Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-122

CWE-122

High likelihood

Heap-based Buffer Overflow

Parent: CWE-788 - Access of Memory Location After End of Buffer

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

2,327 vulnerabilities with CWE-122

CVE-2023-38212 HIGH

Adobe Dimension < 3.4.9 - Heap-based Buffer Overflow via Malicious File

CVE-2023-2905 HIGH

Cesanta Mongoose 7.10 - Heap-based Buffer Overflow in MQTT CMD_PUBLISH Message Parsing

CVE-2023-38170 HIGH

HEVC Video Extensions < 2.0.61933.0 - Remote Code Execution

CVE-2023-38154 HIGH

Windows 10 1809 and Windows Server 2019 - Heap-based Buffer Overflow

CVE-2023-36896 HIGH

Microsoft 365 Apps and Office - Remote Code Execution via Heap-based Buffer Overflow

CVE-2023-36865 HIGH

Microsoft 365 Apps and Office - Remote Code Execution via Heap-based Buffer Overflow

CVE-2023-36532 MEDIUM

Zoom Rooms < 5.14.5 - Unauthenticated Denial of Service via Buffer Overflow

CVE-2023-3180 MEDIUM

QEMU < 8.1.0 - Heap-based Buffer Overflow in virtio_crypto_sym_op_helper

CVE-2023-4016 LOW

procps 3.3.0-4.0.2 - Heap-based Buffer Overflow via ps Utility

CVE-2023-21406 HIGH

AXIS A1001 Firmware < 1.65.4 - Heap-Based Buffer Overflow via OSDP Message Handling

CVE-2023-3463 MEDIUM

GE Digital CIMPLICITY - Heap-based Buffer Overflow via Untrusted Document Input

CVE-2023-24474 HIGH

Honeywell Experion Server 501.1-501.6hf8 - Denial of Service via Heap Overflow

CVE-2023-2763 HIGH

SOLIDWORKS Desktop 2021-2023 - Use-After-Free and Heap-based Buffer Overflow in DWG/DXF File Parsing

CVE-2023-35374 HIGH

Paint 3D < 6.2305.16087.0 - Remote Code Execution

CVE-2023-35363 HIGH

Windows Kernel - Elevation of Privilege via Heap-based Buffer Overflow

CVE-2023-35350 HIGH

Windows Server Active Directory Certificate Services - Remote Code Execution via Heap-based Buffer Overflow

CVE-2023-35337 HIGH

Windows 10/11 & Server 2022 Elevation of Privilege via Win32k Heap Overflow

CVE-2023-35305 HIGH

Windows 10/11, Server 2016/2019/2022 Elevation of Privilege via Heap-based Buffer Overflow

CVE-2023-35304 HIGH

Windows Kernel - Elevation of Privilege via Heap-based Buffer Overflow

CVE-2023-35302 HIGH

Windows 10 1507-22H2 and Windows 11 21H2-22H2 - Remote Code Execution via PostScript and PCL6 Printer Driver

CVE-2023-33152 HIGH

Microsoft 365 Apps - Remote Code Execution via ActiveX Heap-based Buffer Overflow

CVE-2023-32083 MEDIUM

Windows Server 2016, 2019, and 2022 - Heap-based Buffer Overflow

CVE-2023-32047 HIGH

Paint 3D < 6.2305.16087.0 - Remote Code Execution

CVE-2023-36824 HIGH

Redis 7.0.0-7.0.11 - Authenticated Heap Overflow via COMMAND GETKEYS

CVE-2023-37247 HIGH

Tecnomatix Plant Simulation V2201 < V2201.0008 and V2302 < V2302.0002 - Heap-based Buffer Overflow via PAR File Parsing

Previous Page 66 of 94 Next

Details

Vulnerabilities 2,327

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy