Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-122

CWE-122

High likelihood

Heap-based Buffer Overflow

Parent: CWE-788 - Access of Memory Location After End of Buffer

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

2,327 vulnerabilities with CWE-122

CVE-2024-45679 HIGH

assimp < 5.4.3 - Heap-based Buffer Overflow via Crafted File Import

CVE-2024-8905 HIGH

Google Chrome < 129.0.6668.58 - Heap-based Buffer Overflow in V8 via Crafted HTML Page

CVE-2024-8948 HIGH

MicroPython 1.23.0 - Heap-based Buffer Overflow in mpz_as_bytes

CVE-2024-8946 HIGH

MicroPython 1.23.0 - Heap-based Buffer Overflow in VFS Unmount Handler

CVE-2024-38812 CRITICAL KEV

VMware Cloud Foundation 4.0-5.1 - Heap-based Buffer Overflow via DCERPC Protocol

CVE-2024-6259 HIGH

BT HCI adv_ext_report - Info Disclosure

CVE-2024-6135 HIGH

Zephyr < 3.6.0 - Divide By Zero via Missing Buffer Length Checks

CVE-2024-6258 MEDIUM

Zephyr < 3.6.0 - Integer Underflow in RFCOMM Data Handling

CVE-2024-43756 HIGH

Adobe Photoshop < 24.7.5 - Heap-based Buffer Overflow via Malicious File

CVE-2024-39380 HIGH

Adobe After Effects < 23.6.9 - Heap-based Buffer Overflow via Malicious File

CVE-2024-8636 HIGH

Google Chrome <128.0.6613.137 - Buffer Overflow

CVE-2024-38242 HIGH

Kernel Streaming Service Driver - Privilege Escalation

CVE-2024-38238 HIGH

Kernel Streaming Service Driver - Privilege Escalation

CVE-2024-38237 HIGH

Kernel Streaming WOW Thunk Service - Privilege Escalation

CVE-2024-38045 HIGH

Microsoft Windows TCP/IP - Remote Code Execution

CVE-2024-37335 HIGH

Microsoft SQL Server 2016-2022 - Remote Code Execution via Native Scoring Heap-based Buffer Overflow

CVE-2024-26191 HIGH

Microsoft SQL Server 2016-2022 - Remote Code Execution via Native Scoring Heap-based Buffer Overflow

CVE-2024-21416 HIGH

Windows 10 1809 and Windows Server 2019 < 10.0.17763.6293 - Remote Code Execution via TCP/IP Heap-based Buffer Overflow

CVE-2024-8443 LOW

OpenSC - Heap-based Buffer Overflow in OpenPGP Driver via Malicious APDU Responses

CVE-2024-40754 CRITICAL

Samsung Open Source Escargot <4.0.0 - Buffer Overflow

CVE-2024-33698 CRITICAL

Opcenter Quality <V2406, Opcenter RDnL <V2410, SIMATIC PCS neo V4.0...

CVE-2024-32763 HIGH

QNAP QTS and QuTS hero - Authenticated Remote Code Execution via Heap-based Buffer Overflow

CVE-2024-45306 MEDIUM

vim 9.1.0038-9.1.0707 - Heap-based Buffer Overflow in Cursor Position Calculation

CVE-2024-8198 HIGH

Google Chrome <128.0.6613.113 - Buffer Overflow

CVE-2024-8193 HIGH

Google Chrome <128.0.6613.113 - Buffer Overflow

Previous Page 48 of 94 Next

Details

Vulnerabilities 2,327

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy