform/formSetPassword) in D-Link DIR-605L router software allows a hacker to execute arbitrary code.

The vulnerability of the formSetPassword function /goform/formSetPassword in the D-Link DIR-605L router’s microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code usi...

The vulnerability of the formSetPortTr function (/goform/formSetPortTr) in D-Link DIR-619L router software allows a hacker to trigger a service failure.

The vulnerability of the formSetPortTr function /goform/formSetPortTr in D-Link DIR-619L router microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to cause a service failure by sending a...

The vulnerability of the formSetQoS function (/goform/formSetQoS) in D-Link DIR-619L router software allows a attacker to cause a service failure.

The vulnerability of the formSetQoS function /goform/formSetQoS of the D-Link DIR-619L router’s microprogramming software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to cause a service failure by sending a...

The vulnerability of the formSetMACFilter function (/goform/formSetMACFilter) in D-Link DIR-619L router software allows a hacker to trigger a service failure.

The vulnerability of the formSetMACFilter function /goform/formSetMACFilter in D-Link DIR-619L router software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to cause a service failure by sending a specially crafte...

CVE-2024-23375 Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in RIL

Memory corruption during the network scan request...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from the inclusion of a buffer copy in the RIL that does not check the input size...

The vulnerability of the cgi_create_album() function (/cgi-bin/photocenter_mgr.cgi) in the microprogramming software of D-Link devices such as DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05, and DNS-1550-04 allows a hacker to execute arbitrary commands.

The vulnerability of the cgicreatealbum function /cgi-bin/photocentermgr.cgi in the microprogramming software of D-Link devices such as DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4...

The vulnerability of the cgi_del_photo() function (/cgi-bin/photocenter_mgr.cgi) in the microprogramming software of D-Link devices such as DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05, and DNS-1550-04 allows a hacker to execute arbitrary commands.

The vulnerability of the cgidelphoto function /cgi-bin/photocentermgr.cgi in the microprogramming software of D-Link devices such as DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4,...

The vulnerability of the startread() function in the hcom.c component of the SoX sound processing software allows a hacker to cause a service failure.

The vulnerability of the startread function in the hcom.c component of the SoX sound processing program is related to the copying of buffers without checking the input data. Exploiting this vulnerability allows a attacker to cause a service failure using a specially created file...

The vulnerabilities of the functions read_erst_record() and write_erst_record() in the QEMU hardware emulation software allow a malicious actor to induce a service failure.

The vulnerability of the readerstrecord and writeerstrecord functions in the QEMU hardware emulation software involves copying buffers without checking the input data. Exploiting this vulnerability allows an attacker to cause a service failure...

The vulnerability in the `arch/s390/boot/decompressor.c` component of the Linux operating system, related to copying buffers without checking the input data, allows an attacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability in the arch/s390/boot/decompressor.c component of the Linux operating system involves copying buffers without checking the input data. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

The vulnerability of the miEnumattr() function in the fs/ntfs3 component of the Linux operating system, which allows for buffer copying without checking input data. This vulnerability enables an attacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the miEnumattr function in the fs/ntfs3 component of the Linux operating system is related to the copying of buffers without checking the input data. Exploiting this vulnerability allows an attacker to access confidential data, compromise its integrity, and cause service...

CVE-2024-24972

Buffer Copy without Checking Size of Input CWE-120 in the Controller 6000 and Controller 7000 diagnostic web interface allows an authorised and authenticated operator to reboot the Controller, causing a Denial of Service. Gallagher recommend the diagnostic web page is not enabled default is off...