CWE-122: Heap-based Buffer Overflow

This vulnerability allows remote attackers to execute arbitrary code on systems running vulnerable versions of PDF-XChange Editor by tricking users in...

This is a heap-based buffer overflow vulnerability in PDF-XChange Editor's PDF file parsing functionality. Attackers can execute arbitrary code by tri...

A heap-based buffer overflow vulnerability in Kofax Power PDF allows remote attackers to execute arbitrary code when users open malicious PDF files. T...

A heap-based buffer overflow vulnerability in PDF-XChange Editor allows remote attackers to execute arbitrary code when users open malicious PDF files...

A heap-based buffer overflow vulnerability in PDF-XChange Editor's OXPS file parser allows remote attackers to execute arbitrary code when users open ...

A heap-based buffer overflow vulnerability in Kofax Power PDF's BMP file parser allows remote attackers to execute arbitrary code when a user opens a ...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious CO files in Ashlar-Vellum Cobalt. Attack...

This is a heap-based buffer overflow vulnerability in Ashlar-Vellum Cobalt's AR file parser that allows remote code execution. Attackers can exploit i...

A buffer overflow vulnerability in FFmpeg's stereowiden audio filter allows local attackers to execute arbitrary code by providing specially crafted a...

CVE-2024-26256 is a heap-based buffer overflow vulnerability in Libarchive that allows remote attackers to execute arbitrary code by crafting maliciou...

This vulnerability in the Windows Client Side Caching (CSC) service allows an authenticated attacker to execute arbitrary code with SYSTEM privileges....

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious PDF files in Kofax Power PDF. Attackers ...

Multiple memory corruption vulnerabilities in SOLIDWORKS Desktop 2024 allow arbitrary code execution when opening malicious CAD files. Attackers can e...

A heap-based buffer overflow vulnerability in Adobe Premiere Pro allows attackers to execute arbitrary code when a user opens a malicious file. This a...

A heap-based buffer overflow vulnerability in CImg library versions before 3.3.3 allows attackers to execute arbitrary code or cause denial of service...

This Windows kernel vulnerability allows an authenticated attacker to execute arbitrary code with SYSTEM privileges by exploiting a heap-based buffer ...

CVE-2024-21330 is an elevation of privilege vulnerability in Microsoft's Open Management Infrastructure (OMI) that allows authenticated attackers to e...

Multiple memory corruption vulnerabilities in eDrawings (SOLIDWORKS 2023-2024) allow arbitrary code execution when opening malicious CAD files. Attack...

This vulnerability in X.Org server allows heap buffer overflow when processing device hierarchy events. It can lead to application crashes or remote c...

CVE-2023-21740 is a heap-based buffer overflow vulnerability in Windows Media components that allows remote code execution. An attacker could exploit ...

This heap-based buffer overflow vulnerability in Adobe Premiere Pro allows attackers to execute arbitrary code when a user opens a malicious file. The...

A heap-based buffer overflow vulnerability in Adobe Media Encoder allows attackers to execute arbitrary code when a user opens a malicious file. This ...

This vulnerability allows remote attackers to execute arbitrary code on systems using Microsoft's WDAC ODBC Driver by exploiting a heap-based buffer o...

This vulnerability in libX11's XCreateImage() function allows local users to trigger an integer overflow, potentially leading to arbitrary code execut...

CVE-2023-4911 is a buffer overflow vulnerability in the GNU C Library's dynamic loader (ld.so) that allows local attackers to exploit SUID binaries. B...

This vulnerability in the Windows Common Log File System (CLFS) driver allows attackers to gain SYSTEM-level privileges on affected systems. It affect...

This vulnerability allows remote code execution in Visual Studio when processing specially crafted files. Attackers could exploit this to run arbitrar...

CVE-2023-36770 is a heap-based buffer overflow vulnerability in Microsoft 3D Builder that allows remote code execution when processing specially craft...

CVE-2023-36772 is a heap-based buffer overflow vulnerability in Microsoft 3D Builder that allows remote code execution when processing specially craft...

CVE-2023-36739 is a heap-based buffer overflow vulnerability in Microsoft 3D Viewer that allows remote code execution when a user opens a specially cr...

This vulnerability allows remote code execution through heap-based buffer overflow when parsing malicious WRL files in Siemens JT2Go, Teamcenter Visua...

CVE-2023-4751 is a heap-based buffer overflow vulnerability in Vim text editor versions prior to 9.0.1331. Attackers can exploit this by tricking user...

This Windows kernel vulnerability allows local attackers to escalate privileges by exploiting memory corruption in the recovery process. It affects Wi...

This vulnerability allows remote code execution when a user opens a specially crafted Visio file. Attackers can exploit this to run arbitrary code wit...

This vulnerability in Paint 3D allows remote attackers to execute arbitrary code on affected systems by tricking users into opening specially crafted ...

This Windows kernel vulnerability allows attackers to elevate privileges from a lower-privileged account to SYSTEM-level access. It affects Windows op...

This is a Win32k elevation of privilege vulnerability in Windows that allows an authenticated attacker to execute arbitrary code with SYSTEM privilege...

This Windows kernel vulnerability allows attackers to escalate privileges from a lower-privileged account to SYSTEM-level access. It affects Windows o...

This vulnerability allows attackers to execute arbitrary code by exploiting a heap-based buffer overflow when parsing malicious PRT files in Tecnomati...

A heap buffer overflow vulnerability in sox's lsx_readbuf function allows attackers to write beyond allocated memory boundaries. This can lead to deni...

A heap buffer overflow vulnerability in sox's hcom.c file allows attackers to write beyond allocated memory boundaries. This can lead to denial of ser...

A heap-based buffer overflow vulnerability in Diagon's Sequence::DrawText function allows arbitrary code execution when processing malicious markdown ...

This vulnerability in Microsoft ODBC Driver for SQL Server allows remote attackers to execute arbitrary code by sending specially crafted requests to ...

This vulnerability in Microsoft SQL OLE DB allows authenticated attackers to execute arbitrary code on affected SQL Server instances by sending specia...

CVE-2023-33146 is a heap-based buffer overflow vulnerability in Microsoft Office that allows remote code execution when a user opens a specially craft...

CVE-2023-33133 is a heap-based buffer overflow vulnerability in Microsoft Excel that allows remote code execution when a user opens a specially crafte...

CVE-2023-29370 is a heap-based buffer overflow vulnerability in Windows Media components that allows remote code execution. An attacker could exploit ...

Delta Electronics CNCSoft-B DOPSoft versions 1.0.0.4 and prior contain a heap-based buffer overflow vulnerability that could allow remote attackers to...

This vulnerability allows remote code execution through specially crafted Office documents. Attackers can exploit it by tricking users into opening ma...

Adobe Substance 3D Designer versions 12.4.0 and earlier contain a heap-based buffer overflow vulnerability that allows attackers to execute arbitrary ...