Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-122

CWE-122

High likelihood

Heap-based Buffer Overflow

Parent: CWE-788 - Access of Memory Location After End of Buffer

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

2,325 vulnerabilities with CWE-122

CVE-2025-54212 HIGH

InDesign < 19.5.5 - Heap-based Buffer Overflow via Malicious File

CVE-2025-54211 HIGH

InDesign < 19.5.5 - Heap-based Buffer Overflow via Malicious File

CVE-2025-54209 HIGH

InDesign < 19.5.5 - Heap-based Buffer Overflow via Malicious File

CVE-2025-49560 HIGH

Substance3D Viewer < 0.25.1 - Heap-based Buffer Overflow via Malicious File

CVE-2025-53783 HIGH

Microsoft Teams - Remote Code Execution via Heap-based Buffer Overflow

CVE-2025-53766 CRITICAL

Microsoft Office < 16.0.14326.22618 and < 16.0.19127.20000 - Remote Code Execution via GDI+ Heap Overflow

CVE-2025-53741 HIGH

Microsoft Office Excel - Buffer Overflow

CVE-2025-53737 HIGH

Microsoft Office Excel - Buffer Overflow

CVE-2025-53732 HIGH

Microsoft Office < 16.0.14326.22618 and < 16.0.19127.20000 - Heap-based Buffer Overflow

CVE-2025-53723 HIGH

Windows Hyper-V - Privilege Escalation

CVE-2025-53720 HIGH

Windows Server RRAS Heap Overflow Authenticated RCE (2008, 2012, 2016, 2019, 2022, 2025)

CVE-2025-53155 HIGH

Windows Hyper-V - Authenticated Heap-based Buffer Overflow

CVE-2025-53149 HIGH

Windows 10/11, Server 2008 - Kernel Streaming WOW Thunk Driver Heap Overflow

CVE-2025-53131 HIGH

Windows Media - Remote Code Execution via Heap-based Buffer Overflow

CVE-2025-50176 HIGH

Windows 11/Server 2022/2025 Local Code Execution via Graphics Kernel Type Confusion

CVE-2025-50168 HIGH

Windows Win32K - ICOMP - Privilege Escalation

CVE-2025-50164 HIGH

Windows Server RRAS Heap Overflow Authenticated RCE (2008, 2012, 2016, 2019, 2022, 2025)

CVE-2025-50163 HIGH

Windows Server RRAS Heap Overflow Remote Code Execution

CVE-2025-50162 HIGH

Windows Server RRAS Heap Overflow Authenticated RCE (2008, 2012, 2016, 2019, 2022, 2025)

CVE-2025-50161 HIGH

Microsoft Windows Win32K - Heap-based Buffer Overflow in GRFX

CVE-2025-50160 HIGH

Windows Server RRAS Heap Overflow RCE (2008, 2012, 2016, 2019, 2022, 2025)

CVE-2025-50155 HIGH

Windows Push Notifications - Privilege Escalation

CVE-2025-49757 HIGH

Windows Server RRAS Heap Overflow RCE (2008, 2012, 2016, 2019, 2022, 2025)

CVE-2025-5462 HIGH

Ivanti Connect Secure < 22.7 - Unauthenticated Heap-based Buffer Overflow

CVE-2025-54878 HIGH

NASA CryptoLib < 1.4.1 - Heap-based Buffer Overflow in IV Setup Logic

Previous Page 28 of 93 Next

Details

Vulnerabilities 2,325

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy