Heap-based Buffer Overflow

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

CVEs (2,306)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-30085 1Microsoft 9Windows 10 1809 Windows 10 21h2Windows 10 22h2+6 more Nov 21, 2024 Jun 11, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
CVE-2024-30077 1Microsoft 14Windows 10 1507 Windows 10 1607Windows 10 1809+11 more Nov 21, 2024 Jun 11, 2024 N/A· v4 8.0 HIGH· v3 N/A· v2 Windows OLE Remote Code Execution Vulnerability
CVE-2024-30075 1Microsoft 1Windows Server 2008 Nov 21, 2024 Jun 11, 2024 N/A· v4 8.0 HIGH· v3 N/A· v2 Windows Link Layer Topology Discovery Protocol Remote Code Execution Vulnerability
CVE-2024-30074 1Microsoft 1Windows Server 2008 Nov 21, 2024 Jun 11, 2024 N/A· v4 8.0 HIGH· v3 N/A· v2 Windows Link Layer Topology Discovery Protocol Remote Code Execution Vulnerability
CVE-2024-30066 1Microsoft 13Windows 10 1507 Windows 10 1607Windows 10 1809+10 more Nov 21, 2024 Jun 11, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Winlogon Elevation of Privilege Vulnerability
CVE-2024-2011 1Hitachienergy 2Foxman Un Unem Nov 21, 2024 Jun 11, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A heap-based buffer overflow vulnerability exists in the FOXMAN-UN/UNEM that if exploited will generally lead to a denial of service but can be used to execute arbitrary code, which is usually outside the scope of a pro...Show more A heap-based buffer overflow vulnerability exists in the FOXMAN-UN/UNEM that if exploited will generally lead to a denial of service but can be used to execute arbitrary code, which is usually outside the scope of a program's implicit security policyShow less
CVE-2024-5301 1Tungstenautomation 1Power Pdf Aug 6, 2025 Jun 6, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Kofax Power PDF PSD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User int...Show more Kofax Power PDF PSD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSD files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-22917.Show less
CVE-2024-27374 1Samsung 5Exynos 1280 Firmware Exynos 1330 FirmwareExynos 1380 Firmware+2 more Nov 21, 2024 Jun 5, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_nan_publish_get_nl_params(), there is no input validation check on hal_req->serv...Show more An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_nan_publish_get_nl_params(), there is no input validation check on hal_req->service_specific_info_len coming from userspace, which can lead to a heap overwrite.Show less
CVE-2024-27372 1Samsung 5Exynos 1280 Firmware Exynos 1330 FirmwareExynos 1380 Firmware+2 more Aug 27, 2025 Jun 5, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_nan_config_get_nl_params(), there is no input validation check on disc_attr->inf...Show more An issue was discovered in Samsung Mobile Processor Exynos 980, Exynos 850, Exynos 1280, Exynos 1380, and Exynos 1330. In the function slsi_nan_config_get_nl_params(), there is no input validation check on disc_attr->infrastructure_ssid_len coming from userspace, which can lead to a heap overwrite.Show less
CVE-2024-36843 1Libmodbus 1Libmodbus Nov 3, 2025 May 31, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 libmodbus v3.1.6 was discovered to contain a heap overflow via the modbus_mapping_free() function.
CVE-2024-22058 1Ivanti 1Endpoint Manager Jun 20, 2025 May 31, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 A buffer overflow allows a low privilege user on the local machine that has the EPM Agent installed to execute arbitrary code with elevated permissions in Ivanti EPM 2021.1 and older.
CVE-2024-5493 2Fedoraproject Google 2Chrome Fedora Dec 26, 2024 May 30, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Heap buffer overflow in WebRTC in Google Chrome prior to 125.0.6422.141 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-35434 1Irontec 1Sngrep Sep 27, 2025 May 29, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Irontec Sngrep v1.8.1 was discovered to contain a heap buffer overflow via the function rtp_check_packet at /sngrep/src/rtp.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SIP pack...Show more Irontec Sngrep v1.8.1 was discovered to contain a heap buffer overflow via the function rtp_check_packet at /sngrep/src/rtp.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SIP packet.Show less
CVE-2023-49600 1Libigl 1Libigl Feb 12, 2025 May 28, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 An out-of-bounds write vulnerability exists in the PlyFile ply_cast_ascii functionality of libigl v2.5.0. A specially crafted .ply file can lead to a heap buffer overflow. An attacker can provide a malicious file to trig...Show more An out-of-bounds write vulnerability exists in the PlyFile ply_cast_ascii functionality of libigl v2.5.0. A specially crafted .ply file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability.Show less
CVE-2023-6349 1Webmproject 1Libvpx Jul 22, 2025 May 27, 2024 5.7 MEDIUM· v4 7.5 HIGH· v3 N/A· v2 A heap overflow vulnerability exists in libvpx - Encoding a frame that has larger dimensions than the originally configured size with VP9 may result in a heap overflow in libvpx. We recommend upgrading to version 1.13.1...Show more A heap overflow vulnerability exists in libvpx - Encoding a frame that has larger dimensions than the originally configured size with VP9 may result in a heap overflow in libvpx. We recommend upgrading to version 1.13.1 or aboveShow less
CVE-2024-5228 1Tp Link 1Omada Er605 Firmware Aug 6, 2025 May 23, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 TP-Link Omada ER605 Comexe DDNS Response Handling Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations...Show more TP-Link Omada ER605 Comexe DDNS Response Handling Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Omada ER605 routers. Authentication is not required to exploit this vulnerability. However, devices are vulnerable only if configured to use the Comexe DDNS service. The specific flaw exists within the handling of DNS responses. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-22383.Show less
CVE-2024-5160 2Fedoraproject Google 2Chrome Fedora Dec 20, 2024 May 22, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Heap buffer overflow in Dawn in Google Chrome prior to 125.0.6422.76 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. (Chromium security severity: High)
CVE-2024-4323 1Treasuredata 1Fluent Bit May 5, 2025 May 20, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A memory corruption vulnerability in Fluent Bit versions 2.0.7 thru 3.0.3. This issue lies in the embedded http server’s parsing of trace requests and may result in denial of service conditions, information disclosure, o...Show more A memory corruption vulnerability in Fluent Bit versions 2.0.7 thru 3.0.3. This issue lies in the embedded http server’s parsing of trace requests and may result in denial of service conditions, information disclosure, or remote code execution.Show less
CVE-2024-30288 1Adobe 1Framemaker Dec 2, 2024 May 16, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Adobe Framemaker versions 2020.5, 2022.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue...Show more Adobe Framemaker versions 2020.5, 2022.3 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2024-30294 1Adobe 1Animate Dec 2, 2024 May 16, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Animate versions 24.0.2, 23.0.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires...Show more Animate versions 24.0.2, 23.0.5 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less

Previous 1...656667...116 Next