Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-122

CWE-122

High likelihood

Heap-based Buffer Overflow

Parent: CWE-788 - Access of Memory Location After End of Buffer

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

2,311 vulnerabilities with CWE-122

CVE-2026-52720 HIGH

Gstreamer1-plugins-bad-free: gstreamer: heap buffer overflow via crafted vnc server rectangle in librfb

CVE-2026-12193 HIGH

VS Revo RevoUninstaller IOCTL RevoDetector.sys IOCtl_Handler heap-based overflow

CVE-2026-48914 MEDIUM

Qemu-kvm: heap buffer overflow in virtio-blk scsi request handling

CVE-2026-12030 HIGH

Google Chrome - Heap-based Buffer Overflow

CVE-2026-12010 HIGH

Google Chrome - Heap-based Buffer Overflow

CVE-2026-53465 MEDIUM

ImageMagick: Heap Buffer Over-Write in SF3 encoder when writing multi-frame image

CVE-2026-48994 MEDIUM

ImageMagick: Heap Buffer Over-Write in MAT decoder on 32-bit systems

CVE-2026-46692 MEDIUM

ImageMagick: Heap Buffer Over-Write in distributed pixel cache server

CVE-2026-46520 HIGH

ImageMagick: Heap Buffer Over-Write in IPL decoder when reading multiple images of different dimensions

CVE-2026-2049 HIGH

GIMP HDR File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2026-11604 MEDIUM

Openvpn Ovpn-dco-win < 2.5.8 - Heap-based Buffer Overflow

CVE-2026-11884 MEDIUM

389 Directory Server - Heap Buffer Overflow in Objectclass Serialization

CVE-2026-45542 HIGH

ESF-IDF: Heap buffer overflow in protocomm Security2 over Bluetooth

CVE-2026-48292 HIGH

Format Plugins | Heap-based Buffer Overflow (CWE-122)

CVE-2026-48291 HIGH

Format Plugins | Heap-based Buffer Overflow (CWE-122)

CVE-2026-47952 HIGH

Acrobat Reader | Heap-based Buffer Overflow (CWE-122)

CVE-2026-11824 HIGH

SQLite before 3.53.2 Heap Buffer Overflow via FTS5 fts5ChunkIterate

CVE-2026-11822 HIGH

SQLite before 3.53.2 Memory Corruption in FTS5 Extension

CVE-2026-34707 HIGH

InCopy | Heap-based Buffer Overflow (CWE-122)

CVE-2026-34701 HIGH

InDesign Desktop | Heap-based Buffer Overflow (CWE-122)

CVE-2026-34699 HIGH

InDesign Desktop | Heap-based Buffer Overflow (CWE-122)

CVE-2026-34698 HIGH

InDesign Desktop | Heap-based Buffer Overflow (CWE-122)

CVE-2026-49841 CRITICAL

FreeSWITCH: Pre-authentication heap buffer overflow in `mod_verto` HTTP POST body read

CVE-2026-49840 CRITICAL

FreeSWITCH: Pre-authentication heap buffer overflow in libesl `Content-Length` parsing

CVE-2026-48574 HIGH

Microsoft Windows 10 Version 1607 - Windows Media Remote Code Execution Vulnerability

Page 1 of 93 Next

Details

Vulnerabilities 2,311

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy