CWE-122

High likelihood

Heap-based Buffer Overflow

Parent: CWE-788 - Access of Memory Location After End of Buffer

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

2,334 vulnerabilities with CWE-122
CVE-2022-36863 MEDIUM
Android - Heap-based Buffer Overflow in GetCorrectDbLanguageTypeEsPKc
CVSS 4.4
CVE-2022-36862 MEDIUM
Android - Heap-based Buffer Overflow in HWR::EngineCJK::Impl::Construct()
CVSS 4.4
CVE-2022-36860 MEDIUM
Android - Heap-based Buffer Overflow in libSDKRecognitionText.spensdk.samsung.so
CVSS 4.4
CVE-2022-36858 MEDIUM
Android libSDKRecognitionText.spensdk.samsung.so - Heap-based Buffer Overflow in GetCorrectDbLanguageTypeEsPKc()
CVSS 4.4
CVE-2022-36846 MEDIUM
Android libSDKRecognitionText.spensdk.samsung.so - Heap-based Buffer Overflow in ConstructDictionary
CVSS 4.4
CVE-2022-36845 MEDIUM
Android - Heap-based Buffer Overflow in MHW_RECOG_LIB_INFO
CVSS 4.4
CVE-2022-36844 MEDIUM
Android - Heap-based Buffer Overflow in HWR::EngJudgeModel::Construct()
CVSS 4.4
CVE-2022-36843 MEDIUM
Android - Heap-based Buffer Overflow in MHW_RECOG_LIB_INFO
CVSS 4.4
CVE-2022-36842 MEDIUM
Android - Heap-based Buffer Overflow in prepareRecogLibrary Function
CVSS 4.4
CVE-2022-36841 MEDIUM
Android - Heap-based Buffer Overflow in PrepareRecogLibrary_Part
CVSS 4.4
CVE-2022-25309 MEDIUM
Fribidi < 1.0.12 - Heap-based Buffer Overflow in fribidi_cap_rtl_to_unicode
CVSS 5.5
CVE-2022-2915 HIGH
SonicWall SMA 200/210/400/410/500v Firmware < 10.2.1.5-34sv - Authenticated Heap-based Buffer Overflow
CVSS 8.8
CVE-2022-2991 MEDIUM
Linux Kernel < 5.15 - Heap-based Buffer Overflow in LightNVM Subsystem
CVSS 6.7
CVE-2022-26061 HIGH
HDF5 1.10.4 - Heap-based Buffer Overflow via GIF2H5 Functionality
CVSS 7.8
CVE-2022-2849 HIGH
vim/vim <9.0.0220 - Buffer Overflow
CVSS 7.8
CVE-2022-2819 HIGH
vim/vim <9.0.0211 - Buffer Overflow
CVSS 7.8
CVE-2022-35677 HIGH
Adobe FrameMaker <2019 Update 8, 2020 Update 4 - RCE
CVSS 7.8
CVE-2022-35676 HIGH
Adobe FrameMaker <2019 Update 8, 2020 Update 4 - RCE
CVSS 7.8
CVE-2022-2580 HIGH
vim/vim <9.0.0102 - Buffer Overflow
CVSS 7.8
CVE-2022-2571 HIGH
vim/vim <9.0.0101 - Buffer Overflow
CVSS 7.8
CVE-2022-2522 HIGH
vim/vim <9.0.0061 - Buffer Overflow
CVSS 7.8
CVE-2022-31144 HIGH
Redis 7.0-7.0.3 - Heap-based Buffer Overflow via XAUTOCLAIM Command
CVSS 7.0
CVE-2022-2122 HIGH
gstreamer < 1.20.3 - Denial of Service and Heap Overflow via qtdemux_inflate
CVSS 7.8
CVE-2022-1925 HIGH
GStreamer < 1.20.3 - Integer Overflow and Heap Overflow in Matroska Demuxing
CVSS 7.8
CVE-2022-1924 HIGH
GStreamer < 1.20.3 - Denial of Service and Heap Overflow in Matroska Demuxer LZO Decompression
CVSS 7.8
Details
Vulnerabilities 2,334
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits