Heap-based Buffer Overflow

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

CVEs (2,307)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-31276 - - Feb 12, 2025 Feb 12, 2025 8.4 HIGH· v4 8.2 HIGH· v3 N/A· v2 Heap-based buffer overflow in BMC Firmware for the Intel(R) Server Board S2600WF, Intel(R) Server Board S2600ST, Intel(R) Server Board S2600BP, before version 02.01.0017 and Intel(R) Server Board M50CYP and Intel(R) Serv...Show more Heap-based buffer overflow in BMC Firmware for the Intel(R) Server Board S2600WF, Intel(R) Server Board S2600ST, Intel(R) Server Board S2600BP, before version 02.01.0017 and Intel(R) Server Board M50CYP and Intel(R) Server Board D50TNP before version R01.01.0009 may allow a privileged user to enable escalation of privilege via local access.Show less
CVE-2024-0145 - - Feb 12, 2025 Feb 12, 2025 N/A· v4 6.8 MEDIUM· v3 N/A· v2 NVIDIA nvJPEG2000 library contains a vulnerability where an attacker can cause a heap-based buffer overflow issue by means of a specially crafted JPEG2000 file. A successful exploit of this vulnerability might lead to co...Show more NVIDIA nvJPEG2000 library contains a vulnerability where an attacker can cause a heap-based buffer overflow issue by means of a specially crafted JPEG2000 file. A successful exploit of this vulnerability might lead to code execution and data tampering.Show less
CVE-2025-1052 1Mintty Project 1Mintty Feb 18, 2025 Feb 11, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Mintty Sixel Image Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Mintty. User interaction is req...Show more Mintty Sixel Image Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Mintty. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of sixel images. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current user. Was ZDI-CAN-23382.Show less
CVE-2025-0903 1Pdf Xchange 1Pdf Xchange Editor Feb 12, 2025 Feb 11, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 PDF-XChange Editor RTF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. Us...Show more PDF-XChange Editor RTF File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of RTF files. The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length heap-based buffer. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-25421.Show less
CVE-2025-21418 1Microsoft 14Windows 10 1607 Windows 10 1809Windows 10 21h2+11 more Oct 27, 2025 Feb 11, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
CVE-2025-21414 1Microsoft 13Windows 10 1507 Windows 10 1607Windows 10 1809+10 more Feb 14, 2025 Feb 11, 2025 N/A· v4 7.0 HIGH· v3 N/A· v2 Windows Core Messaging Elevation of Privileges Vulnerability
CVE-2025-21410 1Microsoft 7Windows Server 2008 Windows Server 2012Windows Server 2016+4 more Feb 14, 2025 Feb 11, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
CVE-2025-21407 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Feb 14, 2025 Feb 11, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-21390 1Microsoft 5365 Apps ExcelOffice+2 more Jul 1, 2025 Feb 11, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Microsoft Excel Remote Code Execution Vulnerability
CVE-2025-21376 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Feb 26, 2025 Feb 11, 2025 N/A· v4 8.1 HIGH· v3 N/A· v2 Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
CVE-2025-21375 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Feb 26, 2025 Feb 11, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
CVE-2025-21371 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Mar 3, 2025 Feb 11, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-21369 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Feb 26, 2025 Feb 11, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Microsoft Digest Authentication Remote Code Execution Vulnerability
CVE-2025-21368 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Feb 26, 2025 Feb 11, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Microsoft Digest Authentication Remote Code Execution Vulnerability
CVE-2025-21208 1Microsoft 7Windows Server 2008 Windows Server 2012Windows Server 2016+4 more Feb 28, 2025 Feb 11, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
CVE-2025-21200 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Feb 28, 2025 Feb 11, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-21190 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Feb 28, 2025 Feb 11, 2025 N/A· v4 8.8 HIGH· v3 N/A· v2 Windows Telephony Service Remote Code Execution Vulnerability
CVE-2025-21184 1Microsoft 13Windows 10 1507 Windows 10 1607Windows 10 1809+10 more Feb 28, 2025 Feb 11, 2025 N/A· v4 7.0 HIGH· v3 N/A· v2 Windows Core Messaging Elevation of Privileges Vulnerability
CVE-2025-21123 1Adobe 1Indesign Mar 3, 2025 Feb 11, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this iss...Show more InDesign Desktop versions ID20.0, ID19.5.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2025-1176 1Gnu 1Binutils Apr 11, 2025 Feb 11, 2025 2.3 LOW· v4 5.0 MEDIUM· v3 5.1 MEDIUM· v2 A vulnerability was found in GNU Binutils 2.43 and classified as critical. This issue affects the function _bfd_elf_gc_mark_rsec of the file elflink.c of the component ld. The manipulation leads to heap-based buffer over...Show more A vulnerability was found in GNU Binutils 2.43 and classified as critical. This issue affects the function _bfd_elf_gc_mark_rsec of the file elflink.c of the component ld. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The complexity of an attack is rather high. The exploitation is known to be difficult. The exploit has been disclosed to the public and may be used. The patch is named f9978defb6fab0bd8583942d97c112b0932ac814. It is recommended to apply a patch to fix this issue.Show less

Previous 1...474849...116 Next