Heap-based Buffer Overflow

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

CVEs (2,306)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-32612 1Hdfgroup 1Hdf5 Apr 18, 2025 May 14, 2024 N/A· v4 7.4 HIGH· v3 N/A· v2 HDF5 Library through 1.14.3 contains a heap-based buffer over-read in H5HL__fl_deserialize in H5HLcache.c, resulting in the corruption of the instruction pointer, a different vulnerability than CVE-2024-32613.
CVE-2024-32605 1Hdfgroup 1Hdf5 Apr 18, 2025 May 14, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 HDF5 Library through 1.14.3 has a heap-based buffer over-read in H5VM_memcpyvv in H5VM.c (called from H5D__compact_readvv in H5Dcompact.c).
CVE-2024-30259 1Eprosima 1Fast Dds Jan 27, 2025 May 14, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 FastDDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group). Prior to versions 2.14.1, 2.13.5, 2.10.4, and 2.6.8, when a publisher serves malformed `RTPS` packet,...Show more FastDDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group). Prior to versions 2.14.1, 2.13.5, 2.10.4, and 2.6.8, when a publisher serves malformed `RTPS` packet, heap buffer overflow occurs on the subscriber. This can remotely crash any Fast-DDS process, potentially leading to a DOS attack. Versions 2.14.1, 2.13.5, 2.10.4, and 2.6.8 contain a patch for the issue. Show less
CVE-2024-29165 1Hdfgroup 1Hdf5 Apr 18, 2025 May 14, 2024 N/A· v4 7.4 HIGH· v3 N/A· v2 HDF5 through 1.14.3 contains a buffer overflow in H5Z__filter_fletcher32, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.
CVE-2024-29163 1Hdfgroup 1Hdf5 Apr 18, 2025 May 14, 2024 N/A· v4 7.4 HIGH· v3 N/A· v2 HDF5 through 1.14.3 contains a heap buffer overflow in H5T__bit_find, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.
CVE-2024-29162 1Hdfgroup 1Hdf5 Apr 18, 2025 May 14, 2024 N/A· v4 7.4 HIGH· v3 N/A· v2 HDF5 through 1.13.3 and/or 1.14.2 contains a stack buffer overflow in H5HG_read, resulting in denial of service or potential code execution.
CVE-2024-29161 1Hdfgroup 1Hdf5 Apr 18, 2025 May 14, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 HDF5 through 1.14.3 contains a heap buffer overflow in H5A__attr_release_table, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.
CVE-2024-29160 1Hdfgroup 1Hdf5 Apr 18, 2025 May 14, 2024 N/A· v4 7.4 HIGH· v3 N/A· v2 HDF5 through 1.14.3 contains a heap buffer overflow in H5HG__cache_heap_deserialize, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.
CVE-2024-29158 1Hdfgroup 1Hdf5 Apr 18, 2025 May 14, 2024 N/A· v4 7.4 HIGH· v3 N/A· v2 HDF5 through 1.14.3 contains a stack buffer overflow in H5FL_arr_malloc, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.
CVE-2024-29157 1Hdfgroup 1Hdf5 Apr 18, 2025 May 14, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 HDF5 through 1.14.3 contains a heap buffer overflow in H5HG_read, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution.
CVE-2022-43655 1Bentley 1View Aug 11, 2025 May 7, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Bentley View FBX File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View. User interacti...Show more Bentley View FBX File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley View. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of FBX files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-18491.Show less
CVE-2021-34971 1Foxit 2Pdf Editor Pdf Reader Aug 13, 2025 May 7, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Foxit PDF Reader JPG2000 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. Us...Show more Foxit PDF Reader JPG2000 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PDF files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-14812.Show less
CVE-2024-4559 2Fedoraproject Google 2Chrome Fedora Dec 19, 2024 May 7, 2024 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Heap buffer overflow in WebAudio in Google Chrome prior to 124.0.6367.155 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-32664 1Oisf 1Suricata Dec 19, 2024 May 7, 2024 N/A· v4 7.3 HIGH· v3 N/A· v2 Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.5 and 6.0.19, specially crafted traffic or datasets can cause a limited buffer overflow....Show more Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.5 and 6.0.19, specially crafted traffic or datasets can cause a limited buffer overflow. This vulnerability is fixed in 7.0.5 and 6.0.19. Workarounds include not use rules with `base64_decode` keyword with `bytes` option with value 1, 2 or 5 and for 7.0.x, setting `app-layer.protocols.smtp.mime.body-md5` to false.Show less
CVE-2024-3758 1Openatom 1Openharmony Jan 2, 2025 May 7, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 in OpenHarmony v4.0.0 and prior versions allow a local attacker arbitrary code execution in TCB through heap buffer overflow.
CVE-2024-34250 1Bytecodealliance 1Webassembly Micro Runtime Jun 13, 2025 May 6, 2024 N/A· v4 6.2 MEDIUM· v3 N/A· v2 A heap buffer overflow vulnerability was discovered in Bytecode Alliance wasm-micro-runtime v2.0.0 which allows a remote attacker to cause at least a denial of service via the "wasm_loader_check_br" function in core/iwas...Show more A heap buffer overflow vulnerability was discovered in Bytecode Alliance wasm-micro-runtime v2.0.0 which allows a remote attacker to cause at least a denial of service via the "wasm_loader_check_br" function in core/iwasm/interpreter/wasm_loader.c.Show less
CVE-2024-34249 1Wasm3 Project 1Wasm3 Apr 16, 2025 May 6, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 wasm3 v0.5.0 was discovered to contain a heap buffer overflow which leads to segmentation fault via the function "DeallocateSlot" in wasm3/source/m3_compile.c.
CVE-2024-34408 1Tencent 1Libpag Sep 19, 2025 May 3, 2024 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Tencent libpag through 4.3.51 has an integer overflow in DecodeStream::checkEndOfFile() in codec/utils/DecodeStream.cpp via a crafted PAG (Portable Animated Graphics) file.
CVE-2023-51596 1Bluez 1Bluez Jul 8, 2025 May 3, 2024 N/A· v4 7.1 HIGH· v3 N/A· v2 BlueZ Phone Book Access Profile Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. User inte...Show more BlueZ Phone Book Access Profile Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. User interaction is required to exploit this vulnerability in that the target must connect to a malicious Bluetooth device. The specific flaw exists within the handling of the Phone Book Access profile. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-20939.Show less
CVE-2023-50230 1Bluez 1Bluez Nov 4, 2025 May 3, 2024 N/A· v4 8.0 HIGH· v3 N/A· v2 BlueZ Phone Book Access Profile Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. User inte...Show more BlueZ Phone Book Access Profile Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. User interaction is required to exploit this vulnerability in that the target must connect to a malicious Bluetooth device. The specific flaw exists within the handling of the Phone Book Access profile. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of root. Was ZDI-CAN-20938.Show less

Previous 1...676869...116 Next