Vulnerabilities > Heap-based Buffer Overflow

DATE CVE VULNERABILITY TITLE RISK
2018-10-31 CVE-2018-14653 Heap-based Buffer Overflow vulnerability in multiple products
The Gluster file system through versions 4.1.4 and 3.12 is vulnerable to a heap-based buffer overflow in the '__server_getspec' function via the 'gf_getspec_req' RPC message.
network
low complexity
redhat debian CWE-122
8.8
2018-09-11 CVE-2018-10893 Heap-based Buffer Overflow vulnerability in Spice Project Spice
Multiple integer overflow and buffer overflow issues were discovered in spice-client's handling of LZ compressed frames.
network
low complexity
spice-project CWE-122
8.8
2018-08-01 CVE-2016-9580 Heap-based Buffer Overflow vulnerability in Uclouvain Openjpeg 2.1.2
An integer overflow vulnerability was found in tiftoimage function in openjpeg 2.1.2, resulting in heap buffer overflow.
network
low complexity
uclouvain CWE-122
8.8
2018-07-16 CVE-2018-10840 Heap-based Buffer Overflow vulnerability in multiple products
Linux kernel is vulnerable to a heap-based buffer overflow in the fs/ext4/xattr.c:ext4_xattr_set_entry() function.
low complexity
linux canonical redhat CWE-122
6.6
2018-06-14 CVE-2018-4833 Heap-based Buffer Overflow vulnerability in Siemens products
A vulnerability has been identified in RFID 181EIP (All versions), RUGGEDCOM Win (V4.4, V4.5, V5.0, and V5.1), SCALANCE X-200 switch family (incl.
low complexity
siemens CWE-122
8.8
2018-05-23 CVE-2018-1123 Heap-based Buffer Overflow vulnerability in multiple products
procps-ng before version 3.3.15 is vulnerable to a denial of service in ps via mmap buffer overflow.
network
low complexity
procps-ng-project canonical debian CWE-122
7.5
2018-04-23 CVE-2016-9586 Heap-based Buffer Overflow vulnerability in Haxx Curl
curl before version 7.52.0 is vulnerable to a buffer overflow when doing a large floating point output in libcurl's implementation of the printf() functions.
network
high complexity
haxx CWE-122
8.1