EUVD-2026-19330

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing...

CVE-2025-47400 Buffer Over-read in Computer Vision

Cryptographic issue while copying data to a destination buffer without validating its size...

EUVD-2018-3867

Malware in sbrugna...

CVE-2020-11143

Out of bound memory access during music playback with modified content due to copying data without checking destination buffer size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon...

CVE-2020-11068

In LoRaMac-node before 4.4.4, a reception buffer overflow can happen due to the received buffer size not being checked. This has been fixed in 4.4.4...

CVE-2025-26595

CVE-2025-26595 is a buffer overflow in X.Org/Xwayland where XkbVModMaskText() uses a fixed-size stack buffer without proper bounds checking. The issue affects Xorg-x11-server-Xwayland. Advisories indicate a fix is available in newer package releases (e.g., Xwayland/Xorg servers updated to 24.1.3 ...

CVE-2025-1675

The function dnscopyqname in dnspack.c performs performs a memcpy operation with an untrusted field and does not check if the source buffer is large enough to contain the copied data...

The vulnerability in the wiz_pptp.cgi script of the Netgear R8500, XR300, R7000P, and R6400 v2 router software allows a hacker to cause a service failure.

The vulnerability in the wizpptp.cgi script of Netgear router microprogramming devices such as R8500, XR300, R7000P, and R6400 v2 lies in the copying of buffers without checking the size of the input data during the processing of the pptpuserip parameter. Exploiting this vulnerability allows a...

CVE-2018-11498

In Lizard v1.0 and LZ5 v2.0 the prior release, before the product was renamed, there is an unchecked buffer size during a memcpy in the LizarddecompressLIZv1 function lib/lizarddecompressliz.h. Remote attackers can leverage this vulnerability to cause a denial of service via a crafted input file,...

Remote code execution

In Lizard v1.0 and LZ5 v2.0 the prior release, before the product was renamed, there is an unchecked buffer size during a memcpy in the LizarddecompressLIZv1 function lib/lizarddecompressliz.h. Remote attackers can leverage this vulnerability to cause a denial of service via a crafted input file,...

CVE-2018-11498

In Lizard v1.0 and LZ5 v2.0 the prior release, before the product was renamed, there is an unchecked buffer size during a memcpy in the LizarddecompressLIZv1 function lib/lizarddecompressliz.h. Remote attackers can leverage this vulnerability to cause a denial of service via a crafted input file,...

CVE-2018-11498

In Lizard v1.0 and LZ5 v2.0 the prior release, before the product was renamed, there is an unchecked buffer size during a memcpy in the LizarddecompressLIZv1 function lib/lizarddecompressliz.h. Remote attackers can leverage this vulnerability to cause a denial of service via a crafted input file,...