Weaknesses of type CWE-122
2,343 resultsCVE-2024-32038CRITICALWazuh Analysis Engine Event Decoder Heap-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 1.0%CVE-2025-5462HIGHA heap-based buffer overflow in Ivanti Connect Secure before 22.7R2.8 or 22.8R2, Ivanti Policy Secure before 22.7R1.5, Ivanti ZTA Gateway beEPSS 1.0%CVE-2021-33000—Parsing a maliciously crafted project file may cause a heap-based buffer overflow, which may allow an attacker to perform arbitrary code exeEPSS 1.0%CVE-2025-14905HIGH389-ds-base: 389-ds-base: remote code execution and denial of service via heap buffer overflowEPSS 1.0%CVE-2021-21944CRITICALTwo heap-based buffer overflow vulnerabilities exist in the TIFF parser functionality of Accusoft ImageGear 19.10. A specially-crafted file EPSS 1.0%CVE-2021-21947CRITICALTwo heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image parser functionality of Accusoft ImageGear 19.EPSS 1.0%CVE-2021-21945CRITICALTwo heap-based buffer overflow vulnerabilities exist in the TIFF parser functionality of Accusoft ImageGear 19.10. A specially-crafted file EPSS 1.0%CVE-2021-21946CRITICALTwo heap-based buffer overflow vulnerabilities exists in the JPEG-JFIF lossless Huffman image parser functionality of Accusoft ImageGear 19.EPSS 1.0%CVE-2021-3756MEDIUMHeap-based Buffer Overflow in hoene/libmysofaEPSS 1.0%CVE-2023-36730HIGHMicrosoft ODBC Driver for SQL Server Remote Code Execution VulnerabilityEPSS 1.0%CVE-2024-4559HIGHHeap buffer overflow in WebAudio in Google Chrome prior to 124.0.6367.155 allowed a remote attacker to potentially exploit heap corruption vEPSS 1.0%CVE-2023-33221MEDIUM Heap Buffer Overflow when reading DESFire cardEPSS 1.0%CVE-2020-13581HIGHIn SoftMaker Software GmbH SoftMaker Office PlanMaker 2021 (Revision 1014), a specially crafted document can cause the document parser to coEPSS 1.0%CVE-2021-21958HIGHA heap-based buffer overflow vulnerability exists in the Hword HwordApp.dll functionality of Hancom Office 2020 11.0.0.2353. A specially-craEPSS 1.0%CVE-2026-25588HIGHRedisTimeSeries RESTORE invalid memory access may allow remote code executionEPSS 1.0%CVE-2022-23537MEDIUMPJSIP vulnerable to heap buffer overflow when decoding STUN messageEPSS 1.0%CVE-2025-59254HIGHMicrosoft DWM Core Library Elevation of Privilege VulnerabilityEPSS 1.0%CVE-2021-37199—A vulnerability has been identified in SINUMERIK 808D (All versions), SINUMERIK 828D (All versions < V4.95). Affected devices don't process EPSS 1.0%CVE-2022-4584MEDIUMAxiomatic Bento4 mp42aac heap-based overflowEPSS 1.0%CVE-2020-25665—The PALM image coder at coders/palm.c makes an improper call to AcquireQuantumMemory() in routine WritePALMImage() because it needs to be ofEPSS 1.0%