Heap-based Buffer Overflow

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

CVEs (2,312)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2025-29811 1Microsoft 5Windows 11 22h2 Windows 11 23h2Windows 11 24h2+2 more Jul 10, 2025 Apr 8, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Improper input validation in Windows Mobile Broadband allows an authorized attacker to elevate privileges locally.
CVE-2025-27752 1Microsoft 3365 Apps OfficeOffice Long Term Servicing Channel Jul 9, 2025 Apr 8, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2025-27490 1Microsoft 8Windows 10 21h2 Windows 10 22h2Windows 11 22h2+5 more Jul 8, 2025 Apr 8, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally.
CVE-2025-27487 1Microsoft 17Remote Desktop Client Windows 10 1507Windows 10 1607+14 more Jul 7, 2025 Apr 8, 2025 N/A· v4 8.0 HIGH· v3 N/A· v2 Heap-based buffer overflow in Remote Desktop Client allows an authorized attacker to execute code over a network.
CVE-2025-27478 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Jul 8, 2025 Apr 8, 2025 N/A· v4 7.0 HIGH· v3 N/A· v2 Heap-based buffer overflow in Windows Local Security Authority (LSA) allows an authorized attacker to elevate privileges locally.
CVE-2025-27477 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Jul 8, 2025 Apr 8, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.
CVE-2025-27199 1Adobe 1Animate Apr 18, 2025 Apr 8, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Animate versions 24.0.7, 23.0.10 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue require...Show more Animate versions 24.0.7, 23.0.10 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2025-27198 1Adobe 1Photoshop May 5, 2025 Apr 8, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Photoshop Desktop versions 25.12.1, 26.4.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this iss...Show more Photoshop Desktop versions 25.12.1, 26.4.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2025-27196 1Adobe 1Premiere Pro May 5, 2025 Apr 8, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Premiere Pro versions 25.1, 24.6.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requi...Show more Premiere Pro versions 25.1, 24.6.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2025-27195 1Adobe 1Media Encoder May 5, 2025 Apr 8, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Media Encoder versions 25.1, 24.6.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requ...Show more Media Encoder versions 25.1, 24.6.4 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2025-27193 1Adobe 1Bridge May 5, 2025 Apr 8, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Bridge versions 14.1.5, 15.0.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires...Show more Bridge versions 14.1.5, 15.0.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2025-26674 1Microsoft 10Windows 10 1809 Windows 10 21h2Windows 10 22h2+7 more Jul 9, 2025 Apr 8, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Windows Media allows an authorized attacker to execute code locally.
CVE-2025-26668 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Jul 9, 2025 Apr 8, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
CVE-2025-26666 1Microsoft 10Windows 10 1809 Windows 10 21h2Windows 10 22h2+7 more Jul 9, 2025 Apr 8, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Windows Media allows an authorized attacker to execute code locally.
CVE-2025-26639 1Microsoft 8Windows 10 21h2 Windows 10 22h2Windows 11 22h2+5 more Jul 3, 2025 Apr 8, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Integer overflow or wraparound in Windows USB Print Driver allows an authorized attacker to elevate privileges locally.
CVE-2025-21222 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Jul 3, 2025 Apr 8, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.
CVE-2025-21221 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Jul 10, 2025 Apr 8, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.
CVE-2025-21205 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Jul 10, 2025 Apr 8, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Windows Telephony Service allows an unauthorized attacker to execute code over a network.
CVE-2025-29769 2Debian Libvips 2Debian Linux Libvips Oct 9, 2025 Apr 7, 2025 8.5 HIGH· v4 5.5 MEDIUM· v3 N/A· v2 libvips is a demand-driven, horizontally threaded image processing library. The heifsave operation could incorrectly determine the presence of an alpha channel in an input when it was not possible to determine the colou...Show more libvips is a demand-driven, horizontally threaded image processing library. The heifsave operation could incorrectly determine the presence of an alpha channel in an input when it was not possible to determine the colour interpretation, known internally within libvips as "multiband". There aren't many ways to create a "multiband" input, but it is possible with a well-crafted TIFF image. If a "multiband" TIFF input image had 4 channels and HEIF-based output was requested, this led to libvips creating a 3 channel HEIF image without an alpha channel but then attempting to write 4 channels of data. This caused a heap buffer overflow, which could crash the process. This vulnerability is fixed in 8.16.1.Show less
CVE-2025-3159 1Assimp 1Assimp Jul 17, 2025 Apr 3, 2025 4.8 MEDIUM· v4 7.8 HIGH· v3 4.3 MEDIUM· v2 A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. This affects the function Assimp::ASE::Parser::ParseLV4MeshBonesVertices of the file code/AssetLib/ASE/ASEParser.cpp...Show more A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. This affects the function Assimp::ASE::Parser::ParseLV4MeshBonesVertices of the file code/AssetLib/ASE/ASEParser.cpp of the component ASE File Handler. The manipulation leads to heap-based buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The identifier of the patch is e8a6286542924e628e02749c4f5ac4f91fdae71b. It is recommended to apply a patch to fix this issue.Show less

Previous 1...434445...116 Next