CWE-120 (未进行输入大小检查的缓冲区拷贝(传统缓冲区溢出)) — Vulnerability Class 1721

1721 vulnerabilities classified as CWE-120 (未进行输入大小检查的缓冲区拷贝(传统缓冲区溢出)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2021-28184	ASUS BMC's firmware: buffer overflow - Active Directory configuration function — BMC firmware for Z10PR-D16	4.9	Medium	2021-04-06
CVE-2021-28183	ASUS BMC's firmware: buffer overflow - Web License configuration setting — BMC firmware for Z10PR-D16	4.9	Medium	2021-04-06
CVE-2021-28182	ASUS BMC's firmware: buffer overflow - Web Service configuration function — BMC firmware for Z10PR-D16	4.9	Medium	2021-04-06
CVE-2021-28180	ASUS BMC's firmware: buffer overflow - Audit log configuration setting — BMC firmware for Z10PR-D16	4.9	Medium	2021-04-06
CVE-2021-28181	ASUS BMC's firmware: buffer overflow - Remote video configuration setting — BMC firmware for Z10PR-D16	4.9	Medium	2021-04-06
CVE-2021-28179	ASUS BMC's firmware: buffer overflow - Media support configuration setting — BMC firmware for Z10PR-D16	4.9	Medium	2021-04-06
CVE-2021-28177	ASUS BMC's firmware: buffer overflow - LDAP configuration function — BMC firmware for Z10PR-D16	4.9	Medium	2021-04-06
CVE-2021-28178	ASUS BMC's firmware: buffer overflow - UEFI configuration function — BMC firmware for Z10PR-D16	4.9	Medium	2021-04-06
CVE-2021-28176	ASUS BMC's firmware: buffer overflow - DNS configuration function — BMC firmware for Z10PR-D16	4.9	Medium	2021-04-06
CVE-2021-28175	ASUS BMC's firmware: buffer overflow - Radius configuration function — BMC firmware for Z10PR-D16	4.9	Medium	2021-04-06
CVE-2021-20235	libzmq 缓冲区错误漏洞 — zeromq	8.1	-	2021-04-01
CVE-2021-29094	ArcGIS Server image service and raster analytics security update: buffer overflow — ArcGIS Server	6.8	-	2021-03-25
CVE-2021-22659	Rockwell Automation MicroLogix 1400 安全漏洞 — Rockwell Automation MicroLogix 1400	9.8	-	2021-03-25
CVE-2021-3466	libmicrohttpd 缓冲区错误漏洞 — libmicrohttpd	8.8	-	2021-03-25
CVE-2021-1439	Cisco Aironet Access Points FlexConnect Multicast DNS Denial of Service Vulnerability — Cisco Aironet Access Point Software (IOS XE Controller)	7.4	High	2021-03-24
CVE-2021-21051	Adobe Photoshop Buffer Overflow Vulnerability Could Lead To Remote Code Execution Vulnerability — Photoshop	7.8	-	2021-02-11
CVE-2020-6088	Allen-Bradley Flex IO 安全漏洞 — Allen-Bradley	7.5	-	2021-02-04
CVE-2021-3185	gst-plugins-bad 安全漏洞 — gstreamer	9.8	-	2021-01-25
CVE-2020-8944	Unchecked buffer overrun in ecall_restore — Asylo	5.3	Medium	2020-12-15
CVE-2020-8942	Unchecked buffer overrun in enc_untrusted_read — Asylo	5.3	Medium	2020-12-15
CVE-2020-8943	Unchecked buffer overrun in enc_untrusted_recvfrom — Asylo	5.3	Medium	2020-12-15
CVE-2020-8941	Unchecked buffer overrun in enc_untrusted_inet_pton — Asylo	5.3	Medium	2020-12-15
CVE-2020-8940	Unchecked buffer overrun in enc_untrusted_recvmsg — Asylo	5.3	Medium	2020-12-15
CVE-2020-8937	Arbitrary enclave memory location write from untrusted environment — Asylo	5.3	Medium	2020-12-15
CVE-2020-27818	Libpng Pngcheck 缓冲区错误漏洞 — pngcheck	3.3	-	2020-12-08
CVE-2020-9247	华为缓冲区错误漏洞 — HONOR 20 PRO	7.8	-	2020-12-07
CVE-2020-6017	Valvesoftware GameNetworkingSockets 缓冲区错误漏洞 — Game Networking Sockets	9.8	-	2020-12-03
CVE-2020-6018	Valvesoftware GameNetworkingSockets 缓冲区错误漏洞 — Game Networking Sockets	9.8	-	2020-12-02
CVE-2020-25185	Paradox IP150 缓冲区错误漏洞 — IP150	8.8	-	2020-11-21
CVE-2020-7559	Schneider Electric EcoStruxure Control Expert 安全漏洞 — PLC Simulator on EcoStruxureª Control Expert (now Unity Pro) (all versions)	7.5	-	2020-11-19

Vulnerabilities classified as CWE-120 (未进行输入大小检查的缓冲区拷贝(传统缓冲区溢出)) represent 1721 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-120 (未进行输入大小检查的缓冲区拷贝(传统缓冲区溢出)) — Vulnerability Class 1721