Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-122

CWE-122

High likelihood

Heap-based Buffer Overflow

Parent: CWE-788 - Access of Memory Location After End of Buffer

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

2,311 vulnerabilities with CWE-122

CVE-2026-9939 HIGH

Google Chrome - Heap-based Buffer Overflow

CVE-2026-9926 HIGH

Google Chrome - Heap-based Buffer Overflow

CVE-2026-9924 HIGH

Google Chrome - Heap-based Buffer Overflow

CVE-2026-9915 HIGH

Google Chrome - Heap-based Buffer Overflow

CVE-2026-48065 MEDIUM

pam_usb: Unchecked integer multiplication before xmalloc() in conf.c allows heap-based buffer overflow on 32-bit targets

CVE-2026-4391 MEDIUM

TeamSpeak 3 Server ECC Key heap-based overflow

CVE-2026-8175 CRITICAL

IBM Aspera High-Speed Transfer Endpoint - Multiple Vulnerabilities in Aspera applications.

CVE-2026-38427 HIGH

Tasmota through 15.3.0.3 - Heap Buffer Overflow in fetch_jpg()

CVE-2026-9605 HIGH

GNU libredwg Dwgbmp Utility bits.c bit_read_RC heap-based overflow

CVE-2026-44983 HIGH

smallbitvec: Safe API Triggered Heap Buffer Overflow via Integer Overflow

CVE-2026-48689 CRITICAL

Pavel-odintsov Fastnetmon < 1.2.9 - Out-of-bounds Write

CVE-2026-8834 HIGH

IBM HTTP Server is affected by multiple vulnerabilities

CVE-2026-48691 CRITICAL

FastNetMon Community Edition <= 1.2.9 - Heap Buffer Overflow in BGP AS_PATH Attribute Encoder

CVE-2026-48690 HIGH

FastNetMon Community Edition <= 1.2.9 - Integer Overflow in Packet Capture Buffer Allocation

CVE-2026-40033 HIGH

FreeRDP - Heap-buffer-overflow in gdi_CacheToSurface via rectangle validation bypass

CVE-2026-9541 MEDIUM

Squirrel Cnut File sqobject.cpp ReadObject heap-based overflow

CVE-2026-7310 MEDIUM

Hitachi Energy Mach HiDraw < 9.22 - Heap-based Buffer Overflow

CVE-2026-48135 MEDIUM

HTTP service can incorrectly process malformed HTTP requests

CVE-2026-48131 HIGH

VPND IKE Fragment Reassembly - Heap Out-of-Bounds Write via Sequence Number Zero

CVE-2026-25713 HIGH

Mediaarea MediaInfoLib - Heap-based Buffer Overflow

CVE-2026-9502 MEDIUM

GNU LibreDWG Dwgread Utility decode.c decompress_R2004_section heap-based overflow

CVE-2026-9500 MEDIUM

GNU LibreDWG Dwgread Utility decode.c read_2004_compressed_section heap-based overflow

CVE-2026-9365 MEDIUM

Ettercap GG Dissector ec_gg.c FUNC_DECODER heap-based overflow

CVE-2026-9256 HIGH

F5 NGINX Plus - NGINX ngx_http_rewrite_module Vulnerability

CVE-2026-8997 MEDIUM

Heap Buffer Overflow in vifm

Previous Page 4 of 93 Next

Details

Vulnerabilities 2,311

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy