Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-122

CWE-122

High likelihood

Heap-based Buffer Overflow

Parent: CWE-788 - Access of Memory Location After End of Buffer

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

2,327 vulnerabilities with CWE-122

CVE-2024-26239 HIGH

Windows Telephony Server - Elevation of Privilege via Heap-based Buffer Overflow

CVE-2024-26229 HIGH

Windows CSC Service - Elevation of Privilege via Heap-based Buffer Overflow

CVE-2024-26214 HIGH

Windows 10/11, Server 2008-2012 - RCE via WDAC SQL Server ODBC Driver Heap Overflow

CVE-2024-26211 HIGH

Windows Remote Access Connection Manager - Elevation of Privilege via Heap-based Buffer Overflow

CVE-2024-26210 HIGH

Windows 10 1507 < 10.0.10240.20596 - Remote Code Execution via WDAC OLE DB Provider

CVE-2024-26205 HIGH

Windows Routing and Remote Access Service - Remote Code Execution via Heap-based Buffer Overflow

CVE-2024-26202 HIGH

Windows Server DHCP Service RCE (2012, 2016, 2019, 2022, 23H2)

CVE-2024-26200 HIGH

Windows Routing and Remote Access Service - Remote Code Execution via Heap-based Buffer Overflow

CVE-2024-26195 HIGH

Windows Server DHCP Service RCE (2008, 2012, 2016, 2019, 2022)

CVE-2024-26179 HIGH

Windows Routing and Remote Access Service - Remote Code Execution via Heap-based Buffer Overflow

CVE-2024-26168 MEDIUM

Windows Secure Boot - Security Feature Bypass via Heap-based Buffer Overflow

CVE-2024-27341 HIGH

Kofax Power PDF < 5.0.0.17 - Remote Code Execution via PDF File Parsing

CVE-2024-27340 HIGH

Kofax Power PDF < 5.0.0.17 - Remote Code Execution via PDF File Parsing

CVE-2024-3209 MEDIUM

UPX < 4.2.2 - Heap-based Buffer Overflow in get_ne64 Function

CVE-2024-3207 MEDIUM

ermig1979 Simd < 6.0.134 - Heap-based Buffer Overflow in ReadUnsigned Function

CVE-2024-3204 HIGH

c-blosc2 < 2.13.2 - Heap-based Buffer Overflow in ndlz4_decompress

CVE-2024-3203 HIGH

c-blosc2 < 2.13.2 - Heap-based Buffer Overflow in ndlz8_decompress

CVE-2024-30806 MEDIUM

Bento4 v1.6.0-641-2-g1529b83 - Heap-based Buffer Overflow in AP4_Dec3Atom

CVE-2024-3024 MEDIUM

tcpreplay < 4.4.4 - Heap-based Buffer Overflow in get_layer4_v6

CVE-2024-20259 HIGH

Cisco IOS XE - Unauthenticated Denial of Service via Crafted IPv4 DHCP Request

CVE-2024-25390 HIGH

RT-Thread <= 5.0.2 - Heap-based Buffer Overflow in finsh/msh_file.c and finsh/msh.c

CVE-2024-24335 HIGH

RT-Thread <= 5.0.2 - Heap-based Buffer Overflow in dfs_v2 romfs Filesystem

CVE-2024-24334 HIGH

rt-thread < 5.0.2 - Heap-based Buffer Overflow in dfs_v2 dfs_file

CVE-2024-2212 HIGH

Eclipse ThreadX <6.4.0 - Buffer Overflow

CVE-2024-21913 HIGH

Rockwell Automation Arena 16.00.00-16.20.03 - Heap-based Buffer Overflow via Malicious File

Previous Page 57 of 94 Next

Details

Vulnerabilities 2,327

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy