Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-122

CWE-122

High likelihood

Heap-based Buffer Overflow

Parent: CWE-788 - Access of Memory Location After End of Buffer

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

2,312 vulnerabilities with CWE-122

CVE-2026-2913 LOW

libvips < 8.19.0 - Heap-Based Buffer Overflow in vips_source_read_to_memory

CVE-2026-27168 HIGH

sail/sail < 0.9.10 - Heap-based Buffer Overflow in XWD Parser

CVE-2026-2047 HIGH

GIMP - Heap-based Buffer Overflow RCE

CVE-2026-0797 HIGH

GIMP - Heap-based Buffer Overflow RCE

CVE-2026-26967 MEDIUM

pjsip < 2.17 - Heap-based Buffer Overflow in H.264 Unpacketizer

CVE-2026-26200 HIGH

HDF5 < 1.14.4.2 - Heap Buffer Overflow via Crafted h5 File

CVE-2026-2650 HIGH

Google Chrome <145.0.7632.109 - Buffer Overflow

CVE-2026-2648 HIGH

Google Chrome <145.0.7632.109 - Memory Corruption

CVE-2026-2661 LOW

Squirrel up to 3.2 - Buffer Overflow

CVE-2026-2653 MEDIUM

admesh < 0.98.5 - Heap-Based Buffer Overflow in stl_check_normal_vector

CVE-2026-2474 HIGH

Crypt::URandom 0.41-0.54 - Buffer Overflow

CVE-2026-2447 HIGH

Firefox < 115.32.1, 140.7.1-140.*, < 147.0.4 and Thunderbird < 140.7.2, 147.0.2 - Heap-based Buffer Overflow in libvpx

CVE-2026-26011 CRITICAL

Nav2 AMCL <1.3.11 - Memory Corruption

CVE-2026-2007 HIGH

PostgreSQL <18.1-18.0 - Buffer Overflow

CVE-2026-2005 HIGH

PostgreSQL <18.2, 17.8, 16.12, 15.16, 14.21 - RCE

CVE-2026-2314 HIGH

Google Chrome <145.0.7632.45 - Buffer Overflow

CVE-2026-25646 HIGH

libpng < 1.6.55 - Buffer Over-read in png_set_quantize()

CVE-2026-21358 MEDIUM

InDesign < 20.5.2 - Heap-based Buffer Overflow via Malicious File

CVE-2026-21357 HIGH

InDesign < 20.5.2 - Heap-based Buffer Overflow via Malicious File

CVE-2026-21259 HIGH

Microsoft Office Excel - Privilege Escalation

CVE-2026-21248 HIGH

Windows 10/11, Server 2016/2019/2022 Hyper-V Authenticated Heap-based Buffer Overflow

CVE-2026-21247 HIGH

Windows 10 1809 < 10.0.17763.8389 - Authenticated Heap-based Buffer Overflow

CVE-2026-21246 HIGH

Microsoft Graphics Component - Privilege Escalation

CVE-2026-21245 HIGH

Microsoft Windows Kernel Heap-based Buffer Overflow - Privilege Escalation

CVE-2026-21244 HIGH

Windows 10/11, Server 2016/2019/2022 Hyper-V Authenticated Heap-based Buffer Overflow

Previous Page 15 of 93 Next

Details

Vulnerabilities 2,312

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy