Vulnerabilities > Heap-based Buffer Overflow
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-08 | CVE-2020-25674 | Heap-based Buffer Overflow vulnerability in multiple products WriteOnePNGImage() from coders/png.c (the PNG coder) has a for loop with an improper exit condition that can allow an out-of-bounds READ via heap-buffer-overflow. | 5.5 |
| 2020-12-08 | CVE-2020-25667 | Heap-based Buffer Overflow vulnerability in Imagemagick TIFFGetProfiles() in /coders/tiff.c calls strstr() which causes a large out-of-bounds read when it searches for `"dc:format=\"image/dng\"` within `profile` due to improper string handling, when a crafted input file is provided to ImageMagick. | 5.5 |
| 2020-12-08 | CVE-2020-25664 | Heap-based Buffer Overflow vulnerability in multiple products In WriteOnePNGImage() of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory() and memset() allows for an out-of-bounds write later when PopShortPixel() from MagickCore/quantum-private.h is called. | 6.1 |
| 2020-11-26 | CVE-2020-27255 | Heap-based Buffer Overflow vulnerability in Rockwellautomation Factorytalk Linx 6.00/6.10/6.11 A heap overflow vulnerability exists within FactoryTalk Linx Version 6.11 and prior. | 5.0 |
| 2020-11-26 | CVE-2020-27251 | Heap-based Buffer Overflow vulnerability in Rockwellautomation Factorytalk Linx 6.00/6.10/6.11 A heap overflow vulnerability exists within FactoryTalk Linx Version 6.11 and prior. | 7.5 |
| 2020-11-05 | CVE-2020-24435 | Heap-based Buffer Overflow vulnerability in Adobe products Acrobat Reader DC versions 2020.012.20048 (and earlier), 2020.001.30005 (and earlier) and 2017.011.30175 (and earlier) are affected by a heap-based buffer overflow vulnerability in the submitForm function, potentially resulting in arbitrary code execution in the context of the current user. | 6.8 |
| 2020-07-31 | CVE-2020-14311 | Heap-based Buffer Overflow vulnerability in multiple products There is an issue with grub2 before version 2.06 while handling symlink on ext filesystems. | 6.0 |
| 2020-07-28 | CVE-2020-10928 | Heap-based Buffer Overflow vulnerability in Netgear R6700 Firmware 1.0.4.8410.0.58 This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6700 V1.0.4.84_10.0.58 routers. | 4.6 |
| 2020-07-10 | CVE-2020-11061 | Heap-based Buffer Overflow vulnerability in multiple products In Bareos Director less than or equal to 16.2.10, 17.2.9, 18.2.8, and 19.2.7, a heap overflow allows a malicious client to corrupt the director's memory via oversized digest strings sent during initialization of a verify job. | 7.4 |
| 2020-06-22 | CVE-2020-4068 | Heap-based Buffer Overflow vulnerability in Apnswift Project Apnswift 1.0.0 In APNSwift 1.0.0, calling APNSwiftSigner.sign(digest:) is likely to result in a heap buffer overflow. | 7.5 |