CWE-122— Heap-based Buffer Overflow
A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().— MITRE CWE catalog
2,323 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-122page 34 of 47
- CVE-2025-47987HIGHCVSS 7.8EG 7.82025-07-08
Heap-based buffer overflow in Windows Cred SSProvider Protocol allows an authorized attacker to elevate privileges locally.
- CVE-2025-47998HIGHCVSS 8.8EG 8.82025-07-08
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
- CVE-2025-48005CRITICALCVSS 9.8EG 9.82025-08-25
A heap-based buffer overflow vulnerability exists in the RHS2000 parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch (35a819fa). A specially crafted RHS2000 file can lead to arbitrary code execution. An attacker c…
- CVE-2025-48071HIGHCVSS 7.8EG 7.82025-07-31
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In versions 3.3.2 through 3.3.0, there is a heap-based buffer overflow during a write operatio…
- CVE-2025-48379HIGHCVSS 7.1EG 7.12025-07-01
Pillow is a Python imaging library. In versions 11.2.0 to before 11.3.0, there is a heap buffer overflow when writing a sufficiently large (>64k encoded with default settings) image in the DDS format due to writing into a buffer without ch…
- CVE-2025-48592HIGHCVSS 7.5EG 7.52025-12-08
In initDecoder of C2SoftDav1dDec.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for…
- CVE-2025-48723HIGHCVSS 8.1EG 8.12026-02-11
A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in …
- CVE-2025-48724HIGHCVSS 8.1EG 8.12026-02-11
A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in …
- CVE-2025-48797HIGHCVSS 7.3EG 7.32025-05-27
A flaw was found in GIMP when processing certain TGA image files. If a user opens one of these image files that has been specially crafted by an attacker, GIMP can be tricked into making serious memory errors, potentially leading to crashe…
- CVE-2025-48805HIGHCVSS 7.8EG 7.82025-07-08
Heap-based buffer overflow in Microsoft MPEG-2 Video Extension allows an authorized attacker to execute code locally.
- CVE-2025-48824HIGHCVSS 8.8EG 8.82025-07-08
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
- CVE-2025-48910MEDIUMCVSS 5.5EG 5.52025-06-06
Buffer overflow vulnerability in the DFile module Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-48990HIGHCVSS 8.6EG 8.62025-06-02
NeKernal is a free and open-source operating system stack. Version 0.0.2 has a 1-byte heap overflow in `rt_copy_memory`, which unconditionally wrote a null terminator at `dst[len]`. When `len` equals the size of the destination buffer (256…
- CVE-2025-49560HIGHCVSS 7.8EG 7.82025-08-12
Substance3D - Viewer versions 0.25 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interactio…
- CVE-2025-49604MEDIUMCVSS 5.4EG 5.42025-07-09
For Realtek AmebaD devices, a heap-based buffer overflow was discovered in Ameba-AIoT ameba-arduino-d before version 3.1.9 and ameba-rtos-d before commit c2bfd8216a1cbc19ad2ab5f48f372ecea756d67a on 2025/07/03. In the WLAN driver defragment…
- CVE-2025-49657HIGHCVSS 8.8EG 8.82025-07-08
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
- CVE-2025-49663HIGHCVSS 8.8EG 8.82025-07-08
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
- CVE-2025-49666HIGHCVSS 7.2EG 7.22025-07-08
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to execute code over a network.
- CVE-2025-49668HIGHCVSS 8.8EG 8.82025-07-08
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
- CVE-2025-49669HIGHCVSS 8.8EG 8.82025-07-08
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
- CVE-2025-49670MEDIUMCVSS 6.5EG 8.82025-07-08
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
- CVE-2025-49672HIGHCVSS 8.8EG 8.82025-07-08
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
- CVE-2025-49673HIGHCVSS 8.8EG 8.82025-07-08
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
- CVE-2025-49674HIGHCVSS 8.8EG 8.82025-07-08
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
- CVE-2025-49676HIGHCVSS 8.8EG 8.82025-07-08
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
- CVE-2025-49683HIGHCVSS 7.8EG 7.82025-07-08
Integer overflow or wraparound in Virtual Hard Disk (VHDX) allows an unauthorized attacker to execute code locally.
- CVE-2025-49691HIGHCVSS 8.0EG 8.02025-07-08
Heap-based buffer overflow in Windows Media allows an unauthorized attacker to execute code over an adjacent network.
- CVE-2025-49696HIGHCVSS 8.4EG 8.42025-07-08
Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally.
- CVE-2025-49697HIGHCVSS 8.4EG 8.42025-07-08
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
- CVE-2025-49705HIGHCVSS 7.8EG 7.82025-07-08
Heap-based buffer overflow in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.
- CVE-2025-49717HIGHCVSS 8.5EG 8.52025-07-08
Heap-based buffer overflow in SQL Server allows an authorized attacker to execute code over a network.
- CVE-2025-49721HIGHCVSS 7.8EG 7.82025-07-08
Heap-based buffer overflow in Windows Fast FAT Driver allows an unauthorized attacker to elevate privileges locally.
- CVE-2025-49727HIGHCVSS 7.0EG 7.02025-07-08
Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.
- CVE-2025-49729HIGHCVSS 8.8EG 8.82025-07-08
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
- CVE-2025-49730HIGHCVSS 7.8EG 7.82025-07-08
Time-of-check time-of-use (toctou) race condition in Microsoft Windows QoS scheduler allows an authorized attacker to elevate privileges locally.
- CVE-2025-49732HIGHCVSS 7.8EG 7.82025-07-08
Heap-based buffer overflow in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
- CVE-2025-49742HIGHCVSS 7.8EG 7.82025-07-08
Integer overflow or wraparound in Microsoft Graphics Component allows an authorized attacker to execute code locally.
- CVE-2025-49744HIGHCVSS 7.0EG 7.02025-07-08
Heap-based buffer overflow in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally.
- CVE-2025-49753HIGHCVSS 8.8EG 8.82025-07-08
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
- CVE-2025-49757HIGHCVSS 8.8EG 8.82025-08-12
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
- CVE-2025-49850HIGHCVSS 8.4EG 8.42025-06-17
A Heap-based Buffer Overflow vulnerability exists within the parsing of PRJ files. The issues result from the lack of proper validation of user-supplied data, which can result in different memory corruption issues within the application, s…
- CVE-2025-50054MEDIUMCVSS 5.5EG 5.52025-06-20
Buffer overflow in OpenVPN ovpn-dco-win version 1.3.0 and earlier and version 2.5.8 and earlier allows a local user process to send a too large control message buffer to the kernel driver resulting in a system crash
- CVE-2025-50129HIGHCVSS 8.8EG 8.82025-08-25
A memory corruption vulnerability exists in the PCX Image Decoding functionality of the SAIL Image Decoding Library v0.9.8. When decoding the image data from a specially crafted .tga file, a heap-based buffer overflow can occur which allow…
- CVE-2025-50130HIGHCVSS 7.8EG 7.82025-07-08
A heap-based buffer overflow vulnerability exists in VS6Sim.exe contained in V-SFT and TELLUS provided by FUJI ELECTRIC CO., LTD. Opening V9 files or X1 files specially crafted by an attacker on the affected product may lead to arbitrary …
- CVE-2025-50155HIGHCVSS 7.8EG 7.82025-08-12
Access of resource using incompatible type ('type confusion') in Windows Push Notifications allows an authorized attacker to elevate privileges locally.
- CVE-2025-50160HIGHCVSS 8.0EG 8.02025-08-12
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.
- CVE-2025-50161HIGHCVSS 7.3EG 7.32025-08-12
Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally.
- CVE-2025-50162HIGHCVSS 8.0EG 8.02025-08-12
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.
- CVE-2025-50163HIGHCVSS 8.8EG 8.82025-08-12
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
- CVE-2025-50164HIGHCVSS 8.0EG 8.02025-08-12
Heap-based buffer overflow in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.
Map vulnerabilities like CWE-122 to your infrastructure
EchelonGraph correlates every CVE — across CWE-122 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →