ipTIME NAS 安全漏洞

ipTIME NAS is a wireless router product from the Korean company ipTIME that provides NAS network attached storage. A security vulnerability exists in ipTIME NAS version v1.5.04, which stems from improper use of the strcpy function in the upload.cgi module, which could lead to a pre-authentication...

CVE-2025-6732

A vulnerability was found in UTT HiPER 840G up to 3.1.1-190328. It has been classified as critical. This affects the function strcpy of the file /goform/setSysAdm of the component API. The manipulation of the argument passwd1 leads to buffer overflow. It is possible to initiate the attack remotel...

PT-2025-25508 · Utt · Utt 进取 750W

Name of the Vulnerable Software and Affected Versions: UTT 进取 750W versions up to 5.0 Description: A critical issue affects the strcpy function of the /goform/setSysAdm component API. The manipulation of the passwd1 argument leads to a buffer overflow. This issue can be exploited remotely...

CVE-2024-44415

A vulnerability was discovered in DI8200-16.07.26A1, There is a buffer overflow in the dbsrvasp function; The strcpy function is executed without checking the length of the string, leading to a buffer overflow...

CVE-2024-46215

A vulnerability was discovered in KM08-708H-v1.1, There is a buffer overflow in the sub445BDC function within the /usr/sbin/goahead program; The strcpy function is executed without checking the length of the string, leading to a buffer overflow...

CVE-2020-3616

Buffer overflow in display function due to memory copy without checking length of size using strcpy function in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8017,...

PT-2025-6896 · Microworld · Microword Escan Antivirus

Name of the Vulnerable Software and Affected Versions: MicroWord eScan Antivirus version 7.0.32 Description: A critical issue has been found in the strcpy function of the VirusPopUp component, leading to a stack-based buffer overflow. The attack must be approached locally. The exploit has been...

curl: Buffer overflow in strcpy

Vulnerability description not provided...

CVE-2024-46215

KM08-708H-v1.1 contains a buffer overflow in the /usr/sbin/goahead binary, caused by unsafe use of strcpy in the sub_445BDC() function. This vulnerability is documented across multiple feeds (NVD/Red Hat/CVE records) and affects the KM08-708H device. Exploitation details are not provided in these...

CVE-2024-44415

A vulnerability was discovered in DI8200-16.07.26A1, There is a buffer overflow in the dbsrvasp function; The strcpy function is executed without checking the length of the string, leading to a buffer overflow...

CVE-2024-41590

Several CGI endpoints are vulnerable to buffer overflows, by authenticated users, because of missing bounds checking on parameters passed through POST requests to the strcpy function on DrayTek Vigor310 devices through 4.3.2.6...

CVE-2024-41590

Several CGI endpoints are vulnerable to buffer overflows, by authenticated users, because of missing bounds checking on parameters passed through POST requests to the strcpy function on DrayTek Vigor310 devices through 4.3.2.6...

CVE-2024-41590

CVE-2024-41590 affects DrayTek Vigor310 routers, where the web UI CGI endpoints expose a buffer overflow via missing bounds checks on POST parameters passed to strcpy. Affected firmware includes versions up to 4.3.2.6, and exploitation requires authenticated access. The Red Hat/NCSC/PT-Security e...

CVE-2023-49351

A stack-based buffer overflow vulnerability in /bin/webs binary in Edimax BR6478AC V2 firmware veraion v1.23 allows attackers to overwrite other values located on the stack due to an incorrect use of the strcpy function...

CVE-2023-49351

A stack-based buffer overflow vulnerability in /bin/webs binary in Edimax BR6478AC V2 firmware veraion v1.23 allows attackers to overwrite other values located on the stack due to an incorrect use of the strcpy function...

curl: Buffer Overflow Vulnerability in WebSocket Handling

Vulnerability description not provided...

Tenda G3 安全漏洞

Tenda G3 is a Qos Vpn router from Tenda, China. A security vulnerability exists in the Tenda G3 firmware version USG3V3.0brV15.11.0.67663ENTDE, which originates from a buffer overflow due to strcpy of a function at 0x869f4 in its httpd binary component...

CVE-2021-26621

An Buffer Overflow vulnerability leading to remote code execution was discovered in MEX01. Remote attackers can use this vulnerability by using the property that the target program copies parameter values to memory through the strcpy function...

Buffer overflow

An Buffer Overflow vulnerability leading to remote code execution was discovered in MEX01. Remote attackers can use this vulnerability by using the property that the target program copies parameter values to memory through the strcpy function...

CVE-2021-26621

CVE-2021-26621 affects Netis MEX01 routers. The vulnerability is a buffer overflow caused by copying parameter values with strcpy(), enabling remote code execution. Documents from NVD/Red Hat/CVE channels describe the same issue and assign high/critical impact (ATT&CK not specified in sources). T...