CWE-122 - Heap-based Buffer Overflow

Description

A heap-overflow means overflow of the buffer located in heap portion of memory (and uses a routine such as malloc()). Buffer overflow often leads to security errors that allows attackers to cause arbitary code execution and even system crash.
The vulnerability is introduced during Architecture and Design, Implementation stages.

Latest vulnerabilities for CWE-122

Multiple vulnerabilities in Ivanti Avalanche 2024-04-17
High Yes

Denial of service in RoboDK 2024-04-17
Medium No

Multiple vulnerabilities in Oracle Linux 2024-04-17
High Yes

Multiple vulnerabilities in PeopleSoft Enterprise PeopleTools 2024-04-17
High Yes

Heap-based buffer overflow in Infrastructure Technology 2024-04-17
Low Yes

Multiple vulnerabilities in Oracle Communications Cloud Native Core Network Repository Function 2024-04-17
High Yes

Multiple vulnerabilities in Oracle Communications Diameter Signaling Router 2024-04-17
Critical Yes

Multiple vulnerabilities in Oracle Communications Cloud Native Core Network Data Analytics Function 2024-04-16
High Yes

Multiple vulnerabilities in Oracle Communications Operations Monitor 2024-04-16
High Yes

Multiple vulnerabilities in IBM Sterling Order Management 2024-04-16
High Yes

References

Description of CWE-122 on Mitre website