CWE-122 · Heap-based Buffer Overflow

2350 CVEs classified under CWE-122 (Heap-based Buffer Overflow). Browse by severity and year.

Top CVEs for CWE-122
CVESeverityScorePublishedSummary
CVE-2025-23123Critical10.02025-05-19A malicious actor with access to the management network could execute a remote code execution (RCE) by exploiting a heap buffer overflow vulnerability in the U…
CVE-2023-45318Critical10.02024-02-20A heap-based buffer overflow vulnerability exists in the HTTP Server functionality of Weston Embedded uC-HTTP git commit 80d4004. A specially crafted network p…
CVE-2022-34819Critical10.02022-07-12A vulnerability has been identified in SIMATIC CP 1242-7 V2 (All versions < V3.3.46), SIMATIC CP 1243-1 (All versions < V3.3.46), SIMATIC CP 1243-7 LTE EU (All…
CVE-2021-21940Critical10.02021-10-12A heap-based buffer overflow vulnerability exists in the pushMuxer processRtspInfo functionality of Anker Eufy Homebase 2 2.1.6.9h. A specially-crafted network…
CVE-2021-34770Critical10.02021-09-23A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software for Cisco Catalyst 9000 Family…
CVE-2026-44050Critical9.92026-05-21A heap-based buffer overflow in the CNID daemon comm_rcv() function in Netatalk 2.0.0 through 4.4.2 allows a remote authenticated attacker to execute arbitrary…
CVE-2026-49841Critical9.82026-06-09FreeSWITCH is a Software Defined Telecom Stack enabling the digital transformation from proprietary telecom switches to a software implementation that runs on…
CVE-2026-47291Critical9.82026-06-09Integer overflow or wraparound in Windows HTTP.sys allows an unauthorized attacker to execute code over a network.
CVE-2026-45657Critical9.82026-06-09Use after free in Windows Kernel allows an unauthorized attacker to execute code over a network.
CVE-2026-8175Critical9.82026-05-27IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera…
CVE-2026-48689Critical9.82026-05-26FastNetMon Community Edition through 1.2.9 contains an off-by-one heap-based buffer overflow in the dynamic_binary_buffer_t class (src/dynamic_binary_buffer.hp…
CVE-2026-48691Critical9.82026-05-26FastNetMon Community Edition through 1.2.9 contains an integer overflow in the BGP AS_PATH attribute encoder. In src/bgp_protocol.hpp, the IPv4UnicastAnnounce…
CVE-2026-8631Critical9.82026-05-20A potential security vulnerability has been identified in the HP Linux Imaging and Printing Software. This potential vulnerability may allow escalation of priv…
CVE-2026-41096Critical9.82026-05-12Heap-based buffer overflow in Microsoft Windows DNS allows an unauthorized attacker to execute code over a network.
CVE-2026-41509Critical9.82026-05-08CROSS implementation contains reference and optimized implementations of the CROSS post-quantum signature algorithm. Prior to commit fc6b7e7, there is a buffer…
CVE-2026-28780Critical9.82026-05-05Heap-based Buffer Overflow vulnerability in mod_proxy_ajp of Apache HTTP Server. If mod_proxy_ajp connects to a malicious AJP server this AJP server can send a…
CVE-2025-70067Critical9.82026-05-04Buffer Overflow vulnerability exists in Assimp versions up to 6.0.2 in the FBX Importer. The vulnerability occurs in aiMaterial::AddBinaryProperty, where a pro…
CVE-2026-42483Critical9.82026-05-01A heap-based buffer overflow in the Kerberos hash parser in hashcat v7.1.2 allows an attacker to cause a denial of service or possibly execute arbitrary code v…
CVE-2026-5450Critical9.82026-04-20Calling the scanf family of functions with a %mc (malloc'd character match) in the GNU C Library version 2.7 to version 2.43 with a format width specifier with…
CVE-2026-32956Critical9.82026-04-20SD-330AC and AMC Manager provided by silex technology, Inc. contain a heap-based buffer overflow vulnerability in processing the redirect URLs. Arbitrary code…