CWE-122
High likelihoodHeap-based Buffer Overflow
A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().
2,327 vulnerabilities with CWE-122
CVE-2024-21795
CRITICAL
libbiosig 2.5.0 and Master Branch - Heap-based Buffer Overflow in .egi File Parsing
CVSS 9.8
CVE-2024-26327
MEDIUM
QEMU 7.1.0-8.2.1 - Heap-based Buffer Overflow via PCIe SRIOV NumVFs Write
CVSS 5.3
CVE-2024-0018
HIGH
Android - Heap-based Buffer Overflow in ColorConverter.cpp
CVSS 7.8
CVE-2024-0040
HIGH
Android - Heap-based Buffer Overflow in MtpPacket.cpp setParameter
CVSS 7.5
CVE-2024-0033
HIGH
Android - Heap-based Buffer Overflow in ashmem-dev.cpp
CVSS 7.8
CVE-2024-20739
HIGH
Audition <24.0.3, 23.6.2 - Buffer Overflow
CVSS 7.8
CVE-2024-21370
HIGH
Windows 10 1507-22H2 and Windows 11 21H2-23H2 - Remote Code Execution via WDAC OLE DB Provider
CVSS 8.8
CVE-2024-21369
HIGH
Windows 10 1507-22H2 and Windows 11 21H2-23H2 - Remote Code Execution via WDAC OLE DB Provider
CVSS 8.8
CVE-2024-21368
HIGH
Windows 10/11 and Windows Server - Remote Code Execution via WDAC OLE DB Provider Heap Overflow
CVSS 8.8
CVE-2024-21367
HIGH
Windows 10 1507-22H2 and Windows 11 21H2-23H2 - Remote Code Execution via WDAC OLE DB Provider
CVSS 8.8
CVE-2024-21366
HIGH
Microsoft Windows WDAC OLE DB Provider for SQL Server - Remote Code Execution via Heap-based Buffer Overflow
CVSS 8.8
CVE-2024-21365
HIGH
Windows 10 1507-22H2 and Windows 11 21H2-23H2 - Remote Code Execution via WDAC OLE DB Provider
CVSS 8.8
CVE-2024-21361
HIGH
Windows 10 1507-22H2 and Windows 11 21H2-23H2 - Remote Code Execution via WDAC OLE DB Provider
CVSS 8.8
CVE-2024-21360
HIGH
Windows 10/11, Server 2008-2022 - RCE via WDAC OLE DB Provider Heap Overflow
CVSS 8.8
CVE-2024-21359
HIGH
Windows 10 1507-22H2 and Windows 11 21H2-23H2 - Remote Code Execution via WDAC OLE DB Provider
CVSS 8.8
CVE-2024-21358
HIGH
Windows 10 1507-22H2 and Windows 11 21H2-23H2 - Remote Code Execution via WDAC OLE DB Provider
CVSS 8.8
CVE-2024-21354
HIGH
Windows 10 1507-22H2, Windows 11 21H2-23H2, Windows Server 2012-2022 - Elevation of Privilege via MSMQ
CVSS 7.8
CVE-2024-21353
HIGH
Windows Server 2022 23H2 < 10.0.25398.709 - Remote Code Execution via WDAC ODBC Driver Heap-based Buffer Overflow
CVSS 8.8
CVE-2024-21349
HIGH
Microsoft ActiveX Data Objects - Remote Code Execution via Heap-based Buffer Overflow
CVSS 8.8
CVE-2024-21348
HIGH
Windows 10 1507-22H2, Windows 11 21H2-23H2, Windows Server 2012-2022 - Denial of Service in Internet Connection Sharing
CVSS 7.5
CVE-2024-21347
HIGH
Microsoft ODBC Driver - Remote Code Execution via Heap-based Buffer Overflow
CVSS 7.5
CVE-2024-21345
HIGH
Windows Server 2022 23H2 < 10.0.25398.709 - Heap-based Buffer Overflow
CVSS 8.8
CVE-2024-21341
MEDIUM
Windows Kernel - Remote Code Execution via Heap-based Buffer Overflow
CVSS 6.8
CVE-2024-23796
HIGH
Siemens Tecnomatix Plant Simulation < 2201.0012 and < 2302.0006 - Heap-based Buffer Overflow via WRL File Parsing
CVSS 7.8
CVE-2024-1062
MEDIUM
389 Directory Server < 2.2.0 - Denial of Service via Heap Overflow in log_entry_attr
CVSS 5.5
Details
Vulnerabilities
2,327
Exploit Likelihood
High