← All weakness types

Heap-based Buffer Overflow

CWE-122

2,350 vulnerabilities are classified as Heap-based Buffer Overflow (CWE-122). The most exploitable are shown first (by EPSS), each with its CVSS score, exploit-prediction, CISA KEV status, and available fix.

CVESeverityCVSSEPSSExploitedFix
CVE-2015-3113Critical9.8100%KEVFix
CVE-2024-26256High7.888%-Fix
CVE-2020-25687Medium5.987%-Fix
CVE-2009-3459High8.886%KEVFix
CVE-2021-21017High8.886%KEV-
CVE-2020-25683Medium5.986%-Fix
CVE-2023-27997Critical9.886%KEV + Ransom-
CVE-2023-4911High7.881%KEVFix
CVE-2020-25681High8.181%-Fix
CVE-2020-6146High8.878%--
CVE-2024-38077Critical9.875%-Fix
CVE-2023-36824High7.475%-Fix
CVE-2022-35711Critical9.873%--
CVE-2024-20697High7.372%-Fix
CVE-2024-12084Critical9.872%-Fix
CVE-2023-0210High7.572%-Fix
CVE-2020-25682High8.171%-Fix
CVE-2021-26691Critical9.868%-Fix
CVE-2021-28560High8.867%--
CVE-2026-42945Critical8.161%-Fix
CVE-2023-44442High7.861%-Fix
CVE-2024-10525Critical9.858%-Fix
CVE-2024-38812Critical9.854%KEVFix
CVE-2020-24435High7.851%--
CVE-2019-5436High7.850%-Fix
CVE-2023-28252High7.849%KEV + RansomFix
CVE-2023-33133High7.844%-Fix
CVE-2022-24834High7.043%-Fix
CVE-2021-44708High7.839%--
CVE-2019-3568Critical9.839%KEVFix
CVE-2023-28231High8.837%-Fix
CVE-2022-35712Critical9.837%--
CVE-2017-13090High8.837%-Fix
CVE-2024-24996Critical9.832%-Fix
CVE-2021-44709High7.830%--
CVE-2024-4323Critical9.828%-Fix
CVE-2025-40597High7.528%-Fix
CVE-2023-21690Critical9.828%-Fix
CVE-2023-44441High7.827%-Fix
CVE-2022-0572High7.827%-Fix
CVE-2023-21689Critical9.827%-Fix
CVE-2019-10192High7.226%-Fix
CVE-2024-49138High7.825%KEVFix
CVE-2014-0781High9.325%--
CVE-2025-54574Critical9.323%-Fix
CVE-2021-20043High8.823%--
CVE-2025-47981Critical9.822%-Fix
CVE-2022-38742High8.122%--
CVE-2026-27654High8.222%-Fix
CVE-2026-47291Critical9.822%-Fix
CVE-2023-21692Critical9.821%-Fix
CVE-2024-21345High8.820%-Fix
CVE-2022-43634Critical9.819%-Fix
CVE-2019-5482Critical9.818%-Fix
CVE-2019-14901Critical9.817%-Fix
CVE-2023-36036High7.817%KEVFix
CVE-2024-38060High8.816%-Fix
CVE-2026-45657Critical9.815%-Fix
CVE-2024-30085High7.815%-Fix
CVE-2021-32626High7.515%-Fix
CVE-2019-18240Critical9.814%--
CVE-2019-15678Critical9.813%-Fix
CVE-2019-15679Critical9.813%-Fix
CVE-2022-0714Medium5.513%-Fix
CVE-2021-39863High7.812%--
CVE-2024-37080Critical9.812%--
CVE-2023-28218High7.012%-Fix
CVE-2023-23376High7.811%KEV + RansomFix
CVE-2018-14618High7.511%-Fix
CVE-2024-38054High7.811%-Fix
CVE-2021-28558High8.810%--
CVE-2025-21333High7.89.8%KEVFix
CVE-2025-29962High8.89.5%-Fix
CVE-2024-26229High7.89.4%-Fix
CVE-2018-1123Low3.99.1%-Fix
CVE-2019-14896Critical9.88.7%-Fix
CVE-2025-21376High8.18.6%-Fix
CVE-2021-34583High7.58.4%-Fix
CVE-2019-8274Critical9.88.3%-Fix
CVE-2019-8273Critical9.88.3%-Fix
CVE-2019-8271Critical9.88.3%-Fix
CVE-2021-23157High7.88.2%--
CVE-2019-14895Critical9.87.8%-Fix
CVE-2025-20363Critical9.07.5%-Fix
CVE-2021-21077High7.87.5%--
CVE-2018-1120Low2.87.3%-Fix
CVE-2020-10638Critical9.87.1%--
CVE-2018-8800Critical9.87.1%-Fix
CVE-2018-8797Critical9.87.1%-Fix
CVE-2018-8793Critical9.87.1%-Fix
CVE-2019-6530High7.86.9%--
CVE-2019-10126Critical9.86.8%-Fix
CVE-2025-53766Critical9.86.7%-Fix
CVE-2023-28227High7.56.6%-Fix
CVE-2016-1762High8.16.5%-Fix
CVE-2020-16010Critical9.66.4%KEVFix
CVE-2016-2123High8.86.2%-Fix
CVE-2023-35630High8.86.1%-Fix
CVE-2025-0434High8.85.9%-Fix
CVE-2022-30661High7.85.9%--

Showing the top 100 of 2,350. Browse all 2,350 in the lookup tool.