CWE-122: Heap-based Buffer Overflow

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious PDF files in Tungsten Automation Power P...

A heap-based buffer overflow vulnerability in Tungsten Automation Power PDF allows remote attackers to execute arbitrary code when a user opens a mali...

This vulnerability allows remote attackers to execute arbitrary code on systems running vulnerable versions of IrfanView by tricking users into openin...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening a malicious XCF file in IrfanView. Attackers can e...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious ECW image files in IrfanView. Attackers ...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious PSP files in IrfanView. Attackers can ga...

This vulnerability allows attackers to execute arbitrary code by tricking users into opening malicious X_B or SAT files in eDrawings. It affects users...

This CVE describes a heap-based buffer overflow vulnerability in Adobe InDesign that could allow an attacker to execute arbitrary code with the privil...

This CVE describes a heap-based buffer overflow vulnerability in Adobe InDesign that could allow an attacker to execute arbitrary code on a victim's s...

CVE-2024-49525 is a heap-based buffer overflow vulnerability in Substance3D Painter that could allow arbitrary code execution when a user opens a mali...

CVE-2024-49517 is a heap-based buffer overflow vulnerability in Substance3D Painter that could allow arbitrary code execution when a user opens a mali...

Substance3D Painter versions 10.1.0 and earlier contain a heap-based buffer overflow vulnerability that could allow attackers to execute arbitrary cod...

Adobe Illustrator versions 28.7.1 and earlier contain a heap-based buffer overflow vulnerability that could allow arbitrary code execution when a user...

This vulnerability in the X.org server allows local attackers to trigger a buffer overflow via a specially crafted payload. This could lead to denial ...

A heap-based buffer overflow vulnerability in Autodesk AutoCAD's libodxdll.dll allows attackers to execute arbitrary code by tricking users into openi...

A heap-based buffer overflow vulnerability in Autodesk AutoCAD's odxsw_dll.dll allows attackers to execute arbitrary code by tricking users into openi...

CVE-2024-45143 is a heap-based buffer overflow vulnerability in Adobe Substance3D Stager that could allow arbitrary code execution when a user opens a...

CVE-2024-45139 is a heap-based buffer overflow vulnerability in Adobe Substance3D Stager that allows arbitrary code execution when a user opens a mali...

This vulnerability in the Microsoft Windows Storage Port Driver allows an authenticated attacker to execute arbitrary code with SYSTEM privileges. It ...

This Windows kernel vulnerability allows attackers to escalate privileges from a lower-privileged account to SYSTEM-level access. It affects Windows s...

A heap-based buffer overflow vulnerability in Simcenter Femap allows attackers to execute arbitrary code by tricking users into opening malicious BDF ...

A heap buffer overflow vulnerability in Chrome's PDF renderer allows remote attackers to execute arbitrary code or cause denial of service via special...

CVE-2024-43756 is a heap-based buffer overflow vulnerability in Adobe Photoshop that could allow arbitrary code execution when a user opens a maliciou...

This vulnerability allows attackers to gain elevated privileges on Windows systems by exploiting a heap-based buffer overflow in the Kernel Streaming ...

This is a Windows kernel driver vulnerability in the Kernel Streaming Service that allows local attackers to escalate privileges from a low-privileged...

CVE-2024-41853 is a heap-based buffer overflow vulnerability in Adobe InDesign that could allow arbitrary code execution when a user opens a malicious...

This vulnerability allows remote code execution through specially crafted Excel files. Attackers can exploit this by tricking users into opening malic...

This vulnerability allows an attacker with local access to elevate privileges from user mode to kernel mode in Windows Secure Kernel. It affects Windo...

This vulnerability allows local attackers to execute arbitrary code with elevated privileges on oFono installations by exploiting a heap-based buffer ...

This heap-based buffer overflow vulnerability in oFono's SimToolKit (STK) command parser allows local attackers with initial code execution on the tar...

A heap-based buffer overflow vulnerability in Adobe InDesign allows arbitrary code execution when a user opens a malicious file. This affects users of...

A heap-based buffer overflow vulnerability in Adobe InDesign allows arbitrary code execution when a user opens a malicious file. This affects users ru...

This Windows Graphics Component vulnerability allows an authenticated attacker to execute arbitrary code with SYSTEM privileges by exploiting a heap-b...

This vulnerability in the Windows Kernel Streaming WOW Thunk Service Driver allows an authenticated attacker to execute arbitrary code with SYSTEM pri...

This vulnerability allows attackers to exploit a heap-based buffer overflow in Autodesk applications when processing malicious SLDPRT files. Attackers...

CVE-2024-30091 is a Win32k elevation of privilege vulnerability in Windows that allows an authenticated attacker to gain SYSTEM-level privileges on a ...

This vulnerability allows remote attackers to execute arbitrary code on Windows systems running Routing and Remote Access Service (RRAS) by sending sp...

This vulnerability in the Windows Cloud Files Mini Filter Driver allows an authenticated attacker to gain SYSTEM-level privileges on affected systems....

A heap-based buffer overflow vulnerability in Kofax Power PDF's PSD file parser allows remote attackers to execute arbitrary code when a user opens a ...

This vulnerability allows a low-privilege local user with the Ivanti EPM Agent installed to exploit a buffer overflow and execute arbitrary code with ...

This CVE describes a heap-based buffer overflow vulnerability in Adobe Framemaker that could allow an attacker to execute arbitrary code on a victim's...

Adobe Animate versions 24.0.2, 23.0.5 and earlier contain a heap-based buffer overflow vulnerability that could allow attackers to execute arbitrary c...

This vulnerability in the Windows Desktop Window Manager (DWM) Core Library allows an attacker to gain elevated privileges on a system, potentially en...

This is a Win32k elevation of privilege vulnerability in Windows that allows an authenticated attacker to gain SYSTEM-level privileges on a compromise...

A heap-based buffer overflow vulnerability in Solid Edge allows attackers to execute arbitrary code by tricking users into opening malicious PAR files...

A heap-based buffer overflow vulnerability in Solid Edge allows attackers to execute arbitrary code by tricking users into opening malicious PAR files...

A heap-based buffer overflow vulnerability in Bentley View's FBX file parser allows remote attackers to execute arbitrary code when users open malicio...

This vulnerability allows remote attackers to execute arbitrary code on affected Foxit PDF Reader installations by tricking users into opening malicio...

This vulnerability allows remote attackers to execute arbitrary code on vulnerable GIMP installations by tricking users into opening malicious DDS ima...

This vulnerability allows remote attackers to execute arbitrary code on systems running vulnerable versions of PDF-XChange Editor by tricking users in...