CWE-122: Heap-based Buffer Overflow

A heap-based buffer overflow vulnerability in Microsoft Office Excel allows attackers to execute arbitrary code on a victim's system by tricking them ...

Adobe Illustrator on iPad versions 3.0.9 and earlier contain a heap-based buffer overflow vulnerability that could allow attackers to execute arbitrar...

Adobe Illustrator on iPad versions 3.0.9 and earlier contain a heap-based buffer overflow vulnerability that could allow attackers to execute arbitrar...

A heap-based buffer overflow vulnerability in Photoshop Desktop allows attackers to execute arbitrary code when a user opens a malicious file. This af...

A heap-based buffer overflow vulnerability in Adobe Illustrator allows attackers to execute arbitrary code when a user opens a malicious file. This af...

A heap-based buffer overflow vulnerability in Windows OLE (Object Linking and Embedding) allows local attackers to execute arbitrary code on affected ...

A heap-based buffer overflow vulnerability in Adobe InCopy allows arbitrary code execution when a user opens a malicious file. This affects users of I...

A heap-based buffer overflow vulnerability in Adobe InDesign allows attackers to execute arbitrary code when a user opens a malicious file. This affec...

A heap-based buffer overflow vulnerability in Adobe InDesign allows attackers to execute arbitrary code when a user opens a malicious file. This affec...

This vulnerability allows attackers to execute arbitrary code by tricking users into opening malicious PRT files in affected Autodesk products. Users ...

This CVE describes a buffer overflow vulnerability in MediaTek's wlan AP driver where improper bounds checking allows out-of-bounds writes. An attacke...

This CVE describes a heap-based buffer overflow vulnerability in MediaTek's WLAN AP driver. An attacker with local user privileges can exploit this to...

This CVE describes a heap-based buffer overflow vulnerability in MediaTek's WLAN STA driver. An attacker with local user privileges can exploit this t...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious XWD image files in GIMP. The heap-based ...

A heap-based buffer overflow vulnerability in GIMP's HDR file parser allows remote attackers to execute arbitrary code when users open malicious HDR f...

CVE-2025-54268 is a heap-based buffer overflow vulnerability in Adobe Bridge that could allow arbitrary code execution when a user opens a malicious f...

This vulnerability is a heap-based buffer overflow in the Windows Desktop Window Manager (DWM) Core Library that allows an authenticated attacker to e...

A heap-based buffer overflow vulnerability in the Connected Devices Platform Service (Cdpsvc) allows authenticated attackers to execute arbitrary code...

This vulnerability allows remote attackers to execute arbitrary code by tricking users into opening malicious VC6 files in Ashlar-Vellum Graphite. Att...

A heap-based buffer overflow vulnerability in Autodesk products allows malicious PDF files to cause crashes, leak sensitive data, or execute arbitrary...

A heap-based buffer overflow vulnerability in Microsoft Office Excel allows attackers to execute arbitrary code on affected systems by tricking users ...

This vulnerability allows a local authenticated attacker to elevate privileges on Windows systems by exploiting a heap-based buffer overflow in the Lo...

An integer overflow vulnerability in Windows Hyper-V allows authenticated attackers to escalate privileges on the local system. This affects Windows s...

CVE-2025-26455 is a heap buffer overflow vulnerability in Android's NDK MediaCodec component that allows local privilege escalation without user inter...

This CVE describes a heap buffer overflow vulnerability in the ConvertReductionOp function of darwinn_mlir_converter_aidl.cc that allows local privile...

A heap-based buffer overflow vulnerability in Realtek RTL8811AU wireless driver allows local attackers to escalate privileges from low-privileged user...

A heap-based buffer overflow vulnerability in Ashlar-Vellum CAD software allows attackers to execute arbitrary code by crafting malicious VC6 files. T...

CVE-2025-54217 is a heap-based buffer overflow vulnerability in Adobe InCopy that could allow arbitrary code execution when a user opens a malicious f...

CVE-2025-54219 is a heap-based buffer overflow vulnerability in Adobe InCopy that could allow arbitrary code execution when a user opens a malicious f...

A heap-based buffer overflow vulnerability in Adobe InDesign allows arbitrary code execution when a user opens a malicious file. This affects users of...

CVE-2025-49560 is a heap-based buffer overflow vulnerability in Substance3D Viewer that allows arbitrary code execution when a user opens a malicious ...

A heap-based buffer overflow vulnerability in Microsoft Office Excel allows attackers to execute arbitrary code on affected systems by tricking users ...

A heap-based buffer overflow vulnerability in Microsoft Office Excel allows attackers to execute arbitrary code on vulnerable systems by tricking user...

This vulnerability is a heap-based buffer overflow in the Kernel Streaming WOW Thunk Service Driver (ksthunk.sys) on Windows systems. It allows an aut...

This vulnerability is a type confusion flaw in Windows Push Notifications that allows an authenticated attacker to execute arbitrary code with elevate...

A heap-based buffer overflow vulnerability in Rockwell Automation Arena Simulation allows attackers to execute arbitrary code or disclose information ...

A heap-based buffer overflow vulnerability in Rockwell Automation Arena Simulation allows attackers to execute arbitrary code or disclose information ...

A heap-based buffer overflow vulnerability in Autodesk products allows attackers to execute arbitrary code by tricking users into opening malicious 3D...

Adobe Framemaker versions 2020.8, 2022.6 and earlier contain a heap-based buffer overflow vulnerability (CWE-122) that could allow arbitrary code exec...

CVE-2025-47125 is a heap-based buffer overflow vulnerability in Adobe Framemaker that could allow attackers to execute arbitrary code when a user open...

Adobe Framemaker versions 2020.8, 2022.6 and earlier contain a heap-based buffer overflow vulnerability that allows attackers to execute arbitrary cod...

Adobe InDesign versions 19.5.3 and earlier contain a heap-based buffer overflow vulnerability that allows attackers to execute arbitrary code when a u...

Adobe InDesign versions 19.5.3 and earlier contain a heap-based buffer overflow vulnerability that allows attackers to execute arbitrary code when a u...

A Time-of-Check Time-of-Use (TOCTOU) race condition vulnerability in Microsoft Windows QoS scheduler allows authenticated attackers to escalate privil...

A heap-based buffer overflow vulnerability in Microsoft Graphics Component allows authenticated attackers to execute arbitrary code with elevated priv...

A heap-based buffer overflow vulnerability in the Windows Fast FAT driver allows local attackers to execute arbitrary code with elevated privileges. T...

A heap-based buffer overflow vulnerability in Microsoft MPEG-2 Video Extension allows authenticated attackers to execute arbitrary code locally on aff...

A heap-based buffer overflow vulnerability in VS6Sim.exe within FUJI ELECTRIC's V-SFT and TELLUS software allows attackers to execute arbitrary code b...

CVE-2025-47107 is a heap-based buffer overflow vulnerability in Adobe InCopy that could allow arbitrary code execution when a user opens a malicious f...

A heap-based buffer overflow vulnerability in Microsoft Office Excel allows attackers to execute arbitrary code on vulnerable systems by tricking user...