Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-122

CWE-122

High likelihood

Heap-based Buffer Overflow

Parent: CWE-788 - Access of Memory Location After End of Buffer

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

2,312 vulnerabilities with CWE-122

CVE-2026-7353 HIGH

Google Chrome < 147.0.7727.138 - Heap-based Buffer Overflow in Skia

CVE-2026-7339 HIGH

Google Chrome < 147.0.7727.138 - Heap-based Buffer Overflow in WebRTC

CVE-2026-20766 HIGH

Milesight Cameras Heap-based Buffer Overflow

CVE-2026-7040 HIGH

Text::Minify::XS versions from v0.3.0 before v0.7.8 for Perl have heap overflow when processing some malformed UTF-8 characters

CVE-2026-33602 MEDIUM

Off-by-one access when processing crafted UDP responses

CVE-2026-6846 HIGH

Binutils: binutils: arbitrary code execution via malformed xcoff object file processing

CVE-2026-40706 HIGH

NTFS-3G 2022.10.3-2026.2.25 - Heap-based Buffer Overflow in ntfs_build_permissions_posix()

CVE-2026-40614 HIGH

PJSIP: Heap buffer overflow in Opus codec decoding

CVE-2026-5450 CRITICAL

glibc 2.7-2.43 - Heap-based Buffer Overflow via scanf %mc with Explicit Width

CVE-2026-32135 HIGH

NanoMQ has Heap Buffer Overflow in URI Parameter Parsing

CVE-2026-41445 HIGH

KissFFT Integer Overflow Heap Buffer Overflow via kiss_fftndr_alloc()

CVE-2026-32961 MEDIUM

silex technology SD-330AC and AMC Manager - Heap-based Buffer Overflow in Packet Data Processing

CVE-2026-32956 CRITICAL

SD-330AC and AMC Manager - Heap-based Buffer Overflow in Redirect URL Processing

CVE-2026-35512 HIGH

xrdp: Heap buffer overflow in EGFX channel

CVE-2026-32624 MEDIUM

xrdp: Heap buffer overflow in xrdp_sec_process_logon_info() via incorrect g_strncat length calculation

CVE-2026-32623 HIGH

xrdp: Heap buffer overflow in NeutrinoRDP channel reassembly

CVE-2026-6491 MEDIUM

libvips nip2 vips7compat.c im_minpos_vec heap-based overflow

CVE-2026-40504 CRITICAL

Creolabs Gravity < 0.9.6 Heap Buffer Overflow via gravity_vm_exec

CVE-2026-6361 HIGH

Google Chrome < 147.0.7727.101 - Heap-based Buffer Overflow in PDFium via Crafted PDF File

CVE-2026-6306 HIGH

Google Chrome < 147.0.7727.101 - Remote Code Execution via PDFium Heap Buffer Overflow

CVE-2026-6305 HIGH

Google Chrome < 147.0.7727.101 - Remote Code Execution via PDFium Heap Buffer Overflow

CVE-2026-6298 MEDIUM

Google Chrome < 147.0.7727.101 - Heap-based Buffer Overflow in Skia

CVE-2026-6296 CRITICAL

Google Chrome < 147.0.7727.101 - Heap-based Buffer Overflow in ANGLE via Crafted HTML Page

CVE-2026-27301 MEDIUM

Adobe Framemaker | Heap-based Buffer Overflow (CWE-122)

CVE-2026-27293 HIGH

Adobe Framemaker | Heap-based Buffer Overflow (CWE-122)

Previous Page 8 of 93 Next

Details

Vulnerabilities 2,312

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy