Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-122

CWE-122

High likelihood

Heap-based Buffer Overflow

Parent: CWE-788 - Access of Memory Location After End of Buffer

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

2,326 vulnerabilities with CWE-122

CVE-2025-21233 HIGH

Windows Telephony Service - Remote Code Execution via Heap-based Buffer Overflow

CVE-2025-21223 HIGH

Windows Telephony Service - Remote Code Execution via Heap-based Buffer Overflow

CVE-2025-21186 HIGH

Microsoft Access - Remote Code Execution via Heap-based Buffer Overflow

CVE-2025-21178 HIGH

Visual Studio 2017 15.0-15.9.5, 2019 16.0-16.11.3, 2022 17.6.0-17.6.21 - Remote Code Execution

CVE-2025-21172 HIGH

.NET and Visual Studio - Remote Code Execution via Integer Overflow

CVE-2025-21171 HIGH

.NET - Remote Code Execution via Heap-based Buffer Overflow

CVE-2025-22134 MEDIUM

vim < 9.1.1003 - Heap-based Buffer Overflow via :all Command in Visual Mode

CVE-2024-50571 HIGH

Fortinet FortiAnalyzer, FortiManager, FortiOS, FortiProxy - Heap-based Buffer Overflow

CVE-2024-49714 HIGH

Android - Heap-based Buffer Overflow in avrc_vendor_msg

CVE-2024-42648 MEDIUM

NanoMQ 0.22.10 - Denial of Service via Crafted CONNECT Message

CVE-2024-46993 MEDIUM

Electron <28.3.2, 29.0.0-alpha.1-29.3.2, 30.0.0-alpha.1-30.0.2 - Heap-based Buffer Overflow

CVE-2024-56805 MEDIUM

QNAP QTS and QuTS hero - Heap-based Buffer Overflow

CVE-2024-6031 HIGH

Tesla Model S Firmware < 2024.2 - Heap-based Buffer Overflow in AT Command Response Parsing

CVE-2024-56406 HIGH

perl 5.33.1-5.41.10 - Heap-based Buffer Overflow in tr Operator

CVE-2024-41147 HIGH

Miniaudio v0.11.21 - Heap-based Buffer Overflow in ma_dr_flac__decode_samples__lpc

CVE-2024-27245 MEDIUM

Zoom Meeting SDK < 5.17.11 - Authenticated Denial of Service via Buffer Overflow

CVE-2024-45421 HIGH

Zoom Meeting SDK < 6.2.0 - Authenticated Buffer Overflow via Network Access

CVE-2024-53310 MEDIUM

Effectmatrix TVCC <2.50 - Buffer Overflow

CVE-2024-37601 MEDIUM

Mercedes-Benz NTG6 < 2021 - Heap-based Buffer Overflow via User Data Import/Export

CVE-2024-0145 MEDIUM

NVIDIA nvJPEG2000 - Buffer Overflow

CVE-2024-50698 CRITICAL

SunGrow WiNet-S < 200.001.00.p027 - Heap-based Buffer Overflow via MQTT Message Handling

CVE-2024-55192 CRITICAL

OpenImageIO v3.1.0.0dev - Heap-based Buffer Overflow in farmhash Fetch64

CVE-2024-12084 CRITICAL

rsync - Heap-based Buffer Overflow via Checksum Length Handling

CVE-2024-10254 MEDIUM

Lenovo PC Manager Browser and App Store - Heap-based Buffer Overflow

CVE-2024-10253 MEDIUM

Lenovo PC Manager Browser and App Store - Denial of Service via TOCTOU

Previous Page 41 of 94 Next

Details

Vulnerabilities 2,326

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy