723 matches found
EUVD-2023-53334
Malicious code in bioql PyPI...
EUVD-2025-23201
Malicious code in bioql PyPI...
EUVD-2022-39882
Malicious code in bioql PyPI...
CVE-2025-10815
The CVE-2025-10815 issue affects Tenda AC20 firmware up to 16.03.08.12. The vulnerability exists in the HTTP POST Request Handler file /goform/SetPptpServerCfg where unsafely uses strcpy on the startIp argument, causing a buffer overflow. This can be triggered remotely, with publicly available ex...
GHSA-5XF2-F6CH-6P8R CodeChecker has a buffer overflow in the log command
Summary CodeChecker versions up to 6.26.1 contain a buffer overflow vulnerability in the internal ldlogger library, which is executed by the CodeChecker log command. Details Unsafe usage of strcpy function in the internal ldlogger library allows attackers to trigger a buffer overflow by supplying...
CodeChecker has a buffer overflow in the log command
Summary CodeChecker versions up to 6.26.1 contain a buffer overflow vulnerability in the internal ldlogger library, which is executed by the CodeChecker log command. Details Unsafe usage of strcpy function in the internal ldlogger library allows attackers to trigger a buffer overflow by supplying...
Stack-based Buffer Overflow
Overview codechecker is an analyzer tooling, defect database and viewer extension Affected versions of this package are vulnerable to Stack-based Buffer Overflow via the strcpy function in the internal ldlogger library. An attacker can execute arbitrary code or cause a crash by supplying crafted...
PT-2025-39096
Name of the Vulnerable Software and Affected Versions CodeChecker versions through 6.26.1 Description CodeChecker versions up to 6.26.1 contain a buffer overflow in the internal ldlogger library, triggered when executing the CodeChecker log command. The issue stems from the unsafe use of the strc...
curl: Multiple Unsafe strcpy() Function Calls Leading to Potential Buffer Overflow Vulnerabilities in cURL 8.16.1-DEV
Summary: During a comprehensive security audit of the cURL codebase, multiple instances of unsafe strcpy function usage were identified in critical code paths. These implementations violate secure coding practices and represent latent security risks that could lead to buffer overflow...
CVE-2025-10120
A vulnerability was detected in Tenda AC20 up to 16.03.08.12. The impacted element is the function strcpy of the file /goform/GetParentControlInfo. The manipulation of the argument mac results in buffer overflow. The attack may be performed from remote. The exploit is now public and may be used...
Linux Distros Unpatched Vulnerability : CVE-2024-26339
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - swftools v0.9.2 was discovered to contain a strcpy parameter overlap via /home/swftools/src/swfc+0x48318a. CVE-2024-26339 Note that Nessus relies on the presenc...
CVE-2025-10120 Tenda AC20 GetParentControlInfo strcpy buffer overflow
A vulnerability was detected in Tenda AC20 up to 16.03.08.12. The impacted element is the function strcpy of the file /goform/GetParentControlInfo. The manipulation of the argument mac results in buffer overflow. The attack may be performed from remote. The exploit is now public and may be used...
CVE-2025-10120 Tenda AC20 GetParentControlInfo strcpy buffer overflow
A vulnerability was detected in Tenda AC20 up to 16.03.08.12. The impacted element is the function strcpy of the file /goform/GetParentControlInfo. The manipulation of the argument mac results in buffer overflow. The attack may be performed from remote. The exploit is now public and may be used...
CVE-2025-10120
The CVE-2025-10120 entry affects Tenda AC20 before 16.03.08.12. The vulnerability is a buffer overflow in the strcpy usage of /goform/GetParentControlInfo when processing the mac parameter. It can be triggered remotely, and public PoCs/exploits exist. Impact is consistent with high-severity, incl...
Grub2: fs/hfs: strcpy() using the volume name (fs/hfs.c:382)
...
Linux Distros Unpatched Vulnerability : CVE-2018-16743
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in mgetty before 1.2.1. In contrib/next-login/login.c, the command-line parameter username is passed unsanitized to strcpy, which can...
CVE-2011-10027
AOL Desktop 9.6 contains a buffer overflow vulnerability in its Tool\rich.rct component when parsing .rtx files. By embedding an overly long string in a hyperlink tag, an attacker can trigger a stack-based buffer overflow due to the use of unsafe strcpy operations. This allows remote attackers to...
CVE-2011-10021
Magix Musik Maker 16 is vulnerable to a stack-based buffer overflow due to improper handling of .mmm arrangement files. The vulnerability arises from an unsafe strcpy operation that fails to validate input length, allowing attackers to overwrite the Structured Exception Handler SEH. By crafting a...
CVE-2011-10021 Magix Musik Maker <= v16 .mmm Stack-Based Buffer Overflow
Magix Musik Maker 16 is vulnerable to a stack-based buffer overflow due to improper handling of .mmm arrangement files. The vulnerability arises from an unsafe strcpy operation that fails to validate input length, allowing attackers to overwrite the Structured Exception Handler SEH. By crafting a...
CVE-2011-10021
Magix Musik Maker 16 is vulnerable to a stack-based buffer overflow due to improper handling of .mmm arrangement files. The vulnerability arises from an unsafe strcpy operation that fails to validate input length, allowing attackers to overwrite the Structured Exception Handler SEH. By crafting a...