Heap-based Buffer Overflow

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

CVEs (2,306)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-36772 1Microsoft 13d Builder Nov 21, 2024 Sep 12, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 3D Builder Remote Code Execution Vulnerability
CVE-2023-36771 1Microsoft 13d Builder Nov 21, 2024 Sep 12, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 3D Builder Remote Code Execution Vulnerability
CVE-2023-36770 1Microsoft 13d Builder Nov 21, 2024 Sep 12, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 3D Builder Remote Code Execution Vulnerability
CVE-2023-36740 1Microsoft 13d Viewer Nov 21, 2024 Sep 12, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 3D Viewer Remote Code Execution Vulnerability
CVE-2023-36739 1Microsoft 13d Viewer Nov 21, 2024 Sep 12, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 3D Viewer Remote Code Execution Vulnerability
CVE-2023-38076 1Siemens 3Jt2go Teamcenter VisualizationTecnomatix Plant Simulation Nov 21, 2024 Sep 12, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A vulnerability has been identified in JT2Go (All versions < V14.3.0.1), Teamcenter Visualization V13.3 (All versions < V13.3.0.12), Teamcenter Visualization V14.0 (All versions), Teamcenter Visualization V14.1 (All vers...Show more A vulnerability has been identified in JT2Go (All versions < V14.3.0.1), Teamcenter Visualization V13.3 (All versions < V13.3.0.12), Teamcenter Visualization V14.0 (All versions), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.6), Teamcenter Visualization V14.3 (All versions < V14.3.0.1), Tecnomatix Plant Simulation V2201 (All versions < V2201.0010), Tecnomatix Plant Simulation V2302 (All versions < V2302.0004). The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-21041)Show less
CVE-2023-38071 1Siemens 3Jt2go Teamcenter VisualizationTecnomatix Plant Simulation Nov 21, 2024 Sep 12, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A vulnerability has been identified in JT2Go (All versions < V14.3.0.1), Teamcenter Visualization V13.3 (All versions < V13.3.0.12), Teamcenter Visualization V14.0 (All versions), Teamcenter Visualization V14.1 (All vers...Show more A vulnerability has been identified in JT2Go (All versions < V14.3.0.1), Teamcenter Visualization V13.3 (All versions < V13.3.0.12), Teamcenter Visualization V14.0 (All versions), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.6), Teamcenter Visualization V14.3 (All versions < V14.3.0.1), Tecnomatix Plant Simulation V2201 (All versions < V2201.0010), Tecnomatix Plant Simulation V2302 (All versions < V2302.0004). The affected application is vulnerable to heap-based buffer overflow while parsing specially crafted WRL files. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-20824)Show less
CVE-2023-4781 3Apple DebianVim 3Debian Linux MacosVim Nov 3, 2025 Sep 5, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1873.
CVE-2023-4751 2Apple Vim 2Macos Vim Nov 21, 2024 Sep 3, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1331.
CVE-2023-4738 2Apple Vim 2Macos Vim Nov 3, 2025 Sep 2, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Heap-based Buffer Overflow in GitHub repository vim/vim prior to 9.0.1848.
CVE-2023-4682 1Gpac 1Gpac Nov 21, 2024 Aug 31, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Heap-based Buffer Overflow in GitHub repository gpac/gpac prior to 2.3-DEV.
CVE-2023-40166 1Notepad Plus Plus 1Notepad++ Nov 21, 2024 Aug 25, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer read overflow in `FileManager::detectLanguageFromTextBegining `. The exploitability of this issue is not clea...Show more Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer read overflow in `FileManager::detectLanguageFromTextBegining `. The exploitability of this issue is not clear. Potentially, it may be used to leak internal memory allocation information. As of time of publication, no known patches are available in existing versions of Notepad++.Show less
CVE-2023-40031 1Notepad Plus Plus 1Notepad++ Nov 21, 2024 Aug 25, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer write overflow in `Utf8_16_Read::convert`. This issue may lead to arbitrary code execution. As of time of pub...Show more Notepad++ is a free and open-source source code editor. Versions 8.5.6 and prior are vulnerable to heap buffer write overflow in `Utf8_16_Read::convert`. This issue may lead to arbitrary code execution. As of time of publication, no known patches are available in existing versions of Notepad++.Show less
CVE-2023-4322 2Fedoraproject Radare 2Fedora Radare2 Nov 21, 2024 Aug 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.9.0.
CVE-2023-39947 2Debian Eprosima 2Debian Linux Fast Dds Nov 21, 2024 Aug 11, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.11.1, 2.10.2, 2.9.2, and 2.6.6, even after the fix at commit 3492270, malformed `PID...Show more eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.11.1, 2.10.2, 2.9.2, and 2.6.6, even after the fix at commit 3492270, malformed `PID_PROPERTY_LIST` parameters cause heap overflow at a different program counter. This can remotely crash any Fast-DDS process. Versions 2.11.1, 2.10.2, 2.9.2, and 2.6.6 contain a patch for this issue.Show less
CVE-2023-39946 2Debian Eprosima 2Debian Linux Fast Dds Nov 21, 2024 Aug 11, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.11.1, 2.10.2, 2.9.2, and 2.6.6, heap can be overflowed by providing a PID_PROPERTY_L...Show more eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.11.1, 2.10.2, 2.9.2, and 2.6.6, heap can be overflowed by providing a PID_PROPERTY_LIST parameter that contains a CDR string with length larger than the size of actual content. In `eprosima::fastdds::dds::ParameterPropertyList_t::push_back_helper`, `memcpy` is called to first copy the octet'ized length and then to copy the data into `properties_.data`. At the second memcpy, both `data` and `size` can be controlled by anyone that sends the CDR string to the discovery multicast port. This can remotely crash any Fast-DDS process. Versions 2.11.1, 2.10.2, 2.9.2, and 2.6.6 contain a patch for this issue.Show less
CVE-2023-38212 1Adobe 1Dimension Nov 21, 2024 Aug 9, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Adobe Dimension version 3.4.9 is affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interacti...Show more Adobe Dimension version 3.4.9 is affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2023-2905 1Cesanta 1Mongoose Nov 21, 2024 Aug 9, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Due to a failure in validating the length of a provided MQTT_CMD_PUBLISH parsed message with a variable length header, Cesanta Mongoose, an embeddable web server, version 7.10 is susceptible to a heap-based buffer overfl...Show more Due to a failure in validating the length of a provided MQTT_CMD_PUBLISH parsed message with a variable length header, Cesanta Mongoose, an embeddable web server, version 7.10 is susceptible to a heap-based buffer overflow vulnerability in the default configuration. Version 7.9 and prior does not appear to be vulnerable. This issue is resolved in version 7.11. Show less
CVE-2023-38170 1Microsoft 1Hevc Video Extensions Nov 21, 2024 Aug 8, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 HEVC Video Extensions Remote Code Execution Vulnerability
CVE-2023-38154 1Microsoft 2Windows 10 1809 Windows Server 2019 Jan 1, 2025 Aug 8, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Kernel Elevation of Privilege Vulnerability

Previous 1...808182...116 Next