CWE-122: Heap-based Buffer Overflow

A heap-based buffer overflow vulnerability in Adobe Illustrator allows attackers to execute arbitrary code when a user opens a malicious file. This af...

A heap-based buffer overflow vulnerability in Microsoft Office Excel allows attackers to execute arbitrary code on affected systems by tricking users ...

A heap-based buffer overflow vulnerability in the Windows Kernel allows authenticated attackers to execute arbitrary code with elevated privileges. Th...

A heap-based buffer overflow vulnerability in Luxion KeyShot Viewer allows remote attackers to execute arbitrary code when users open malicious KSP fi...

A heap-based buffer overflow vulnerability in Autodesk applications allows attackers to execute arbitrary code by tricking users into opening maliciou...

A heap-based buffer overflow vulnerability in Autodesk applications allows malicious PDF files to cause crashes, data leaks, or arbitrary code executi...

Adobe Framemaker versions 2020.8, 2022.6 and earlier contain a heap-based buffer overflow vulnerability that allows arbitrary code execution when a us...

Adobe Framemaker versions 2020.8, 2022.6 and earlier contain a heap-based buffer overflow vulnerability that could allow attackers to execute arbitrar...

A heap-based buffer overflow vulnerability in Windows Bluetooth Service allows authenticated attackers to execute arbitrary code with elevated SYSTEM ...

CVE-2025-27195 is a heap-based buffer overflow vulnerability in Adobe Media Encoder that could allow arbitrary code execution when a user opens a mali...

A heap-based buffer overflow vulnerability in Adobe Photoshop allows attackers to execute arbitrary code when a user opens a malicious file. This affe...

CVE-2025-27193 is a heap-based buffer overflow vulnerability in Adobe Bridge that could allow arbitrary code execution when a user opens a malicious f...

An integer overflow vulnerability in the Windows USB Print Driver allows authenticated attackers to execute arbitrary code with elevated privileges. T...

This vulnerability allows remote attackers to execute arbitrary code on Luxion KeyShot installations by tricking users into opening malicious DAE file...

A heap-based buffer overflow vulnerability in Autodesk AutoCAD allows attackers to craft malicious MODEL files that can crash the application, leak se...

A heap-based buffer overflow vulnerability in Autodesk AutoCAD allows attackers to craft malicious MODEL files that can crash the application, leak se...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious VC6 files in Ashlar-Vellum Cobalt softwa...

CVE-2025-27173 is a heap-based buffer overflow vulnerability in Substance3D Modeler that allows arbitrary code execution when a user opens a malicious...

CVE-2025-24995 is a heap-based buffer overflow vulnerability in the Kernel Streaming WOW Thunk Service Driver that allows authenticated attackers to e...

A heap-based buffer overflow vulnerability in Windows NTFS allows local attackers to execute arbitrary code with elevated privileges. This affects Win...

An integer overflow vulnerability in the Windows Fast FAT driver allows local attackers to execute arbitrary code with elevated privileges. This affec...

A heap-based buffer overflow vulnerability in Windows Kernel-Mode Drivers allows authenticated attackers to execute arbitrary code with elevated SYSTE...

A heap-based buffer overflow vulnerability in Microsoft Streaming Service allows authenticated attackers to execute arbitrary code with elevated privi...

A heap-based buffer overflow vulnerability in Microsoft Office allows attackers to execute arbitrary code on vulnerable systems by tricking users into...

CVE-2025-24050 is a heap-based buffer overflow vulnerability in Windows Hyper-V that allows an authenticated attacker to execute arbitrary code with e...

CVE-2025-24048 is a heap-based buffer overflow vulnerability in Windows Hyper-V that allows authenticated attackers to execute arbitrary code with ele...

CVE-2025-21169 is a heap-based buffer overflow vulnerability in Substance3D Designer that could allow arbitrary code execution when a user opens a mal...

A heap-based buffer overflow vulnerability in the Windows exFAT file system driver allows local attackers to execute arbitrary code with elevated priv...

Delta Electronics CNCSoft-G2 has a heap-based buffer overflow vulnerability (CWE-122) that allows remote code execution when users visit malicious pag...

This vulnerability in Windows Ancillary Function Driver for WinSock allows attackers to gain SYSTEM-level privileges by exploiting a heap-based buffer...

Adobe InDesign has a heap-based buffer overflow vulnerability that allows arbitrary code execution when a user opens a malicious file. This affects us...

Delta Electronics CNCSoft-G2 has a heap-based buffer overflow vulnerability (CWE-122) that allows remote code execution when users visit malicious pag...

A heap-based buffer overflow vulnerability in Substance3D Designer versions 14.0 and earlier allows attackers to execute arbitrary code when a user op...

CVE-2025-21139 is a heap-based buffer overflow vulnerability in Substance3D Designer that allows arbitrary code execution when a user opens a maliciou...

A heap-based buffer overflow vulnerability in Substance3D Stager versions 3.0.4 and earlier allows attackers to execute arbitrary code with the privil...

This vulnerability allows remote attackers to execute arbitrary code on systems running vulnerable versions of Microsoft Access. Attackers can exploit...

This vulnerability in Windows CSC (Client Side Caching) Service allows local attackers to escalate privileges on affected systems. Attackers could gai...

This vulnerability in the Windows Graphics Component allows attackers to escalate privileges on affected systems. It affects Windows operating systems...

This vulnerability allows remote code execution when a user opens a specially crafted Visio file. Attackers could exploit this to run arbitrary code w...

This vulnerability allows a local authenticated attacker to escalate privileges on Windows Hyper-V hosts by exploiting a heap-based buffer overflow in...

This vulnerability allows remote attackers to execute arbitrary code on systems running vulnerable versions of Microsoft Access. Attackers could explo...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious VC6 files in Ashlar-Vellum Graphite. Att...

A heap-based buffer overflow vulnerability in Autodesk Navisworks allows attackers to craft malicious DWFX files that can crash the application, leak ...

A heap-based buffer overflow vulnerability in Substance3D Painter allows attackers to execute arbitrary code when a user opens a malicious file. This ...

CVE-2024-52999 is a heap-based buffer overflow vulnerability in Substance3D Modeler that allows arbitrary code execution when a user opens a malicious...

CVE-2024-52995 is a heap-based buffer overflow vulnerability in Adobe Substance3D Sampler that allows arbitrary code execution when a user opens a mal...

This CVE describes a heap-based buffer overflow vulnerability in Adobe InDesign that could allow an attacker to execute arbitrary code on the victim's...

A heap-based buffer overflow vulnerability in Solid Edge SE2024 allows attackers to execute arbitrary code by tricking users into opening malicious PA...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious SKP files in Trimble SketchUp Viewer. At...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious PDF files in Tungsten Automation Power P...