← All weakness types
Heap-based Buffer Overflow
CWE-1222,350 vulnerabilities are classified as Heap-based Buffer Overflow (CWE-122). The most exploitable are shown first (by EPSS), each with its CVSS score, exploit-prediction, CISA KEV status, and available fix.
| CVE | Severity | CVSS | EPSS | Exploited | Fix |
|---|---|---|---|---|---|
| CVE-2015-3113 | Critical | 9.8 | 100% | KEV | Fix |
| CVE-2024-26256 | High | 7.8 | 88% | - | Fix |
| CVE-2020-25687 | Medium | 5.9 | 87% | - | Fix |
| CVE-2009-3459 | High | 8.8 | 86% | KEV | Fix |
| CVE-2021-21017 | High | 8.8 | 86% | KEV | - |
| CVE-2020-25683 | Medium | 5.9 | 86% | - | Fix |
| CVE-2023-27997 | Critical | 9.8 | 86% | KEV + Ransom | - |
| CVE-2023-4911 | High | 7.8 | 81% | KEV | Fix |
| CVE-2020-25681 | High | 8.1 | 81% | - | Fix |
| CVE-2020-6146 | High | 8.8 | 78% | - | - |
| CVE-2024-38077 | Critical | 9.8 | 75% | - | Fix |
| CVE-2023-36824 | High | 7.4 | 75% | - | Fix |
| CVE-2022-35711 | Critical | 9.8 | 73% | - | - |
| CVE-2024-20697 | High | 7.3 | 72% | - | Fix |
| CVE-2024-12084 | Critical | 9.8 | 72% | - | Fix |
| CVE-2023-0210 | High | 7.5 | 72% | - | Fix |
| CVE-2020-25682 | High | 8.1 | 71% | - | Fix |
| CVE-2021-26691 | Critical | 9.8 | 68% | - | Fix |
| CVE-2021-28560 | High | 8.8 | 67% | - | - |
| CVE-2026-42945 | Critical | 8.1 | 61% | - | Fix |
| CVE-2023-44442 | High | 7.8 | 61% | - | Fix |
| CVE-2024-10525 | Critical | 9.8 | 58% | - | Fix |
| CVE-2024-38812 | Critical | 9.8 | 54% | KEV | Fix |
| CVE-2020-24435 | High | 7.8 | 51% | - | - |
| CVE-2019-5436 | High | 7.8 | 50% | - | Fix |
| CVE-2023-28252 | High | 7.8 | 49% | KEV + Ransom | Fix |
| CVE-2023-33133 | High | 7.8 | 44% | - | Fix |
| CVE-2022-24834 | High | 7.0 | 43% | - | Fix |
| CVE-2021-44708 | High | 7.8 | 39% | - | - |
| CVE-2019-3568 | Critical | 9.8 | 39% | KEV | Fix |
| CVE-2023-28231 | High | 8.8 | 37% | - | Fix |
| CVE-2022-35712 | Critical | 9.8 | 37% | - | - |
| CVE-2017-13090 | High | 8.8 | 37% | - | Fix |
| CVE-2024-24996 | Critical | 9.8 | 32% | - | Fix |
| CVE-2021-44709 | High | 7.8 | 30% | - | - |
| CVE-2024-4323 | Critical | 9.8 | 28% | - | Fix |
| CVE-2025-40597 | High | 7.5 | 28% | - | Fix |
| CVE-2023-21690 | Critical | 9.8 | 28% | - | Fix |
| CVE-2023-44441 | High | 7.8 | 27% | - | Fix |
| CVE-2022-0572 | High | 7.8 | 27% | - | Fix |
| CVE-2023-21689 | Critical | 9.8 | 27% | - | Fix |
| CVE-2019-10192 | High | 7.2 | 26% | - | Fix |
| CVE-2024-49138 | High | 7.8 | 25% | KEV | Fix |
| CVE-2014-0781 | High | 9.3 | 25% | - | - |
| CVE-2025-54574 | Critical | 9.3 | 23% | - | Fix |
| CVE-2021-20043 | High | 8.8 | 23% | - | - |
| CVE-2025-47981 | Critical | 9.8 | 22% | - | Fix |
| CVE-2022-38742 | High | 8.1 | 22% | - | - |
| CVE-2026-27654 | High | 8.2 | 22% | - | Fix |
| CVE-2026-47291 | Critical | 9.8 | 22% | - | Fix |
| CVE-2023-21692 | Critical | 9.8 | 21% | - | Fix |
| CVE-2024-21345 | High | 8.8 | 20% | - | Fix |
| CVE-2022-43634 | Critical | 9.8 | 19% | - | Fix |
| CVE-2019-5482 | Critical | 9.8 | 18% | - | Fix |
| CVE-2019-14901 | Critical | 9.8 | 17% | - | Fix |
| CVE-2023-36036 | High | 7.8 | 17% | KEV | Fix |
| CVE-2024-38060 | High | 8.8 | 16% | - | Fix |
| CVE-2026-45657 | Critical | 9.8 | 15% | - | Fix |
| CVE-2024-30085 | High | 7.8 | 15% | - | Fix |
| CVE-2021-32626 | High | 7.5 | 15% | - | Fix |
| CVE-2019-18240 | Critical | 9.8 | 14% | - | - |
| CVE-2019-15678 | Critical | 9.8 | 13% | - | Fix |
| CVE-2019-15679 | Critical | 9.8 | 13% | - | Fix |
| CVE-2022-0714 | Medium | 5.5 | 13% | - | Fix |
| CVE-2021-39863 | High | 7.8 | 12% | - | - |
| CVE-2024-37080 | Critical | 9.8 | 12% | - | - |
| CVE-2023-28218 | High | 7.0 | 12% | - | Fix |
| CVE-2023-23376 | High | 7.8 | 11% | KEV + Ransom | Fix |
| CVE-2018-14618 | High | 7.5 | 11% | - | Fix |
| CVE-2024-38054 | High | 7.8 | 11% | - | Fix |
| CVE-2021-28558 | High | 8.8 | 10% | - | - |
| CVE-2025-21333 | High | 7.8 | 9.8% | KEV | Fix |
| CVE-2025-29962 | High | 8.8 | 9.5% | - | Fix |
| CVE-2024-26229 | High | 7.8 | 9.4% | - | Fix |
| CVE-2018-1123 | Low | 3.9 | 9.1% | - | Fix |
| CVE-2019-14896 | Critical | 9.8 | 8.7% | - | Fix |
| CVE-2025-21376 | High | 8.1 | 8.6% | - | Fix |
| CVE-2021-34583 | High | 7.5 | 8.4% | - | Fix |
| CVE-2019-8274 | Critical | 9.8 | 8.3% | - | Fix |
| CVE-2019-8273 | Critical | 9.8 | 8.3% | - | Fix |
| CVE-2019-8271 | Critical | 9.8 | 8.3% | - | Fix |
| CVE-2021-23157 | High | 7.8 | 8.2% | - | - |
| CVE-2019-14895 | Critical | 9.8 | 7.8% | - | Fix |
| CVE-2025-20363 | Critical | 9.0 | 7.5% | - | Fix |
| CVE-2021-21077 | High | 7.8 | 7.5% | - | - |
| CVE-2018-1120 | Low | 2.8 | 7.3% | - | Fix |
| CVE-2020-10638 | Critical | 9.8 | 7.1% | - | - |
| CVE-2018-8800 | Critical | 9.8 | 7.1% | - | Fix |
| CVE-2018-8797 | Critical | 9.8 | 7.1% | - | Fix |
| CVE-2018-8793 | Critical | 9.8 | 7.1% | - | Fix |
| CVE-2019-6530 | High | 7.8 | 6.9% | - | - |
| CVE-2019-10126 | Critical | 9.8 | 6.8% | - | Fix |
| CVE-2025-53766 | Critical | 9.8 | 6.7% | - | Fix |
| CVE-2023-28227 | High | 7.5 | 6.6% | - | Fix |
| CVE-2016-1762 | High | 8.1 | 6.5% | - | Fix |
| CVE-2020-16010 | Critical | 9.6 | 6.4% | KEV | Fix |
| CVE-2016-2123 | High | 8.8 | 6.2% | - | Fix |
| CVE-2023-35630 | High | 8.8 | 6.1% | - | Fix |
| CVE-2025-0434 | High | 8.8 | 5.9% | - | Fix |
| CVE-2022-30661 | High | 7.8 | 5.9% | - | - |
Showing the top 100 of 2,350. Browse all 2,350 in the lookup tool.