Heap-based Buffer Overflow

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

CVEs (2,306)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-2212 1Eclipse 1Threadx Feb 13, 2025 Mar 26, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 In Eclipse ThreadX before 6.4.0, xQueueCreate() and xQueueCreateSet() functions from the FreeRTOS compatibility API (utility/rtos_compatibility_layers/FreeRTOS/tx_freertos.c) were missing parameter checks. This could...Show more In Eclipse ThreadX before 6.4.0, xQueueCreate() and xQueueCreateSet() functions from the FreeRTOS compatibility API (utility/rtos_compatibility_layers/FreeRTOS/tx_freertos.c) were missing parameter checks. This could lead to integer wraparound, under-allocations and heap buffer overflows.Show less
CVE-2024-21913 1Rockwellautomation 1Arena Dec 17, 2024 Mar 26, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 A heap-based memory buffer overflow vulnerability in Rockwell Automation Arena Simulation software could potentially allow a malicious user to insert unauthorized code into the software by overstepping the memory bounda...Show more A heap-based memory buffer overflow vulnerability in Rockwell Automation Arena Simulation software could potentially allow a malicious user to insert unauthorized code into the software by overstepping the memory boundaries, which triggers an access violation. Once inside, the threat actor can run harmful code on the system. This affects the confidentiality, integrity, and availability of the product. To trigger this, the user would unwittingly need to open a malicious file shared by the threat actor. Show less
CVE-2024-2824 - - Nov 21, 2024 Mar 22, 2024 N/A· v4 6.3 MEDIUM· v3 7.5 HIGH· v2 A vulnerability was found in Matthias-Wandel jhead 3.08 and classified as critical. This issue affects the function PrintFormatNumber of the file exif.c. The manipulation leads to heap-based buffer overflow. The attack m...Show more A vulnerability was found in Matthias-Wandel jhead 3.08 and classified as critical. This issue affects the function PrintFormatNumber of the file exif.c. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-257711.Show less
CVE-2024-1848 - - Nov 21, 2024 Mar 22, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Heap-based Buffer Overflow, Memory Corruption, Out-Of-Bounds Read, Out-Of-Bounds Write, Stack-based Buffer Overflow, Type Confusion, Uninitialized Variable, Use-After-Free vulnerabilities exist in the file reading proced...Show more Heap-based Buffer Overflow, Memory Corruption, Out-Of-Bounds Read, Out-Of-Bounds Write, Stack-based Buffer Overflow, Type Confusion, Uninitialized Variable, Use-After-Free vulnerabilities exist in the file reading procedure in SOLIDWORKS Desktop on Release SOLIDWORKS 2024. These vulnerabilities could allow an attacker to execute arbitrary code while opening a specially crafted CATPART, DWG, DXF, IPT, JT, SAT, SLDDRW, SLDPRT, STL, STP, X_B or X_T file.Show less
CVE-2024-28231 1Eprosima 1Fast Dds Jun 30, 2025 Mar 20, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.14.0, 2.13.4, 2.12.3, 2.10.4, and 2.6.8, manipulated DATA Submessage can cause a hea...Show more eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.14.0, 2.13.4, 2.12.3, 2.10.4, and 2.6.8, manipulated DATA Submessage can cause a heap overflow error in the Fast-DDS process, causing the process to be terminated remotely. Additionally, the payload_size in the DATA Submessage packet is declared as uint32_t. When a negative number, such as -1, is input into this variable, it results in an Integer Overflow (for example, -1 gets converted to 0xFFFFFFFF). This eventually leads to a heap-buffer-overflow, causing the program to terminate. Versions 2.14.0, 2.13.4, 2.12.3, 2.10.4, and 2.6.8 contain a fix for this issue.Show less
CVE-2024-28572 1Freeimage Project 1Freeimage Mar 28, 2025 Mar 20, 2024 N/A· v4 6.2 MEDIUM· v3 N/A· v2 Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local attacker to cause a denial of service (DoS) via the FreeImage_SetTagValue() function when reading images in JPEG format.
CVE-2024-22453 1Dell 25Nx3230 Firmware Nx3330 FirmwarePoweredge C4130 Firmware+22 more Feb 4, 2025 Mar 19, 2024 N/A· v4 6.0 MEDIUM· v3 N/A· v2 Dell PowerEdge Server BIOS contains a heap-based buffer overflow vulnerability. A local high privileged attacker could potentially exploit this vulnerability to write to otherwise unauthorized memory.
CVE-2024-20755 1Adobe 1Bridge Dec 4, 2024 Mar 18, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Bridge versions 13.0.5, 14.0.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires...Show more Bridge versions 13.0.5, 14.0.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2024-20745 1Adobe 1Premiere Pro Dec 4, 2024 Mar 18, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Premiere Pro versions 24.1, 23.6.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requi...Show more Premiere Pro versions 24.1, 23.6.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2024-26540 1Cimg 1Cimg Jun 10, 2025 Mar 15, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 A heap-based buffer overflow in Clmg before 3.3.3 can occur via a crafted file to cimg_library::CImg<unsigned char>::_load_analyze.
CVE-2024-26178 1Microsoft 12Windows 10 1507 Windows 10 1607Windows 10 21h2+9 more Dec 27, 2024 Mar 12, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Kernel Elevation of Privilege Vulnerability
CVE-2024-26166 1Microsoft 14Windows 10 1507 Windows 10 1607Windows 10 1809+11 more Dec 6, 2024 Mar 12, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-26161 1Microsoft 14Windows 10 1507 Windows 10 1607Windows 10 1809+11 more Dec 5, 2024 Mar 12, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-26159 1Microsoft 14Windows 10 1507 Windows 10 1607Windows 10 1809+11 more Dec 5, 2024 Mar 12, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Microsoft ODBC Driver Remote Code Execution Vulnerability
CVE-2024-21330 1Microsoft 8Azure Automation Azure Automation Update ManagementAzure Security Center+5 more Dec 27, 2024 Mar 12, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Open Management Infrastructure (OMI) Elevation of Privilege Vulnerability
CVE-2024-27209 1Google 1Android Apr 3, 2025 Mar 11, 2024 N/A· v4 8.4 HIGH· v3 N/A· v2 there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.
CVE-2023-46426 1Gpac 1Gpac Sep 26, 2025 Mar 9, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Heap-based Buffer Overflow vulnerability in gpac version 2.3-DEV-rev588-g7edc40fee-master, allows remote attackers to execute arbitrary code and cause a denial of service (DoS) via gf_fwrite component in at utils/os_file...Show more Heap-based Buffer Overflow vulnerability in gpac version 2.3-DEV-rev588-g7edc40fee-master, allows remote attackers to execute arbitrary code and cause a denial of service (DoS) via gf_fwrite component in at utils/os_file.c.Show less
CVE-2024-22857 - - Nov 21, 2024 Mar 7, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Heap based buffer flow in zlog v1.1.0 to v1.2.17 in zlog_rule_new().The size of record_name is MAXLEN_PATH(1024) + 1 but file_path may have data upto MAXLEN_CFG_LINE(MAXLEN_PATH4) + 1. So a check was missing in zlog_rul...Show more Heap based buffer flow in zlog v1.1.0 to v1.2.17 in zlog_rule_new().The size of record_name is MAXLEN_PATH(1024) + 1 but file_path may have data upto MAXLEN_CFG_LINE(MAXLEN_PATH4) + 1. So a check was missing in zlog_rule_new() while copying the record_name from file_path + 1 which caused the buffer overflow. An attacker can exploit this vulnerability to overwrite the zlog_record_fn record_func function pointer to get arbitrary code execution or potentially cause remote code execution (RCE).Show less
CVE-2023-45591 1Ailux 1Imx6 Apr 10, 2025 Mar 5, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 A CWE-122 “Heap-based Buffer Overflow” vulnerability in the “logger_generic” function of the “Ax_rtu” binary allows a remote authenticated attacker to trigger a memory corruption in the context of the binary. This may re...Show more A CWE-122 “Heap-based Buffer Overflow” vulnerability in the “logger_generic” function of the “Ax_rtu” binary allows a remote authenticated attacker to trigger a memory corruption in the context of the binary. This may result in a Denial-of-Service (DoS) condition, possibly in the execution of arbitrary code with the same privileges of the process (root), or have other unspecified impacts on the device. This issue affects: AiLux imx6 bundle below version imx6_1.0.7-2.Show less
CVE-2024-0156 1Dell 1Digital Delivery Jan 8, 2025 Mar 4, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Dell Digital Delivery, versions prior to 5.2.0.0, contain a Buffer Overflow Vulnerability. A local low privileged attacker could potentially exploit this vulnerability, leading to arbitrary code execution and/or privileg...Show more Dell Digital Delivery, versions prior to 5.2.0.0, contain a Buffer Overflow Vulnerability. A local low privileged attacker could potentially exploit this vulnerability, leading to arbitrary code execution and/or privilege escalation.Show less

Previous 1...737475...116 Next