Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-122

CWE-122

High likelihood

Heap-based Buffer Overflow

Parent: CWE-788 - Access of Memory Location After End of Buffer

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

2,327 vulnerabilities with CWE-122

CVE-2024-35271 HIGH

SQL Server 2016/2017/2019/2022 RCE via Native Client OLE DB Provider

CVE-2024-35256 HIGH

SQL Server 2016/2017/2019/2022 - Remote Code Execution via Native Client OLE DB Provider

CVE-2024-21449 HIGH

SQL Server 2016/2017/2019/2022 - Remote Code Execution via Native Client OLE DB Provider

CVE-2024-21425 HIGH

SQL Server 2016-2022 Remote Code Execution via Native Client OLE DB Provider

CVE-2024-21415 HIGH

SQL Server 2016-2022 Remote Code Execution via Native Client OLE DB Provider

CVE-2024-21414 HIGH

SQL Server 2016-2022 Remote Code Execution via Native Client OLE DB Provider

CVE-2024-21398 HIGH

SQL Server 2016-2022 - Remote Code Execution via Native Client OLE DB Provider

CVE-2024-21373 HIGH

SQL Server 2016-2022 Remote Code Execution via Native Client OLE DB Provider

CVE-2024-21335 HIGH

SQL Server 2016-2022 Remote Code Execution via Heap-based Buffer Overflow

CVE-2024-21333 HIGH

SQL Server 2016-2022 Remote Code Execution via Heap-based Buffer Overflow

CVE-2024-21331 HIGH

Microsoft SQL Server 2016-2022 Remote Code Execution via Heap-based Buffer Overflow

CVE-2024-21317 HIGH

SQL Server 2016-2022 Remote Code Execution via Native Client OLE DB Provider

CVE-2024-20701 HIGH

SQL Server Native Client OLE DB Provider - Remote Code Execution

CVE-2024-21778 HIGH

Realtek rtl819x Jungle SDK 3.4.11 - Heap-based Buffer Overflow via Crafted .dat File

CVE-2024-6383 MEDIUM

MongoDB C Driver <1.27.1 - Buffer Overflow

CVE-2024-29508 LOW

Artifex Ghostscript <10.03.0 - Info Disclosure

CVE-2024-32229 HIGH

FFmpeg 7.0 - Heap-based Buffer Overflow in copy_column

CVE-2024-39133 MEDIUM

zziplib v0.13.77 - Heap-based Buffer Overflow in __zzip_parse_root_directory

CVE-2024-38950 MEDIUM

Libde265 1.0.15 - Heap-based Buffer Overflow via Crafted Payload to __interceptor_memcpy

CVE-2024-38949 MEDIUM

libde265 1.0.15 - Heap-based Buffer Overflow in display444as420 Function

CVE-2024-23155 HIGH

Autodesk AutoCAD 2022-2022.1.5 - Heap-based Buffer Overflow via Malicious MODEL File

CVE-2024-23154 HIGH

Autodesk AutoCAD 2022-2022.1.5 - Heap-based Buffer Overflow via SLDPRT File Parsing

CVE-2024-37001 HIGH

Autodesk AutoCAD 2022-2022.1.5 - Heap-based Buffer Overflow via Crafted 3DM File

CVE-2024-6154 MEDIUM

Parallels Desktop - Privilege Escalation

CVE-2024-29013 MEDIUM

SonicOS < 7.0.1-5161 - Authenticated Denial of Service via memcpy Heap-based Buffer Overflow

Previous Page 52 of 94 Next

Details

Vulnerabilities 2,327

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy