4 matches found
CVE-2023-46586
cgi.c in weborf .0.17, 0.18, 0.19, and 0.20 before 1.0 lacks '\0' termination of the path for CGI scripts because strncpy is misused...
CVE-2019-6498
GattLib 0.2 has a stack-based buffer over-read in gattlibconnect in dbus/gattlib.c because strncpy is misused...
Buffer overflow
Espruino before 1.99 allows attackers to cause a denial of service application crash and potential Information Disclosure with a user crafted input file via a Buffer Overflow during syntax parsing because strncpy is misused in jslex.c...
CVE-2018-11593
Espruino before 1.99 allows attackers to cause a denial of service application crash and potential Information Disclosure with a user crafted input file via a Buffer Overflow during syntax parsing because strncpy is misused in jslex.c...