VYPR

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

BaseIncompleteLikelihood: High

Description

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer.

Hierarchy (View 1000)

Parents

Children

Related attack patterns (CAPEC)

CAPEC-10 · CAPEC-100 · CAPEC-14 · CAPEC-24 · CAPEC-42 · CAPEC-44 · CAPEC-45 · CAPEC-46 · CAPEC-47 · CAPEC-67 · CAPEC-8 · CAPEC-9 · CAPEC-92

CVEs mapped to this weakness (802)

page 16 of 41
  • CVE-2017-2855HigSep 19, 2018
    risk 0.53cvss 8.1epss 0.02

    An exploitable buffer overflow vulnerability exists in the DDNS client used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. On devices with DDNS enabled, an attacker who is able to intercept HTTP connections will be able to fully compromise the device…

  • CVE-2017-2857HigSep 17, 2018
    risk 0.53cvss 8.1epss 0.02

    An exploitable buffer overflow vulnerability exists in the DDNS client used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. On devices with DDNS enabled, an attacker who is able to intercept HTTP connections will be able to fully compromise the device…

  • CVE-2017-2856HigSep 17, 2018
    risk 0.53cvss 8.1epss 0.02

    An exploitable buffer overflow vulnerability exists in the DDNS client used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. On devices with DDNS enabled, an attacker who is able to intercept HTTP connections will be able to fully compromise the device…

  • CVE-2017-2854HigSep 17, 2018
    risk 0.53cvss 8.1epss 0.02

    An exploitable buffer overflow vulnerability exists in the DDNS client used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. On devices with DDNS enabled, an attacker who is able to intercept HTTP connections will be able to fully compromise the device…

  • CVE-2026-54257criJun 15, 2026
    risk 0.52cvss epss 0.00

    ### Impact Most apps will crash and some may perform incorrect buffer allocations in the Node.js `Buffer` API resulting in unexpected truncation or allocation. ### Workarounds No workarounds. Do not use these impacted Electron releases ### Fixed Versions * `42.3.3` ### For…

  • CVE-2026-7069HigApr 27, 2026
    risk 0.52cvss 8.0epss 0.01

    A security flaw has been discovered in D-Link DIR-825 up to 3.00b32. This impacts the function AddPortMapping of the file upnpsoap.c of the component miniupnpd. Performing a manipulation of the argument NewPortMappingDescription results in buffer overflow. The attack needs to be…

  • CVE-2025-12235HigOct 27, 2025
    risk 0.52cvss 8.0epss 0.05

    A vulnerability was found in Tenda CH22 1.0.0.1. This vulnerability affects the function fromSetIpBind of the file /goform/SetIpBind. The manipulation of the argument page results in buffer overflow. The attack must originate from the local network. The exploit has been made…

  • CVE-2025-4446HigMay 9, 2025
    risk 0.52cvss 8.0epss 0.01

    A vulnerability has been found in H3C GR-5400AX up to 100R008 and classified as critical. This vulnerability affects the function Edit_List_SSID of the file /goform/aspForm. The manipulation of the argument param leads to buffer overflow. The attack needs to be approached within…

  • CVE-2025-4440HigMay 8, 2025
    risk 0.52cvss 8.0epss 0.01

    A vulnerability was found in H3C GR-1800AX up to 100R008 and classified as critical. Affected by this issue is the function EnableIpv6 of the file /goform/aspForm. The manipulation of the argument param leads to buffer overflow. Access to the local network is required for this…

  • CVE-2025-2851HigApr 26, 2025
    risk 0.52cvss 8.0epss 0.00

    A vulnerability classified as critical has been found in GL.iNet GL-A1300 Slate Plus, GL-AR300M16 Shadow, GL-AR300M Shadow, GL-AR750 Creta, GL-AR750S-EXT Slate, GL-AX1800 Flint, GL-AXT1800 Slate AX, GL-B1300 Convexa-B, GL-B3000 Marble, GL-BE3600 Slate 7, GL-E750, GL-E750V2 Mudi,…

  • CVE-2025-3854HigApr 22, 2025
    risk 0.52cvss 8.0epss 0.00

    A vulnerability, which was classified as critical, was found in H3C GR-3000AX up to V100R006. Affected is the function EnableIpv6/UpdateWanModeMulti/UpdateIpv6Params/EditWlanMacList/Edit_List_SSID of the file /goform/aspForm of the component HTTP POST Request Handler. The…

  • CVE-2026-28580HigJun 1, 2026
    risk 0.51cvss 7.8epss 0.00

    In multiple functions, there is a possible desync in persistence due to an incorrect bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

  • CVE-2026-7454HigMay 26, 2026
    risk 0.51cvss 7.8epss 0.00

    A maliciously crafted WRL file, when parsed through Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

  • CVE-2026-7452HigMay 26, 2026
    risk 0.51cvss 7.8epss 0.00

    A maliciously crafted WRL file, when parsed through Autodesk 3ds Max, can force a Memory Corruption vulnerability. A malicious actor can leverage this vulnerability to execute arbitrary code in the context of the current process.

  • CVE-2026-6691HigMay 6, 2026
    risk 0.51cvss 7.8epss 0.00

    The MongoDB C Driver's Cyrus SASL integration performs unsafe string copying during username canonicalization, enabling a heap buffer overflow before any authentication or network traffic. This may be triggered by passing untrusted input in the username of a MongoDB URI with…

  • CVE-2018-25302HigApr 29, 2026
    risk 0.51cvss 7.8epss 0.00

    Allok AVI to DVD SVCD VCD Converter 4.0.1217 contains a structured exception handling (SEH) based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious string in the License Name field. Attackers can craft a payload with…

  • CVE-2026-21382HigApr 6, 2026
    risk 0.51cvss 7.8epss 0.00

    Memory Corruption when handling power management requests with improperly sized input/output buffers.

  • CVE-2025-47389HigApr 6, 2026
    risk 0.51cvss 7.8epss 0.00

    Memory corruption when buffer copy operation fails due to integer overflow during attestation report generation.

  • CVE-2024-57510HigJan 29, 2025
    risk 0.51cvss 7.8epss 0.00

    Buffer Overflow vulnerability in Bento4 mp42avc v.3bdc891602d19789b8e8626e4a3e613a937b4d35 allows a local attacker to execute arbitrary code via the AP4_MemoryByteStream::WritePartial.

  • CVE-2024-57509HigJan 29, 2025
    risk 0.51cvss 7.8epss 0.00

    Buffer Overflow vulnerability in Bento4 mp42avc v.3bdc891602d19789b8e8626e4a3e613a937b4d35 allows a local attacker to execute arbitrary code via the AP4_File::ParseStream and related functions.