CWE-122

High likelihood

Heap-based Buffer Overflow

Parent: CWE-788 - Access of Memory Location After End of Buffer

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

2,137 vulnerabilities with CWE-122
CVE-2021-21830 CRITICAL
ATT Xmill - Out-of-Bounds Write
CVSS 9.8
CVE-2021-21829 CRITICAL
ATT Xmill - Out-of-Bounds Write
CVSS 9.8
CVE-2021-24036 CRITICAL
Facebook Folly < 2021.07.22.00 - Integer Overflow
CVSS 9.8
CVE-2021-34329 HIGH
Siemens Jt2go < 13.2.0 - Out-of-Bounds Write
CVSS 7.8
CVE-2021-34328 HIGH
Siemens Jt2go < 13.2.0 - Out-of-Bounds Write
CVSS 7.8
CVE-2021-34327 HIGH
Siemens Jt2go < 13.2.0 - Out-of-Bounds Write
CVSS 7.8
CVE-2021-34326 HIGH
Siemens Jt2go < 13.2.0 - Out-of-Bounds Write
CVSS 7.8
CVE-2021-34317 HIGH
Siemens Jt2go < 13.2.0 - Out-of-Bounds Write
CVSS 7.8
CVE-2021-34313 HIGH
Siemens Jt2go < 13.2.0 - Out-of-Bounds Write
CVSS 7.8
CVE-2021-34312 HIGH
Siemens Jt2go < 13.2.0 - Out-of-Bounds Write
CVSS 7.8
CVE-2021-33000 HIGH
WebAccess HMI Designer <2.1.9.95 - RCE
CVSS 7.8
CVE-2021-21572 HIGH
Dell Alienware M15 R6 Firmware < 1.3.3 - Out-of-Bounds Write
CVSS 7.2
CVE-2021-31485 HIGH
Opentext Brava! Desktop - Out-of-Bounds Write
CVSS 7.8
CVE-2021-31483 HIGH
Opentext Brava! Desktop - Heap Buffer Overflow
CVSS 7.8
CVE-2021-31478 HIGH
Opentext Brava! Desktop - Heap Buffer Overflow
CVSS 7.8
CVE-2021-21555 MEDIUM
Dell Poweredge R640 Firmware < 2.11.2 - Out-of-Bounds Write
CVSS 6.1
CVE-2021-21554 MEDIUM
Dell Poweredge R640 Firmware < 2.9.4 - Out-of-Bounds Write
CVSS 6.1
CVE-2021-21795 CRITICAL
Accusoft Imagegear - Out-of-Bounds Write
CVSS 9.8
CVE-2021-28211 MEDIUM
EDK II - Buffer Overflow
CVSS 6.7
CVE-2021-25387 CRITICAL
libsflacextractor <SMR MAY-2021 Release 1 - RCE
CVSS 9.0
CVE-2021-25384 CRITICAL
libsdffextractor <SMR MAY-2021 Release 1 - RCE
CVSS 9.0
CVE-2021-25383 CRITICAL
libsapeextractor <SMR MAY-2021 Release 1 - RCE
CVSS 9.0
CVE-2021-26691 CRITICAL
Apache HTTP Server < 2.4.46 - Out-of-Bounds Write
CVSS 9.8
CVE-2021-31954 HIGH
Microsoft Windows 10 - Heap Buffer Overflow
CVSS 7.8
CVE-2021-31439 HIGH
Synology Diskstation Manager < 6.2.3-25426-3 - Out-of-Bounds Write
CVSS 8.8
Details
Vulnerabilities 2,137
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits