CWE-122

High likelihood

Heap-based Buffer Overflow

Parent: CWE-788 - Access of Memory Location After End of Buffer

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

2,315 vulnerabilities with CWE-122
CVE-2025-57709 HIGH
Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Heap-based Buffer Overflow
CVSS 8.1
CVE-2025-52870 HIGH
Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Heap-based Buffer Overflow
CVSS 8.1
CVE-2025-52869 HIGH
Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Heap-based Buffer Overflow
CVSS 8.1
CVE-2025-52868 HIGH
Qsync Central 5.0.0.0-5.0.0.3 - Authenticated Heap-based Buffer Overflow
CVSS 8.1
CVE-2025-48724 HIGH
Qsync Central <5.0.0.4 - Buffer Overflow
CVSS 8.1
CVE-2025-48723 HIGH
Qsync Central <5.0.0.4 - Buffer Overflow
CVSS 8.1
CVE-2025-65079 MEDIUM
Lexmark - Buffer Overflow
CVE-2025-62799 CRITICAL
Fast DDS <3.4.1-2.6.11 - Buffer Overflow
CVSS 9.8
CVE-2025-62602 HIGH
Fast DDS <3.4.1, <3.3.1, <2.6.11 - Buffer Overflow
CVSS 7.5
CVE-2025-62601 HIGH
Fast DDS <3.4.1, <3.3.1, <2.6.11 - Buffer Overflow
CVSS 7.5
CVE-2025-62673 HIGH
TP-Link Archer AX53 v1.0 < 1.3.1 Build 20241120 - Heap-based Buffer Overflow via Malformed Network Packet
CVSS 8.0
CVE-2025-62405 HIGH
TP-Link Archer AX53 v1.0 < 1.3.1 Build 20241120 - Authenticated Heap-based Buffer Overflow via tmpserver Module
CVSS 8.0
CVE-2025-62404 HIGH
TP-Link Archer AX53 v1.0 <= 1.3.1 Build 20241120 - Authenticated Heap-based Buffer Overflow in tmpserver Module
CVSS 8.0
CVE-2025-61983 HIGH
TP-Link Archer AX53 v1.0 < 1.3.1 Build 20241120 - Authenticated Heap-based Buffer Overflow via tmpserver Network Packet
CVSS 8.0
CVE-2025-61944 HIGH
TP-Link Archer AX53 v1.0 < 1.3.1 Build 20241120 - Authenticated Heap-based Buffer Overflow via tmpserver Module
CVSS 8.0
CVE-2025-59487 HIGH
TP-Link Archer AX53 v1.0 < 1.3.1 Heap-based Buffer Overflow via tmpserver Packet
CVSS 8.0
CVE-2025-59482 HIGH
TP-Link Archer AX53 v1.0 < 1.3.1 Build 20241120 - Authenticated Heap-based Buffer Overflow via tmpserver Network Packet
CVSS 8.0
CVE-2025-58455 HIGH
TP-Link Archer AX53 <1.3.1 - Buffer Overflow
CVSS 8.0
CVE-2025-58077 HIGH
TP-Link Archer AX53 v1.0 < 1.3.1 Build 20241120 - Authenticated Heap-based Buffer Overflow via tmpserver Module
CVSS 8.0
CVE-2025-15059 HIGH
GIMP PSP File Parser - Heap Buffer Overflow Code Execution
CVSS 7.8
CVE-2025-15537 MEDIUM
mapnik < 4.2.0 - Heap-Based Buffer Overflow in dbf_file::string_value
CVSS 5.3
CVE-2025-15536 MEDIUM
OpenCC < 1.1.9 - Heap-Based Buffer Overflow in MaxMatchSegmentation
CVSS 5.3
CVE-2025-15533 MEDIUM
raylib < 2026-01-01 - Heap-Based Buffer Overflow in GenImageFontAtlas
CVSS 5.3
CVE-2025-70303 MEDIUM
GPAC 2.4.0 - Denial of Service via Crafted MP4 File
CVSS 5.5
CVE-2025-70302 MEDIUM
GPAC 2.4.0 - Denial of Service via Heap Overflow in ghi_dmx_declare_opid_bin
CVSS 5.5
Details
Vulnerabilities 2,315
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits