Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-122

CWE-122

High likelihood

Heap-based Buffer Overflow

Parent: CWE-788 - Access of Memory Location After End of Buffer

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

2,312 vulnerabilities with CWE-122

CVE-2026-5244 HIGH

Cesanta Mongoose TLS 1.3 mongoose.c mg_tls_recv_cert heap-based overflow

CVE-2026-34545 HIGH

OpenEXR: integer overflow lead to OOB in HTJ2K decoder

CVE-2026-5275 HIGH

Google Chrome < 146.0.7680.178 - Remote Code Execution via ANGLE Heap Buffer Overflow

CVE-2026-5272 HIGH

Google Chrome < 146.0.7680.178 - Remote Code Execution via GPU Heap Buffer Overflow

CVE-2026-5236 MEDIUM

Axiomatic Bento4 DSI v1 Ap4Dac4Atom.cpp SkipBits heap-based overflow

CVE-2026-5235 MEDIUM

Axiomatic Bento4 MP4 File Ap4Dac4Atom.cpp ReadCache heap-based overflow

CVE-2026-34540 MEDIUM

iccDEV: HBO in icMemDump()

CVE-2026-34539 MEDIUM

iccDEV: HBO in CTiffImg::WriteLine()

CVE-2026-34535 MEDIUM

iccDEV: SEGV in CIccTagArray::Cleanup()

CVE-2026-34534 MEDIUM

iccDEV: HBO in CIccMpeSpectralMatrix::Describe()

CVE-2026-5201 HIGH

Gdk-pixbuf: gdk-pixbuf: denial of service via heap-based buffer overflow when processing a specially crafted jpeg image

CVE-2026-5185 MEDIUM

Nothings stb_image Multi-frame GIF File stb_image.h stbi__gif_load_next heap-based overflow

CVE-2026-33987 HIGH

FreeRDP: Persistent Cache bmpSize Desync - Heap OOB Write

CVE-2026-33986 HIGH

FreeRDP: H.264 YUV Buffer Dimension Desync - Heap OOB Write

CVE-2026-33984 HIGH

FreeRDP: ClearCodec resize_vbar_entry() Heap OOB Write

CVE-2026-26073 MEDIUM

EVerest: OCPP 1.6 heap corruption caused by lock-free insertion in event_queue

CVE-2026-28842 HIGH

macOS < 26.4 - Heap-based Buffer Overflow

CVE-2026-27654 HIGH

NGINX ngx_http_dav_module vulnerability

CVE-2026-4675 HIGH

Google Chrome < 146.0.7680.165 - Heap-based Buffer Overflow in WebGL

CVE-2026-4673 HIGH

Google Chrome < 146.0.7680.165 - Heap-based Buffer Overflow in WebAudio

CVE-2026-33298 HIGH

llama.cpp <b7824 GGUF Tensor Parsing - Heap Buffer Overflow

CVE-2026-33164 HIGH

NULL Pointer Dereference in libde265

CVE-2026-32710 HIGH

Heap-based Buffer Overflow in MariaDB

CVE-2026-32945 HIGH

PJSIP is vulnerable to Heap-based Buffer Overflow through DNS parser

CVE-2026-4463 HIGH

Google Chrome < 146.0.7680.153 - Heap-based Buffer Overflow in WebRTC

Previous Page 11 of 93 Next

Details

Vulnerabilities 2,312

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy