← Back
CWE-122

2,306 CVEs • Abstraction: Variant • Likelihood of Exploit: High

Heap-based Buffer Overflow

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

JSON object

Loading...

CVEs (2,306)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-37326
1Microsoft
4Sql Server 2016
Sql Server 2017Sql Server 2019+1 more
Nov 21, 2024
Jul 9, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37324
1Microsoft
4Sql Server 2016
Sql Server 2017Sql Server 2019+1 more
Nov 21, 2024
Jul 9, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37322
1Microsoft
4Sql Server 2016
Sql Server 2017Sql Server 2019+1 more
Nov 21, 2024
Jul 9, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37321
1Microsoft
4Sql Server 2016
Sql Server 2017Sql Server 2019+1 more
Nov 21, 2024
Jul 9, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37319
1Microsoft
4Sql Server 2016
Sql Server 2017Sql Server 2019+1 more
Nov 21, 2024
Jul 9, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-37318
1Microsoft
4Sql Server 2016
Sql Server 2017Sql Server 2019+1 more
Nov 21, 2024
Jul 9, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-35272
1Microsoft
4Sql Server 2016
Sql Server 2017Sql Server 2019+1 more
Nov 21, 2024
Jul 9, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-35271
1Microsoft
4Sql Server 2016
Sql Server 2017Sql Server 2019+1 more
Nov 21, 2024
Jul 9, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-35256
1Microsoft
4Sql Server 2016
Sql Server 2017Sql Server 2019+1 more
Nov 21, 2024
Jul 9, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21449
1Microsoft
4Sql Server 2016
Sql Server 2017Sql Server 2019+1 more
Nov 21, 2024
Jul 9, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21425
1Microsoft
4Sql Server 2016
Sql Server 2017Sql Server 2019+1 more
Jan 15, 2025
Jul 9, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21415
1Microsoft
4Sql Server 2016
Sql Server 2017Sql Server 2019+1 more
Jan 15, 2025
Jul 9, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21414
1Microsoft
4Sql Server 2016
Sql Server 2017Sql Server 2019+1 more
Jan 15, 2025
Jul 9, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21398
1Microsoft
4Sql Server 2016
Sql Server 2017Sql Server 2019+1 more
Jan 15, 2025
Jul 9, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21373
1Microsoft
4Sql Server 2016
Sql Server 2017Sql Server 2019+1 more
Jan 15, 2025
Jul 9, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21335
1Microsoft
4Sql Server 2016
Sql Server 2017Sql Server 2019+1 more
Jan 15, 2025
Jul 9, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21333
1Microsoft
4Sql Server 2016
Sql Server 2017Sql Server 2019+1 more
Jan 15, 2025
Jul 9, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21331
1Microsoft
4Sql Server 2016
Sql Server 2017Sql Server 2019+1 more
Jan 15, 2025
Jul 9, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-21317
1Microsoft
4Sql Server 2016
Sql Server 2017Sql Server 2019+1 more
Jan 15, 2025
Jul 9, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability
CVE-2024-20701
1Microsoft
4Sql Server 2016
Sql Server 2017Sql Server 2019+1 more
Nov 21, 2024
Jul 9, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
SQL Server Native Client OLE DB Provider Remote Code Execution Vulnerability