Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-122

CWE-122

High likelihood

Heap-based Buffer Overflow

Parent: CWE-788 - Access of Memory Location After End of Buffer

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

2,327 vulnerabilities with CWE-122

CVE-2024-42851 HIGH

exiftags < 1.01 - Heap-based Buffer Overflow via paresetag Function

CVE-2024-43802 MEDIUM

Vim < 9.1.0697 - Heap-based Buffer Overflow in Typeahead Buffer Handling

CVE-2024-43790 MEDIUM

Vim 9.1.0425-9.1.0689 - Heap-based Buffer Overflow via Search Pattern with ASCII NUL Characters

CVE-2024-7973 HIGH

Google Chrome < 128.0.6613.84 - Heap-based Buffer Overflow in PDFium via Crafted PDF File

CVE-2024-7967 HIGH

Google Chrome < 128.0.6613.84 - Heap-based Buffer Overflow in Fonts via Crafted HTML Page

CVE-2024-42438 MEDIUM

Zoom Meeting SDK < 6.1.0 - Authenticated Denial of Service via Buffer Overflow

CVE-2024-42437 MEDIUM

Zoom Meeting SDK < 6.1.0 - Authenticated Denial of Service via Buffer Overflow

CVE-2024-42436 MEDIUM

Zoom Workplace Apps, SDKs, Rooms Clients, and Rooms Controllers < 6.1.0 - DoS via Buffer Overflow

CVE-2024-39825 HIGH

Zoom Rooms and Workplace < 6.0.0 - Authenticated Heap-based Buffer Overflow

CVE-2024-41853 HIGH

Adobe InDesign < 18.5.3 - Heap-based Buffer Overflow via Malicious File

CVE-2024-41850 HIGH

Adobe InDesign < 18.5.3 - Heap-based Buffer Overflow via Malicious File

CVE-2024-38172 HIGH

Microsoft 365 Apps and Office Long Term Servicing Channel - Remote Code Execution via Heap-based Buffer Overflow

CVE-2024-38170 HIGH

Microsoft 365 Apps and Office Long Term Servicing Channel - Remote Code Execution via Heap-based Buffer Overflow

CVE-2024-38169 HIGH

Microsoft Office Visio - Remote Code Execution via Heap-based Buffer Overflow

CVE-2024-38161 MEDIUM

Windows Mobile Broadband Driver - Remote Code Execution

CVE-2024-38160 CRITICAL

Windows Network Virtualization - Remote Code Execution

CVE-2024-38154 HIGH

Windows Routing and Remote Access Service - Remote Code Execution

CVE-2024-38152 HIGH

Windows OLE - Remote Code Execution

CVE-2024-38142 HIGH

Windows Secure Kernel Mode - Privilege Escalation

CVE-2024-38130 HIGH

Windows Routing and Remote Access Service - Remote Code Execution

CVE-2024-38121 HIGH

Windows Routing and Remote Access Service - Remote Code Execution

CVE-2024-38120 HIGH

Windows Routing and Remote Access Service - Remote Code Execution

CVE-2024-38116 HIGH

Windows IP Routing Management Snapin - Remote Code Execution

CVE-2024-38115 HIGH

Windows IP Routing Management Snapin - Remote Code Execution

CVE-2024-38114 HIGH

Windows IP Routing Management Snapin - Remote Code Execution

Previous Page 49 of 94 Next

Details

Vulnerabilities 2,327

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy