Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-122

CWE-122

High likelihood

Heap-based Buffer Overflow

Parent: CWE-788 - Access of Memory Location After End of Buffer

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

2,327 vulnerabilities with CWE-122

CVE-2024-38077 CRITICAL

Windows Remote Desktop Licensing Service - Remote Code Execution

CVE-2024-38076 CRITICAL

Windows Remote Desktop Licensing Service - Remote Code Execution

CVE-2024-38065 MEDIUM

Windows 10 1507-22H2 and Windows 11 21H2-23H2 - Secure Boot Security Feature Bypass

CVE-2024-38060 HIGH

Windows Imaging Component - Remote Code Execution

CVE-2024-38054 HIGH

Kernel Streaming WOW Thunk Service Driver - Privilege Escalation

CVE-2024-38051 HIGH

Windows Graphics Component - Remote Code Execution

CVE-2024-38032 HIGH

Windows 10/11 Multiple Versions - Remote Code Execution via Xbox Component

CVE-2024-38025 HIGH

Microsoft Windows Performance Data Helper Library - RCE

CVE-2024-37987 HIGH

Windows 10 1507-22H2 and Windows 11 21H2-23H2 - Secure Boot Security Feature Bypass via Type Confusion

CVE-2024-37977 HIGH

Windows 11/Server 2022 Secure Boot Security Feature Bypass

CVE-2024-37334 HIGH

Microsoft OLE DB Driver for SQL Server 18.0.2-18.7.0004.0 - Remote Code Execution

CVE-2024-37333 HIGH

SQL Server 2016/2017/2019/2022 RCE via Native Client OLE DB Provider

CVE-2024-37332 HIGH

SQL Server 2016/2017/2019/2022 RCE via Native Client OLE DB Provider

CVE-2024-37331 HIGH

SQL Server 2016/2017/2019/2022 Remote Code Execution via Heap-based Buffer Overflow

CVE-2024-37330 HIGH

SQL Server 2016/2017/2019/2022 - Remote Code Execution via Native Client OLE DB Provider

CVE-2024-37329 HIGH

SQL Server 2016/2017/2019/2022 Remote Code Execution via Heap-based Buffer Overflow

CVE-2024-37328 HIGH

SQL Server 2016/2017/2019/2022 Remote Code Execution via Heap-based Buffer Overflow

CVE-2024-37327 HIGH

SQL Server 2016/2017/2019/2022 RCE via Native Client OLE DB Provider

CVE-2024-37326 HIGH

SQL Server 2016/2017/2019/2022 Remote Code Execution via Heap-based Buffer Overflow

CVE-2024-37324 HIGH

SQL Server 2016/2017/2019/2022 Remote Code Execution via Heap-based Buffer Overflow

CVE-2024-37322 HIGH

SQL Server 2016/2017/2019/2022 Remote Code Execution via Heap-based Buffer Overflow

CVE-2024-37321 HIGH

SQL Server 2016/2017/2019/2022 RCE via Native Client OLE DB Provider

CVE-2024-37319 HIGH

SQL Server 2016/2017/2019/2022 RCE via Native Client OLE DB Provider

CVE-2024-37318 HIGH

SQL Server 2016/2017/2019/2022 RCE via Native Client OLE DB Provider

CVE-2024-35272 HIGH

SQL Server 2016/2017/2019/2022 Remote Code Execution via Heap-based Buffer Overflow

Previous Page 51 of 94 Next

Details

Vulnerabilities 2,327

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy