Heap-based Buffer Overflow

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

CVEs (2,316)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2026-3994 - - Apr 29, 2026 Mar 12, 2026 1.9 LOW· v4 5.3 MEDIUM· v3 4.3 MEDIUM· v2 A vulnerability was detected in rui314 mold up to 2.40.4. This issue affects the function mold::ObjectFilemold::X86_64::initialize_sections of the file src/input-files.cc of the component Object File Handler. Performing...Show more A vulnerability was detected in rui314 mold up to 2.40.4. This issue affects the function mold::ObjectFilemold::X86_64::initialize_sections of the file src/input-files.cc of the component Object File Handler. Performing a manipulation results in heap-based buffer overflow. Attacking locally is a requirement. The exploit is now public and may be used. The project was informed of the problem early through an issue report but has not responded yet.Show less
CVE-2026-3931 1Google 1Chrome Mar 13, 2026 Mar 11, 2026 N/A· v4 8.8 HIGH· v3 N/A· v2 Heap buffer overflow in Skia in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to perform out of bounds memory access via a crafted HTML page. (Chromium security severity: Medium)
CVE-2026-3915 1Google 1Chrome Mar 13, 2026 Mar 11, 2026 N/A· v4 8.8 HIGH· v3 N/A· v2 Heap buffer overflow in WebML in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. (Chromium security severity: High)
CVE-2026-3913 1Google 1Chrome Mar 13, 2026 Mar 11, 2026 N/A· v4 8.8 HIGH· v3 N/A· v2 Heap buffer overflow in WebML in Google Chrome prior to 146.0.7680.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)
CVE-2026-1652 - - Mar 12, 2026 Mar 11, 2026 6.9 MEDIUM· v4 6.1 MEDIUM· v3 N/A· v2 A potential buffer overflow vulnerability was reported in the Lenovo Virtual Bus driver used in Smart Connect that could allow a local authenticated user to corrupt memory and cause a Windows blue screen error.
CVE-2026-31853 1Imagemagick 1Imagemagick Mar 17, 2026 Mar 11, 2026 N/A· v4 5.5 MEDIUM· v3 N/A· v2 ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-16 and 6.9.13-41, an overflow on 32-bit systems can cause a crash in the SFW decoder when processing extremely...Show more ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-16 and 6.9.13-41, an overflow on 32-bit systems can cause a crash in the SFW decoder when processing extremely large images. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41.Show less
CVE-2026-27271 1Adobe 1Illustrator Mar 11, 2026 Mar 10, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Illustrator versions 29.8.4, 30.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requir...Show more Illustrator versions 29.8.4, 30.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2026-3845 1Mozilla 1Firefox Apr 13, 2026 Mar 10, 2026 N/A· v4 8.8 HIGH· v3 N/A· v2 Heap buffer overflow in the Audio/Video: Playback component in Firefox for Android. This vulnerability was fixed in Firefox 148.0.2.
CVE-2026-31796 1Color 1Iccdev Mar 13, 2026 Mar 10, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a heap-based buffer overflow in icCurvesFromXml() causing heap memory corruption or crash. This vuln...Show more iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a heap-based buffer overflow in icCurvesFromXml() causing heap memory corruption or crash. This vulnerability is fixed in 2.3.1.5.Show less
CVE-2026-30985 1Color 1Iccdev Mar 13, 2026 Mar 10, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a heap-based buffer overflow write in CIccMatrixMath::SetRange() causing memory corruption or crash....Show more iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a heap-based buffer overflow write in CIccMatrixMath::SetRange() causing memory corruption or crash. This vulnerability is fixed in 2.3.1.5.Show less
CVE-2026-30982 1Color 1Iccdev Mar 13, 2026 Mar 10, 2026 N/A· v4 6.1 MEDIUM· v3 N/A· v2 iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a heap out-of-bounds read in CIccPcsXform::pushXYZConvert() causing crash and potentially leaking me...Show more iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a heap out-of-bounds read in CIccPcsXform::pushXYZConvert() causing crash and potentially leaking memory contents. This vulnerability is fixed in 2.3.1.5.Show less
CVE-2026-30979 1Color 1Iccdev Mar 13, 2026 Mar 10, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a heap-based buffer overflow in CIccCalculatorFunc::InitSelectOp() triggered with local user interac...Show more iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to 2.3.1.5, there is a heap-based buffer overflow in CIccCalculatorFunc::InitSelectOp() triggered with local user interaction causing memory corruption/crash. This vulnerability is fixed in 2.3.1.5.Show less
CVE-2026-26111 1Microsoft 5Windows Server 2012 Windows Server 2016Windows Server 2019+2 more Mar 13, 2026 Mar 10, 2026 N/A· v4 8.0 HIGH· v3 N/A· v2 Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.
CVE-2026-26108 1Microsoft 5365 Apps ExcelOffice+2 more Mar 13, 2026 Mar 10, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-25188 1Microsoft 14Windows 10 1607 Windows 10 1809Windows 10 21h2+11 more Mar 13, 2026 Mar 10, 2026 N/A· v4 8.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to elevate privileges over an adjacent network.
CVE-2026-25173 1Microsoft 14Windows 10 1607 Windows 10 1809Windows 10 21h2+11 more Mar 13, 2026 Mar 10, 2026 N/A· v4 8.0 HIGH· v3 N/A· v2 Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.
CVE-2026-25172 1Microsoft 6Windows Server 2012 Windows Server 2016Windows Server 2019+3 more Mar 13, 2026 Mar 10, 2026 N/A· v4 8.0 HIGH· v3 N/A· v2 Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.
CVE-2026-24288 1Microsoft 2Windows 10 21h2 Windows 10 22h2 Mar 13, 2026 Mar 10, 2026 N/A· v4 6.8 MEDIUM· v3 N/A· v2 Heap-based buffer overflow in Windows Mobile Broadband allows an unauthorized attacker to execute code with a physical attack.
CVE-2026-24283 1Microsoft 5Windows 11 24h2 Windows 11 25h2Windows 11 26h1+2 more Mar 13, 2026 Mar 10, 2026 N/A· v4 8.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Windows File Server allows an authorized attacker to elevate privileges locally.
CVE-2026-23665 2Microsof Microsoft 2Linux Diagnostic Extension Linux Diagnostic Extension Mar 20, 2026 Mar 10, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Azure Linux Virtual Machines allows an authorized attacker to elevate privileges locally.

Previous 1...161718...116 Next