Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-122

CWE-122

High likelihood

Heap-based Buffer Overflow

Parent: CWE-788 - Access of Memory Location After End of Buffer

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

2,312 vulnerabilities with CWE-122

CVE-2026-33899 MEDIUM

ImageMagick: Heap BufferOverflow write of single zero byte when parsing XML

CVE-2026-32316 HIGH

jq: Integer overflow in jvp_string_append() allows Heap-based Buffer Overflow

CVE-2026-30999 HIGH

FFmpeg < 8.0.1 - Heap-based Buffer Overflow in av_bprint_finalize()

CVE-2026-34865 CRITICAL

HarmonyOS >=6.0.0 - Heap-based Buffer Overflow in WEB Module

CVE-2026-25205 HIGH

Samsung Open Source Escargot >=97e8115ab1110bc502b4b5e4a0c689a71520d335 - Heap-based Buffer Overflow

CVE-2026-4153 HIGH

GIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2026-4152 HIGH

GIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

CVE-2026-29043 MEDIUM

HDF5 H5T__ref_mem_setnull Heap Buffer Overflow

CVE-2026-5448 MEDIUM

1-2 Byte Buffer Overflow in wolfSSL_X509_notAfter/notBefore

CVE-2026-5264 CRITICAL

DTLS 1.3 ACK heap buffer overflow

CVE-2026-5447 HIGH

Heap buffer overflow in CertFromX509() via AuthorityKeyIdentifier

CVE-2026-5187 CRITICAL

Heap Out-of-Bounds Write in DecodeObjectId() in wolfSSL

CVE-2026-5869 MEDIUM

Google Chrome < 147.0.7727.55 - Heap-based Buffer Overflow in WebML

CVE-2026-5868 HIGH

Google Chrome < 147.0.7727.55 - Heap-based Buffer Overflow in ANGLE via Crafted HTML Page

CVE-2026-5867 MEDIUM

Google Chrome < 147.0.7727.55 - Heap-based Buffer Overflow in WebML

CVE-2026-5864 MEDIUM

Google Chrome < 147.0.7727.55 - Heap-based Buffer Overflow in WebAudio

CVE-2026-5858 HIGH

Google Chrome < 147.0.7727.55 - Remote Code Execution via WebML Heap Buffer Overflow

CVE-2026-35199 MEDIUM

SymCrypt SymCryptXmssSign function - Heap overflow via 64->32-bit leaf-count truncation

CVE-2026-21372 HIGH

Heap-Based Buffer Overflow in Power Management IC

CVE-2026-34979 MEDIUM

OpenPrinting CUPS: Heap overflow in `get_options()`

CVE-2026-5474 MEDIUM

NASA cFS CCSDS Packet Header to_lab_passthru_encode.c CFE_MSG_GetSize heap-based overflow

CVE-2026-34743 MEDIUM

XZ Utils: Buffer overflow in lzma_index_append()

CVE-2026-34120 MEDIUM

Heap-based Buffer Overflow Vulnerability Leading to Denial-of-Service in TP-Link Tapo C520WS

CVE-2026-34119 MEDIUM

Heap-based Buffer Overflow Vulnerability Leading to Denial-of-Service in TP-Link Tapo C520WS

CVE-2026-34118 MEDIUM

Heap-based Buffer Overflow Vulnerability Leading to Denial-of-Service in TP-Link Tapo C520WS

Previous Page 10 of 93 Next

Details

Vulnerabilities 2,312

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy