Heap-based Buffer Overflow

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

CVEs (2,307)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-45993 1Giflib Project 1Giflib Jul 10, 2025 Sep 30, 2024 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Giflib Project v5.2.2 is vulnerable to a heap buffer overflow via gif2rgb.
CVE-2024-38796 - - Nov 3, 2025 Sep 27, 2024 N/A· v4 5.9 MEDIUM· v3 N/A· v2 EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage(). An Attacker may cause memory corruption due to an overflow via an adjacent network. A successful exploit of this vulnerability may lead to a loss of Confi...Show more EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage(). An Attacker may cause memory corruption due to an overflow via an adjacent network. A successful exploit of this vulnerability may lead to a loss of Confidentiality, Integrity, and/or Availability.Show less
CVE-2024-46632 1Assimp 1Assimp May 27, 2025 Sep 26, 2024 N/A· v4 4.3 MEDIUM· v3 N/A· v2 Assimp v5.4.3 is vulnerable to Buffer Overflow via the MD5Importer::LoadMD5MeshFile function.
CVE-2024-46488 1Asg017 1Sqlite Vec Oct 2, 2024 Sep 25, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 sqlite-vec v0.1.1 was discovered to contain a heap buffer overflow via the npy_token_next function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file.
CVE-2024-20508 1Cisco 1Unified Threat Defense Snort Intrusion Prevention System Engine Oct 3, 2024 Sep 25, 2024 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A vulnerability in Cisco Unified Threat Defense (UTD) Snort Intrusion Prevention System (IPS) Engine for Cisco IOS XE Software could allow an unauthenticated, remote attacker to bypass configured security policies or cau...Show more A vulnerability in Cisco Unified Threat Defense (UTD) Snort Intrusion Prevention System (IPS) Engine for Cisco IOS XE Software could allow an unauthenticated, remote attacker to bypass configured security policies or cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient validation of HTTP requests when they are processed by Cisco UTD Snort IPS Engine. An attacker could exploit this vulnerability by sending a crafted HTTP request through an affected device. A successful exploit could allow the attacker to trigger a reload of the Snort process. If the action in case of Cisco UTD Snort IPS Engine failure is set to the default, fail-open, successful exploitation of this vulnerability could allow the attacker to bypass configured security policies. If the action in case of Cisco UTD Snort IPS Engine failure is set to fail-close, successful exploitation of this vulnerability could cause traffic that is configured to be inspected by Cisco UTD Snort IPS Engine to be dropped.Show less
CVE-2024-46461 - - Sep 26, 2024 Sep 25, 2024 N/A· v4 8.0 HIGH· v3 N/A· v2 VLC media player 3.0.20 and earlier is vulnerable to denial of service through an integer overflow which could be triggered with a maliciously crafted mms stream (heap based overflow). If successful, a malicious third pa...Show more VLC media player 3.0.20 and earlier is vulnerable to denial of service through an integer overflow which could be triggered with a maliciously crafted mms stream (heap based overflow). If successful, a malicious third party could trigger either a crash of VLC or an arbitrary code execution with the target user's privileges.Show less
CVE-2024-7018 1Google 1Chrome Jan 2, 2025 Sep 23, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Heap buffer overflow in PDF in Google Chrome prior to 124.0.6367.78 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. (Chromium security severity: Medium)
CVE-2024-45679 1Assimp 1Assimp Jun 13, 2025 Sep 18, 2024 N/A· v4 8.4 HIGH· v3 N/A· v2 Heap-based buffer overflow vulnerability in Assimp versions prior to 5.4.3 allows a local attacker to execute arbitrary code by importing a specially crafted file into the product.
CVE-2022-39068 1Zte 1Mf296r Firmware Sep 29, 2024 Sep 18, 2024 N/A· v4 6.5 MEDIUM· v3 N/A· v2 There is a buffer overflow vulnerability in ZTE MF296R. Due to insufficient validation of the SMS parameter length, an authenticated attacker could use the vulnerability to perform a denial of service attack.
CVE-2024-8905 1Google 1Chrome Jan 2, 2025 Sep 17, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Inappropriate implementation in V8 in Google Chrome prior to 129.0.6668.58 allowed a remote attacker to potentially exploit stack corruption via a crafted HTML page. (Chromium security severity: Medium)
CVE-2024-8948 1Micropython 1Micropython Sep 23, 2024 Sep 17, 2024 6.9 MEDIUM· v4 7.5 HIGH· v3 7.5 HIGH· v2 A vulnerability was found in MicroPython 1.23.0. It has been rated as critical. Affected by this issue is the function mpz_as_bytes of the file py/objint.c. The manipulation leads to heap-based buffer overflow. The attac...Show more A vulnerability was found in MicroPython 1.23.0. It has been rated as critical. Affected by this issue is the function mpz_as_bytes of the file py/objint.c. The manipulation leads to heap-based buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The patch is identified as 908ab1ceca15ee6fd0ef82ca4cba770a3ec41894. It is recommended to apply a patch to fix this issue. In micropython objint component, converting zero from int to bytes leads to heap buffer-overflow-write at mpz_as_bytes.Show less
CVE-2024-8946 1Micropython 1Micropython Sep 24, 2024 Sep 17, 2024 6.9 MEDIUM· v4 7.5 HIGH· v3 7.5 HIGH· v2 A vulnerability was found in MicroPython 1.23.0. It has been classified as critical. Affected is the function mp_vfs_umount of the file extmod/vfs.c of the component VFS Unmount Handler. The manipulation leads to heap-ba...Show more A vulnerability was found in MicroPython 1.23.0. It has been classified as critical. Affected is the function mp_vfs_umount of the file extmod/vfs.c of the component VFS Unmount Handler. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The name of the patch is 29943546343c92334e8518695a11fc0e2ceea68b. It is recommended to apply a patch to fix this issue. In the VFS unmount process, the comparison between the mounted path string and the unmount requested string is based solely on the length of the unmount string, which can lead to a heap buffer overflow read.Show less
CVE-2024-38812 1Vmware 2Cloud Foundation Vcenter Server Oct 31, 2025 Sep 17, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 The vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger this vulnerability by sending a specially crafte...Show more The vCenter Server contains a heap-overflow vulnerability in the implementation of the DCERPC protocol. A malicious actor with network access to vCenter Server may trigger this vulnerability by sending a specially crafted network packet potentially leading to remote code execution.Show less
CVE-2024-6259 1Zephyrproject 1Zephyr Sep 17, 2025 Sep 13, 2024 N/A· v4 6.5 MEDIUM· v3 N/A· v2 BT: HCI: adv_ext_report Improper discarding in adv_ext_report
CVE-2024-6135 1Zephyrproject 1Zephyr Sep 19, 2024 Sep 13, 2024 N/A· v4 6.5 MEDIUM· v3 N/A· v2 BT:Classic: Multiple missing buf length checks
CVE-2024-6258 1Zephyrproject 1Zephyr Sep 17, 2025 Sep 13, 2024 N/A· v4 6.5 MEDIUM· v3 N/A· v2 BT: Missing length checks of net_buf in rfcomm_handle_data
CVE-2024-43756 1Adobe 1Photoshop Sep 13, 2024 Sep 13, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue...Show more Photoshop Desktop versions 24.7.4, 25.11 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2024-39380 1Adobe 1After Effects Sep 13, 2024 Sep 13, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 After Effects versions 23.6.6, 24.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requ...Show more After Effects versions 23.6.6, 24.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2024-8636 1Google 1Chrome Sep 13, 2024 Sep 11, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Heap buffer overflow in Skia in Google Chrome prior to 128.0.6613.137 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-38242 1Microsoft 13Windows 10 1507 Windows 10 1607Windows 10 1809+10 more Sep 17, 2024 Sep 10, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Kernel Streaming Service Driver Elevation of Privilege Vulnerability

Previous 1...585960...116 Next