Skip to content
Threat Feed
Subscribe

Tag

Heap-Based Buffer Overflow

11 briefs RSS
high advisory

CVE-2026-9605 Heap-Based Buffer Overflow in GNU libredwg

A heap-based buffer overflow vulnerability (CVE-2026-9605) exists in GNU libredwg up to version 0.13.4.8160 within the bit_read_RC function of the Dwgbmp Utility, potentially allowing a remote attacker to execute arbitrary code.

libredwg heap-based buffer overflow cve-2026-9605
2r 1c
high advisory

MediaArea MediaInfoLib Channel Splitting Heap-Based Buffer Overflow (CVE-2026-22554)

MediaArea MediaInfoLib is vulnerable to a heap-based buffer overflow vulnerability when splitting channels, potentially leading to arbitrary code execution.

MediaInfoLib heap-based buffer overflow cve-2026-22554 media processing
2r 1t 1c
critical threat

CVE-2026-41096 Heap-Based Buffer Overflow in Windows DNS

CVE-2026-41096 is a critical heap-based buffer overflow vulnerability in Microsoft Windows DNS that allows an unauthenticated attacker to achieve remote code execution over a network.

Windows DNS cve-2026-41096 heap-based buffer overflow remote code execution
2r 1t 1c
high threat

CVE-2026-40363: Microsoft Office Heap-based Buffer Overflow

A heap-based buffer overflow vulnerability in Microsoft Office allows an unauthenticated, local attacker to execute arbitrary code.

Office heap-based buffer overflow code execution microsoft office cve-2026-40363
2r 1t 1c
high advisory

CVE-2026-40362: Microsoft Excel Heap-based Buffer Overflow Vulnerability

A heap-based buffer overflow vulnerability, identified as CVE-2026-40362, exists in Microsoft Office Excel, allowing an unauthenticated attacker with local access to execute arbitrary code.

Office Excel cve heap-based buffer overflow excel code execution windows
2r 1t 1c
high advisory

CVE-2026-34642: Adobe After Effects Heap-based Buffer Overflow Vulnerability

Adobe After Effects versions 26.0, 25.6.4 and earlier are vulnerable to a heap-based buffer overflow (CVE-2026-34642) that could lead to arbitrary code execution when a user opens a malicious file.

After Effects +1 cve-2026-34642 heap-based buffer overflow arbitrary code execution adobe after effects exploitation
2r 1t 1c
high advisory

CVE-2026-32177: .NET Heap-Based Buffer Overflow Local Privilege Escalation

A heap-based buffer overflow vulnerability, identified as CVE-2026-32177, exists in .NET, potentially allowing an unauthorized attacker to elevate privileges locally.

.NET cve-2026-32177 heap-based buffer overflow privilege escalation
2r 1t 1c
high advisory

Adobe Bridge Heap-based Buffer Overflow Vulnerability (CVE-2026-27312)

A heap-based buffer overflow vulnerability in Adobe Bridge versions 16.0.2, 15.1.4 and earlier can lead to arbitrary code execution if a user opens a malicious file.

cve-2026-27312 heap-based buffer overflow adobe bridge code execution
2r 2t 1c
high advisory

Adobe Bridge Heap-Based Buffer Overflow Vulnerability (CVE-2026-27311)

A heap-based buffer overflow vulnerability in Adobe Bridge versions 16.0.2, 15.1.4, and earlier (CVE-2026-27311) allows for arbitrary code execution when a user opens a specially crafted file.

cve-2026-27311 heap-based-buffer-overflow adobe-bridge
2r 1t 1c
high advisory

Samsung Escargot Heap-Based Buffer Overflow Vulnerability (CVE-2026-25205)

A heap-based buffer overflow vulnerability in Samsung Open Source Escargot (CVE-2026-25205) allows for out-of-bounds write operations, potentially leading to arbitrary code execution.

cve-2026-25205 heap-based buffer overflow escargot
2r 1t 1c
high advisory

Cesanta Mongoose TLS 1.3 Heap-Based Buffer Overflow Vulnerability (CVE-2026-5244)

A remote heap-based buffer overflow vulnerability exists in Cesanta Mongoose versions up to 7.20 due to improper handling of the pubkey argument in the mg_tls_recv_cert function, potentially leading to code execution.

cve-2026-5244 heap-based-buffer-overflow tls-1.3 remote-code-execution
2r 1t 1c