Heap-based Buffer Overflow

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

CVEs (2,307)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-43526 1Microsoft 9Windows 10 1809 Windows 10 21h2Windows 10 22h2+6 more Oct 17, 2024 Oct 8, 2024 N/A· v4 6.8 MEDIUM· v3 N/A· v2 Windows Mobile Broadband Driver Remote Code Execution Vulnerability
CVE-2024-43525 1Microsoft 9Windows 10 1809 Windows 10 21h2Windows 10 22h2+6 more Oct 17, 2024 Oct 8, 2024 N/A· v4 6.8 MEDIUM· v3 N/A· v2 Windows Mobile Broadband Driver Remote Code Execution Vulnerability
CVE-2024-43523 1Microsoft 9Windows 10 1809 Windows 10 21h2Windows 10 22h2+6 more Oct 17, 2024 Oct 8, 2024 N/A· v4 6.8 MEDIUM· v3 N/A· v2 Windows Mobile Broadband Driver Remote Code Execution Vulnerability
CVE-2024-43522 1Microsoft 2Windows 11 22h2 Windows 11 23h2 Oct 17, 2024 Oct 8, 2024 N/A· v4 7.0 HIGH· v3 N/A· v2 Windows Local Security Authority (LSA) Elevation of Privilege Vulnerability
CVE-2024-43518 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Oct 17, 2024 Oct 8, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Windows Telephony Server Remote Code Execution Vulnerability
CVE-2024-43517 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Oct 17, 2024 Oct 8, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Microsoft ActiveX Data Objects Remote Code Execution Vulnerability
CVE-2024-43480 1Microsoft 1Azure Service Fabric Oct 17, 2024 Oct 8, 2024 N/A· v4 6.6 MEDIUM· v3 N/A· v2 Azure Service Fabric for Linux Remote Code Execution Vulnerability
CVE-2024-43453 1Microsoft 6Windows Server 2008 Windows Server 2012Windows Server 2016+3 more Oct 22, 2024 Oct 8, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
CVE-2024-38265 1Microsoft 6Windows Server 2008 Windows Server 2012Windows Server 2016+3 more Oct 22, 2024 Oct 8, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
CVE-2024-38261 1Microsoft 6Windows Server 2008 Windows Server 2012Windows Server 2016+3 more Oct 22, 2024 Oct 8, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
CVE-2024-38212 1Microsoft 6Windows Server 2008 Windows Server 2012Windows Server 2016+3 more Oct 22, 2024 Oct 8, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
CVE-2024-41981 - - Dec 10, 2024 Oct 8, 2024 7.3 HIGH· v4 7.8 HIGH· v3 N/A· v2 A vulnerability has been identified in Simcenter Femap V2306 (All versions), Simcenter Femap V2401 (All versions), Simcenter Femap V2406 (All versions). The affected application is vulnerable to heap-based buffer overflo...Show more A vulnerability has been identified in Simcenter Femap V2306 (All versions), Simcenter Femap V2401 (All versions), Simcenter Femap V2406 (All versions). The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted BDF files. This could allow an attacker to execute code in the context of the current process.Show less
CVE-2024-6444 1Zephyrproject 1Zephyr Nov 13, 2024 Oct 4, 2024 N/A· v4 6.5 MEDIUM· v3 N/A· v2 No proper validation of the length of user input in olcp_ind_handler in zephyr/subsys/bluetooth/services/ots/ots_client.c.
CVE-2024-45872 1Bandisoft 1Bandiview Apr 28, 2025 Oct 3, 2024 N/A· v4 6.3 MEDIUM· v3 N/A· v2 Bandisoft BandiView 7.05 is vulnerable to Buffer Overflow via sub_0x410d1d. The vulnerability occurs due to insufficient validation of PSD files.
CVE-2024-20522 1Cisco 4Rv042 Firmware Rv042g FirmwareRv320 Firmware+1 more Oct 8, 2024 Oct 2, 2024 N/A· v4 6.8 MEDIUM· v3 N/A· v2 A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to cause an unexpected reload of an...Show more A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to cause an unexpected reload of an affected device, resulting in a denial of service (DoS) condition. To exploit this vulnerability, an attacker would need to have valid Administrator credentials on the affected device.   This vulnerability is due to improper validation of user input that is in incoming HTTP packets. An attacker could exploit this vulnerability by sending a crafted HTTP request to the web-based management interface of the affected device. A successful exploit could allow the attacker to cause an unexpected reload of the device, resulting in a DoS condition.Show less
CVE-2024-20517 1Cisco 4Rv042 Firmware Rv042g FirmwareRv320 Firmware+1 more Oct 8, 2024 Oct 2, 2024 N/A· v4 6.8 MEDIUM· v3 N/A· v2 A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to cause an unexpected reload of an...Show more A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to cause an unexpected reload of an affected device, resulting in a denial of service (DoS) condition. To exploit this vulnerability, an attacker would need to have valid Administrator credentials on the affected device.   This vulnerability is due to improper validation of user input that is in incoming HTTP packets. An attacker could exploit this vulnerability by sending a crafted HTTP request to the web-based management interface of the affected device. A successful exploit could allow the attacker to cause an unexpected reload of the device, resulting in a DoS condition.Show less
CVE-2024-20516 1Cisco 4Rv042 Firmware Rv042g FirmwareRv320 Firmware+1 more Oct 8, 2024 Oct 2, 2024 N/A· v4 6.8 MEDIUM· v3 N/A· v2 A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to cause an unexpected reload of an...Show more A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to cause an unexpected reload of an affected device, resulting in a denial of service (DoS) condition. To exploit this vulnerability, an attacker would need to have valid Administrator credentials on the affected device.   This vulnerability is due to improper validation of user input that is in incoming HTTP packets. An attacker could exploit this vulnerability by sending a crafted HTTP request to the web-based management interface of the affected device. A successful exploit could allow the attacker to cause an unexpected reload of the device, resulting in a DoS condition.Show less
CVE-2024-46264 1Randygaul 1Cute Png Mar 13, 2025 Oct 1, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 cute_png v1.05 was discovered to contain a heap buffer overflow via the cp_find() function at cute_png.h.
CVE-2024-7674 1Autodesk 1Navisworks Aug 26, 2025 Sep 30, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 A maliciously crafted DWFX file, when parsed in dwfcore.dll through Autodesk Navisworks, can force a Heap-based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary cod...Show more A maliciously crafted DWFX file, when parsed in dwfcore.dll through Autodesk Navisworks, can force a Heap-based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process.Show less
CVE-2024-7673 1Autodesk 1Navisworks Jan 29, 2025 Sep 30, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Heap-based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code...Show more A maliciously crafted DWFX file, when parsed in w3dtk.dll through Autodesk Navisworks, can force a Heap-based Buffer Overflow. A malicious actor can leverage this vulnerability to cause a crash or execute arbitrary code in the context of the current process.Show less

Previous 1...575859...116 Next