Weaknesses of type CWE-122

2,351 results
CVE-2026-4152HIGHGIMP JP2 File Parsing Heap-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.7%CVE-2021-21948HIGHA heap-based buffer overflow vulnerability exists in the readDatHeadVec functionality of AnyCubic Chitubox AnyCubic Plugin 1.0.0. A speciallEPSS 0.7%CVE-2025-15059HIGHGIMP PSP File Parsing Heap-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.7%CVE-2021-3835HIGHBuffer overflow in usb device classEPSS 0.7%CVE-2023-44418HIGHD-Link DIR-X3260 Prog.cgi Heap-based Buffer Overflow Remote Code Execution VulnerabilityEPSS 0.7%CVE-2024-39883HIGHHeap-based Buffer Overflow in Delta Electronics CNCSoft-G2EPSS 0.7%CVE-2024-5493HIGHHeap buffer overflow in WebRTC in Google Chrome prior to 125.0.6422.141 allowed a remote attacker to potentially exploit heap corruption viaEPSS 0.7%CVE-2024-49030HIGHMicrosoft Excel Remote Code Execution VulnerabilityEPSS 0.7%CVE-2022-1437MEDIUMHeap-based Buffer Overflow in radareorg/radare2EPSS 0.7%CVE-2021-3770HIGHHeap-based Buffer Overflow in vim/vimEPSS 0.7%CVE-2025-0755HIGHMongoDB C Driver bson library may be susceptible to buffer overflowEPSS 0.7%CVE-2024-2824MEDIUMMatthias-Wandel jhead exif.c PrintFormatNumber heap-based overflowEPSS 0.7%CVE-2019-15690HIGHLibVNCServer 0.9.12 release and earlier contains heap buffer overflow vulnerability within the HandleCursorShape() function in libvncclient/EPSS 0.7%CVE-2024-7973HIGHHeap buffer overflow in PDFium in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to perform an out of bounds memory read viaEPSS 0.7%CVE-2024-43626HIGHWindows Telephony Service Elevation of Privilege VulnerabilityEPSS 0.7%CVE-2026-33602MEDIUMOff-by-one access when processing crafted UDP responsesEPSS 0.7%CVE-2023-45591HIGHA CWE-122 “Heap-based Buffer Overflow” vulnerability in the “logger_generic” function of the “Ax_rtu” binary allows a remote authenticated aEPSS 0.7%CVE-2023-26793CRITICALlibmodbus v3.1.10 has a heap-based buffer overflow vulnerability in read_io_status function in src/modbus.c.EPSS 0.7%CVE-2026-5244MEDIUMCesanta Mongoose TLS 1.3 mongoose.c mg_tls_recv_cert heap-based overflowEPSS 0.7%CVE-2021-25360CRITICALAn improper input validation vulnerability in libswmfextractor library prior to SMR APR-2021 Release 1 allows attackers to execute arbitraryEPSS 0.7%