CWE-122: Heap-based Buffer Overflow

This vulnerability in Microsoft OLE DB Driver for SQL Server allows remote attackers to execute arbitrary code on affected systems by sending speciall...

This vulnerability in Microsoft OLE DB Driver for SQL Server allows remote attackers to execute arbitrary code on affected systems by sending speciall...

This vulnerability in Microsoft WDAC SQL Server ODBC Driver allows remote attackers to execute arbitrary code on affected systems by sending specially...

This vulnerability allows remote attackers to execute arbitrary code on systems running Microsoft WDAC OLE DB provider for SQL Server. Attackers can e...

This vulnerability allows remote attackers to execute arbitrary code on Windows systems running the Routing and Remote Access Service (RRAS) without a...

This vulnerability allows remote attackers to execute arbitrary code on Windows systems running Routing and Remote Access Service (RRAS) without authe...

This vulnerability in Microsoft WDAC OLE DB provider for SQL Server allows remote attackers to execute arbitrary code on affected systems by sending s...

This vulnerability in Microsoft's WDAC OLE DB provider for SQL Server allows remote attackers to execute arbitrary code on affected systems by sending...

This vulnerability in Microsoft ODBC Driver allows remote attackers to execute arbitrary code by sending specially crafted requests to affected system...

A heap-based buffer overflow vulnerability in the GGUF library's info->ne functionality of llama.cpp allows remote code execution when processing mali...

This vulnerability in Microsoft's WDAC OLE DB provider for SQL Server allows remote attackers to execute arbitrary code on affected systems by sending...

This vulnerability in Microsoft's WDAC OLE DB provider for SQL Server allows remote attackers to execute arbitrary code on affected systems by sending...

This vulnerability allows remote code execution through the Microsoft WDAC OLE DB provider for SQL Server. An attacker could exploit this by sending s...

This vulnerability in Microsoft's WDAC OLE DB provider for SQL Server allows remote attackers to execute arbitrary code on affected systems by sending...

This vulnerability in Microsoft's WDAC OLE DB provider for SQL Server allows remote attackers to execute arbitrary code on affected systems by sending...

This vulnerability allows remote attackers to execute arbitrary code on systems running Microsoft's WDAC ODBC Driver. Attackers can exploit this heap-...

This Windows kernel vulnerability allows attackers to escalate privileges from a lower-privileged account to SYSTEM-level access. It affects Windows s...

This vulnerability allows remote code execution through Microsoft ActiveX Data Objects (ADO) when an attacker sends specially crafted requests to an a...

This vulnerability allows remote attackers to execute arbitrary code on systems with Internet Connection Sharing (ICS) enabled by sending specially cr...

This vulnerability allows remote attackers to execute arbitrary code on systems using Microsoft PostScript and PCL6 Class Printer Drivers. Attackers c...

This vulnerability in Microsoft's WDAC OLE DB provider for SQL Server allows remote attackers to execute arbitrary code on affected systems by sending...

This vulnerability allows remote attackers to execute arbitrary code on systems using vulnerable Microsoft PostScript and PCL6 printer drivers. Attack...

This vulnerability allows remote attackers to execute arbitrary code on systems using Microsoft PostScript and PCL6 Class Printer Drivers. Attackers c...

This vulnerability allows remote attackers to execute arbitrary code on affected systems by exploiting a heap-based buffer overflow in Microsoft PostS...

This vulnerability allows remote code execution through Microsoft PostScript and PCL6 printer drivers. An attacker could exploit this by sending speci...

This vulnerability allows remote attackers to execute arbitrary code on systems using Microsoft PostScript and PCL6 Class Printer Drivers. An attacker...

CVE-2022-32137 is a heap-based buffer overflow vulnerability in multiple CODESYS products that allows low-privileged remote attackers to cause denial-...

A heap-based buffer overflow vulnerability in libsox's sphere.c start_read() function allows attackers to execute arbitrary code or cause denial of se...

CVE-2021-43304 is a heap buffer overflow vulnerability in ClickHouse's LZ4 compression codec that allows attackers to execute arbitrary code or cause ...

This CVE describes a heap-based buffer overflow vulnerability in Adobe Acrobat Reader DC's PDFLibTool component. An unauthenticated attacker can execu...

This heap-based buffer overflow vulnerability in Adobe Acrobat Reader DC allows an unauthenticated attacker to execute arbitrary code on a victim's sy...

This is a heap-based buffer overflow vulnerability in Netatalk's DSI structure processing that allows unauthenticated attackers on the same network to...

This is a heap-based buffer overflow vulnerability in Parallels Desktop's Open Tools Gate component that allows local attackers to escalate privileges...

This vulnerability allows network-adjacent attackers to bypass authentication and execute arbitrary code with root privileges on NETGEAR Nighthawk R78...

A heap overflow vulnerability in Accusoft ImageGear's GIF parser allows arbitrary code execution when processing specially crafted GIF files. This aff...

This vulnerability allows remote code execution through specially crafted PCX files in Siemens JT2Go and Teamcenter Visualization software. Attackers ...

This vulnerability allows remote code execution via specially crafted JT files in Siemens JT2Go and Teamcenter Visualization software. Attackers can e...

A heap buffer overflow vulnerability in NASA CryptoLib versions 1.4.0 and prior allows attackers to corrupt heap memory by sending specially crafted t...

An unauthenticated remote attacker can send a crafted DHCP request packet to cause Cisco IOS XE devices with DHCP snooping and endpoint analytics enab...

CVE-2021-38439 is a heap-based buffer overflow vulnerability in GurumDDS that could allow attackers to cause denial-of-service or execute arbitrary co...

A heap buffer overflow vulnerability exists in the ARK library from Bandisoft when the Ark_DigPathA function processes file paths without proper lengt...

Adobe Photoshop versions 22.1 and earlier contain a heap buffer overflow vulnerability when processing malicious font files. Successful exploitation a...

A buffer overflow vulnerability in some Zoom Apps allows authenticated users to escalate privileges through network access. This affects Zoom Apps use...

A buffer overflow vulnerability in Zoom Workplace Apps and Rooms Clients allows authenticated users to escalate privileges through network access. Thi...

A heap-based buffer overflow vulnerability in Cisco ASA's Clientless SSL VPN portal allows authenticated remote attackers to cause denial of service o...

A heap buffer overflow vulnerability in Pepper language compiler allows arbitrary code execution or denial of service when processing malicious .pr so...

This vulnerability allows an attacker to read memory outside the intended buffer in Microsoft Office applications, potentially leading to local code e...

A heap-based buffer overflow vulnerability in Microsoft Office Word allows attackers to execute arbitrary code on vulnerable systems by tricking users...

A heap-based buffer overflow vulnerability in Microsoft Office allows attackers to execute arbitrary code on affected systems by tricking users into o...

A heap buffer overflow vulnerability in Perl's tr operator when processing non-ASCII characters allows attackers to crash applications or potentially ...