Vulnerabilities > Heap-based Buffer Overflow
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-01-12 | CVE-2020-15800 | Heap-based Buffer Overflow vulnerability in Siemens products A vulnerability has been identified in SCALANCE X-200 switch family (incl. | 9.3 |
| 2021-01-05 | CVE-2020-27841 | Heap-based Buffer Overflow vulnerability in multiple products There's a flaw in openjpeg in versions prior to 2.4.0 in src/lib/openjp2/pi.c. | 5.5 |
| 2020-12-15 | CVE-2020-25712 | Heap-based Buffer Overflow vulnerability in multiple products A flaw was found in xorg-x11-server before 1.20.10. | 4.6 |
| 2020-12-08 | CVE-2020-27752 | Heap-based Buffer Overflow vulnerability in Imagemagick A flaw was found in ImageMagick in MagickCore/quantum-private.h. | 7.1 |
| 2020-12-08 | CVE-2020-25674 | Heap-based Buffer Overflow vulnerability in multiple products WriteOnePNGImage() from coders/png.c (the PNG coder) has a for loop with an improper exit condition that can allow an out-of-bounds READ via heap-buffer-overflow. | 5.5 |
| 2020-12-08 | CVE-2020-25667 | Heap-based Buffer Overflow vulnerability in Imagemagick TIFFGetProfiles() in /coders/tiff.c calls strstr() which causes a large out-of-bounds read when it searches for `"dc:format=\"image/dng\"` within `profile` due to improper string handling, when a crafted input file is provided to ImageMagick. | 5.5 |
| 2020-12-08 | CVE-2020-25664 | Heap-based Buffer Overflow vulnerability in multiple products In WriteOnePNGImage() of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory() and memset() allows for an out-of-bounds write later when PopShortPixel() from MagickCore/quantum-private.h is called. | 6.1 |
| 2020-11-26 | CVE-2020-27255 | Heap-based Buffer Overflow vulnerability in Rockwellautomation Factorytalk Linx 6.00/6.10/6.11 A heap overflow vulnerability exists within FactoryTalk Linx Version 6.11 and prior. | 5.0 |
| 2020-11-26 | CVE-2020-27251 | Heap-based Buffer Overflow vulnerability in Rockwellautomation Factorytalk Linx 6.00/6.10/6.11 A heap overflow vulnerability exists within FactoryTalk Linx Version 6.11 and prior. | 7.5 |
| 2020-11-05 | CVE-2020-24435 | Heap-based Buffer Overflow vulnerability in Adobe products Acrobat Reader DC versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) are affected by a heap-based buffer overflow vulnerability in the submitForm function, potentially resulting in arbitrary code execution in the context of the current user. | 6.8 |