905 matches found
CVE-2023-50361
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to execute code via a network. We have already fixed the vulnerability in the following versions: QTS...
CVE-2023-50361 QTS, QuTS hero
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to execute code via a network. We have already fixed the vulnerability in the following versions: QTS...
CVE-2023-50361
CVE-2023-50361 affects QNAP QTS and QuTS hero. It is a buffer copy without checking input size that could allow an authenticated network attacker to execute code on vulnerable devices. Affected products include QTS 5.1.x and QuTS hero h5.1.x. Mitigation: patches have been released, fixing the iss...
CVE-2023-50362 QTS, QuTS hero
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to execute code via a network. We have already fixed the vulnerability in the following versions: QTS...
CVE-2023-50362
CVE-2023-50362 affects QNAP QTS and QuTS Hero. A buffer copy without input size checking enables authenticated users to execute code over the network. Affected versions are QTS 5.1.6.2722 build 20240402 and later and QuTS Hero h5.1.6.2734 build 20240414 and later. Mitigation: upgrade to the fixed...
CVE-2023-50362 QTS, QuTS hero
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to execute code via a network. We have already fixed the vulnerability in the following versions: QTS...
CVE-2023-50364 QTS, QuTS hero
A buffer copy without checking size of input vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow authenticated users to execute code via a network. We have already fixed the vulnerability in the following versions: QTS...
CVE-2023-50364
CVE-2023-50364 : A buffer copy without input size validation affects QNAP QTS and QuTS hero (networked, authenticated access). The issue could allow code execution by a logged-in user over the network. Fixed versions are QTS 5.1.6.2722 build 20240402 and later, and QuTS hero h5.1.6.2734 build 202...
PT-2024-3534 · Qnap · Qts +1
Name of the Vulnerable Software and Affected Versions: QTS versions prior to 5.1.6.2722 build 20240402 QuTS hero versions prior to h5.1.6.2734 build 20240414 Description: The issue is caused by a buffer copy without checking the size of the input, which may allow authenticated users to execute co...
PT-2024-3535 · Qnap · Qts +1
Name of the Vulnerable Software and Affected Versions: QTS versions prior to 5.1.6.2722 build 20240402 QuTS hero versions prior to h5.1.6.2734 build 20240414 Description: The issue is caused by a buffer copy without checking the size of input, which may allow authenticated users to execute code v...
CVE-2023-6948
A Buffer Copy without Checking Size of Input issue affecting the v2sdkservice running on a set of DJI drone devices on the port 10000 could allow an attacker to cause a crash of the service through a crafted payload triggering a missing input size check in the sdkprintf function implemented in th...
CVE-2023-6948
A Buffer Copy without Checking Size of Input issue affecting the v2sdkservice running on a set of DJI drone devices on the port 10000 could allow an attacker to cause a crash of the service through a crafted payload triggering a missing input size check in the sdkprintf function implemented in th...
CVE-2023-6948
CVE-2023-6948 affects DJI drone devices running v2_sdk_service on port 10000. The issue is a Buffer Copy without Checking Size of Input in sdk_printf within libv2_sdk.so used by the dji_vtwo_sdk binary, enabling a crafted payload to crash the service and cause denial of service (availability impa...
CVE-2023-6948
A Buffer Copy without Checking Size of Input issue affecting the v2sdkservice running on a set of DJI drone devices on the port 10000 could allow an attacker to cause a crash of the service through a crafted payload triggering a missing input size check in the sdkprintf function implemented in th...
CVE-2024-21463 Buffer Copy Without Checking Size of Input in Audio
Memory corruption while processing Codec2 during v13k decoder pitch synthesis...
CVE-2024-21463 Buffer Copy Without Checking Size of Input in Audio
Memory corruption while processing Codec2 during v13k decoder pitch synthesis...
CVE-2023-33023 Buffer Copy without Checking Size of Input (`Classic Buffer Overflow`) in SPS-Applications
Memory corruption while processing finishsign command to pass a rsp buffer...
CVE-2023-33023 Buffer Copy without Checking Size of Input (`Classic Buffer Overflow`) in SPS-Applications
Memory corruption while processing finishsign command to pass a rsp buffer...
CVE-2023-28547 Buffer Copy Without Checking Size of Input in SPS Applications
Memory corruption in SPS Application while requesting for public key in sorter TA...
CVE-2023-28547 Buffer Copy Without Checking Size of Input in SPS Applications
Memory corruption in SPS Application while requesting for public key in sorter TA...