Vulnerabilities (CVE)

CWE filter

CWE-120

Filter

81 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-17320 1 Netsarang 1 Xftp 2019-10-16 7.5
NetSarang XFTP Client 6.0149 and earlier version contains a buffer overflow vulnerability caused by improper boundary checks when copying file name from an attacker controlled FTP server. That leads attacker to execute arbitrary code by sending a...
CVE-2019-17041 1 Rsyslog 1 Rsyslog 2019-10-15 7.5
An issue was discovered in Rsyslog v8.1908.0. contrib/pmaixforwardedfrom/pmaixforwardedfrom.c has a heap overflow in the parser for AIX log messages. The parser tries to locate a log message delimiter (in this case, a space or a colon) but fails...
CVE-2019-17042 1 Rsyslog 1 Rsyslog 2019-10-15 7.5
An issue was discovered in Rsyslog v8.1908.0. contrib/pmcisconames/pmcisconames.c has a heap overflow in the parser for Cisco log messages. The parser tries to locate a log message delimiter (in this case, a space or a colon), but fails to...
CVE-2018-14879 1 Tcpdump 1 Tcpdump 2019-10-11 7.5
The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:get_next_file().
CVE-2019-17113 1 Openmpt 1 Libopenmpt 2019-10-10 7.5
In libopenmpt before 0.3.19 and 0.4.x before 0.4.9, ModPlug_InstrumentName and ModPlug_SampleName in libopenmpt_modplug.c do not restrict the lengths of libmodplug output-buffer strings in the C API, leading to a buffer overflow.
CVE-2019-17402 1 Exiv2 1 Exiv2 2019-10-10 4.3
Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when called from Exiv2::Internal::CiffDirectory::readDirectory in crwimage_int.cpp, because there is no validation of the relationship of the total size to the...
CVE-2019-17133 1 Linux 1 Linux Kernel 2019-10-10 7.5
In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow.
CVE-2019-17243 1 Irfanview 1 Irfanview 2019-10-10 6.8
IrfanView 4.53 allows Data from a Faulting Address to control Code Flow starting at JPEG_LS+0x0000000000003155.
CVE-2019-17247 1 Irfanview 1 Irfanview 2019-10-10 6.8
IrfanView 4.53 allows Data from a Faulting Address to control a subsequent Write Address starting at JPEG_LS+0x0000000000007da8.
CVE-2019-17244 1 Irfanview 1 Irfanview 2019-10-10 6.8
IrfanView 4.53 allows Data from a Faulting Address to control Code Flow starting at JPEG_LS+0x0000000000001d8a.
CVE-2019-3729 1 Emc 1 Rsa Bsafe 2019-10-09 2.7
RSA BSAFE Micro Edition Suite versions prior to 4.4 (in 4.0.x, 4.1.x, 4.2.x and 4.3.x) are vulnerable to a Heap-based Buffer Overflow vulnerability when parsing ECDSA signature. A malicious user with adjacent network access could potentially...
CVE-2019-13548 2019-10-09 7.5
CODESYS V3 web server, all versions prior to 3.5.14.10, allows an attacker to send specially crafted http or https requests which could cause a stack overflow and create a denial-of-service condition or allow remote code execution.
CVE-2019-13536 1 Deltaww 1 Tpeditor 2019-10-09 6.8
Delta Electronics TPEditor, Versions 1.94 and prior. Multiple heap-based buffer overflow vulnerabilities may be exploited by processing specially crafted project files, which may allow an attacker to remotely execute arbitrary code.
CVE-2019-12655 1 Cisco 1 Ios 2019-10-09 7.8
A vulnerability in the FTP application layer gateway (ALG) functionality used by Network Address Translation (NAT), NAT IPv6 to IPv4 (NAT64), and the Zone-Based Policy Firewall (ZBFW) in Cisco IOS XE Software could allow an unauthenticated,...
CVE-2019-10882 1 Netskope 1 Netskope 2019-10-09 7.2
The Netskope client service, v57 before 57.2.0.219 and v60 before 60.2.0.214, running with NT\SYSTEM privilege, accepts network connections from localhost. The connection handling function in this service suffers from a stack based buffer...
CVE-2018-14788 1 Fujielectric 1 Alpha5 Smart Loader Firmware 2019-10-09 5.0
Fuji Electric Alpha5 Smart Loader Versions 3.7 and prior. A buffer overflow information disclosure vulnerability occurs when parsing certain file types.
CVE-2018-16301 1 Tcpdump 1 Tcpdump 2019-10-07 7.5
libpcap before 1.9.1, as used in tcpdump before 4.9.3, has a buffer overflow and/or over-read because of errors in pcapng reading.
CVE-2019-11735 1 Mozilla 2 Firefox, Firefox Esr 2019-10-05 7.5
Mozilla developers and community members reported memory safety bugs present in Firefox 68 and Firefox ESR 68. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to...
CVE-2019-2341 1 Qualcomm 44 Mdm9150 Firmware, Mdm9206 Firmware, Mdm9607 Firmware and 41 more 2019-10-03 4.6
Buffer overflow when the audio buffer size provided by user is larger than the maximum allowable audio buffer size. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile,...
CVE-2019-2333 1 Qualcomm 38 Mdm9150 Firmware, Mdm9607 Firmware, Mdm9650 Firmware and 35 more 2019-10-03 4.6
Buffer overflow due to improper validation of buffer size while IPA driver processing to perform read operation in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice &...