Heap-based Buffer Overflow

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

CVEs (2,306)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-5568 1Samba 1Samba Nov 21, 2024 Oct 25, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A heap-based Buffer Overflow flaw was discovered in Samba. It could allow a remote, authenticated attacker to exploit this vulnerability to cause a denial of service.
CVE-2023-4692 2Gnu Redhat 2Enterprise Linux Grub2 Nov 4, 2025 Oct 25, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue may allow an attacker to present a specially crafted NTFS filesystem image, leading to grub's heap metadata corruption. In some circumst...Show more An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue may allow an attacker to present a specially crafted NTFS filesystem image, leading to grub's heap metadata corruption. In some circumstances, the attack may also corrupt the UEFI firmware heap metadata. As a result, arbitrary code execution and secure boot protection bypass may be achieved.Show less
CVE-2023-5686 2Fedoraproject Radare 2Fedora Radare2 Nov 21, 2024 Oct 20, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.9.0.
CVE-2023-27395 1Softether 1Vpn Nov 21, 2024 Oct 12, 2023 N/A· v4 8.1 HIGH· v3 N/A· v2 A heap-based buffer overflow vulnerability exists in the vpnserver WpcParsePacket() functionality of SoftEther VPN 4.41-9782-beta, 5.01.9674 and 5.02. A specially crafted network packet can lead to arbitrary code executi...Show more A heap-based buffer overflow vulnerability exists in the vpnserver WpcParsePacket() functionality of SoftEther VPN 4.41-9782-beta, 5.01.9674 and 5.02. A specially crafted network packet can lead to arbitrary code execution. An attacker can perform a man-in-the-middle attack to trigger this vulnerability.Show less
CVE-2023-36730 1Microsoft 2Odbc Driver For Sql Server Sql Server Nov 21, 2024 Oct 10, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Microsoft ODBC Driver for SQL Server Remote Code Execution Vulnerability
CVE-2023-36598 1Microsoft 11Windows 10 1507 Windows 10 1809Windows 10 21h1+8 more Nov 21, 2024 Oct 10, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Microsoft WDAC ODBC Driver Remote Code Execution Vulnerability
CVE-2023-36577 1Microsoft 11Windows 10 1507 Windows 10 1809Windows 10 21h1+8 more Nov 21, 2024 Oct 10, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2023-36417 1Microsoft 2Ole Db Driver For Sql Server Sql Server Nov 21, 2024 Oct 10, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Microsoft SQL OLE DB Remote Code Execution Vulnerability
CVE-2023-43787 3Fedoraproject RedhatX.org 3Enterprise Linux FedoraLibx11 Nov 4, 2025 Oct 10, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A vulnerability was found in libX11 due to an integer overflow within the XCreateImage() function. This flaw allows a local user to trigger an integer overflow and execute arbitrary code with elevated privileges.
CVE-2023-5460 1Deltaww 1Wplsoft Nov 21, 2024 Oct 9, 2023 N/A· v4 5.7 MEDIUM· v3 2.7 LOW· v2 A vulnerability was found in Delta Electronics WPLSoft up to 2.51 and classified as problematic. This issue affects some unknown processing of the component Modbus Data Packet Handler. The manipulation leads to heap-base...Show more A vulnerability was found in Delta Electronics WPLSoft up to 2.51 and classified as problematic. This issue affects some unknown processing of the component Modbus Data Packet Handler. The manipulation leads to heap-based buffer overflow. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-241583. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.Show less
CVE-2023-3428 2Fedoraproject Imagemagick 3Extra Packages For Enterprise Linux FedoraImagemagick Nov 21, 2024 Oct 4, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A heap-based buffer overflow vulnerability was found in coders/tiff.c in ImageMagick. This issue may allow a local attacker to trick the user into opening a specially crafted file, resulting in an application crash and...Show more A heap-based buffer overflow vulnerability was found in coders/tiff.c in ImageMagick. This issue may allow a local attacker to trick the user into opening a specially crafted file, resulting in an application crash and denial of service.Show less
CVE-2023-4911 7Canonical DebianFedoraproject+4 more 39Bootstrap Os Codeready Linux BuilderCodeready Linux Builder Eus+36 more May 12, 2026 Oct 3, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES env...Show more A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launching binaries with SUID permission to execute code with elevated privileges.Show less
CVE-2023-5344 2Fedoraproject Vim 2Fedora Vim Nov 3, 2025 Oct 2, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1969.
CVE-2023-4264 1Zephyrproject 1Zephyr Feb 13, 2025 Sep 27, 2023 N/A· v4 9.6 CRITICAL· v3 N/A· v2 Potential buffer overflow vulnerabilities n the Zephyr Bluetooth subsystem.
CVE-2023-4504 3Debian FedoraprojectOpenprinting 4Cups Debian LinuxFedora+1 more Nov 4, 2025 Sep 21, 2023 N/A· v4 7.0 HIGH· v3 N/A· v2 Due to failure in validating the length provided by an attacker-crafted PPD PostScript document, CUPS and libppd are susceptible to a heap-based buffer overflow and possibly code execution. This issue has been fixed in C...Show more Due to failure in validating the length provided by an attacker-crafted PPD PostScript document, CUPS and libppd are susceptible to a heap-based buffer overflow and possibly code execution. This issue has been fixed in CUPS version 2.4.7, released in September of 2023.Show less
CVE-2023-32461 1Dell 52Emc Xc Core Xc450 Firmware Emc Xc Core Xc650 FirmwareEmc Xc Core Xc6520 Firmware+49 more Nov 21, 2024 Sep 15, 2023 N/A· v4 6.7 MEDIUM· v3 N/A· v2 Dell PowerEdge BIOS and Dell Precision BIOS contain a buffer overflow vulnerability. A local malicious user with high privileges could potentially exploit this vulnerability, leading to corrupt memory and potentially e...Show more Dell PowerEdge BIOS and Dell Precision BIOS contain a buffer overflow vulnerability. A local malicious user with high privileges could potentially exploit this vulnerability, leading to corrupt memory and potentially escalate privileges. Show less
CVE-2023-32643 1Gnome 1Glib Nov 21, 2024 Sep 14, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A flaw was found in GLib. The GVariant deserialization code is vulnerable to a heap buffer overflow introduced by the fix for CVE-2023-32665. This bug does not affect any released version of GLib, but does affect GLib di...Show more A flaw was found in GLib. The GVariant deserialization code is vulnerable to a heap buffer overflow introduced by the fix for CVE-2023-32665. This bug does not affect any released version of GLib, but does affect GLib distributors who followed the guidance of GLib developers to backport the initial fix for CVE-2023-32665.Show less
CVE-2023-38147 1Microsoft 10Windows 10 1507 Windows 10 1607Windows 10 1809+7 more Apr 8, 2025 Sep 12, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Windows Miracast Wireless Display Remote Code Execution Vulnerability
CVE-2023-38143 1Microsoft 12Windows 10 1507 Windows 10 1607Windows 10 1809+9 more Apr 8, 2025 Sep 12, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Common Log File System Driver Elevation of Privilege Vulnerability
CVE-2023-36793 1Microsoft 5.net .net FrameworkVisual Studio 2017+2 more Nov 21, 2024 Sep 12, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Visual Studio Remote Code Execution Vulnerability

Previous 1...798081...116 Next