CWE-122 (堆缓冲区溢出) — Vulnerability Class 1837

1837 vulnerabilities classified as CWE-122 (堆缓冲区溢出). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-10502	Google Chrome 安全漏洞 — Chrome	8.8^AI	High^AI	2025-09-24
CVE-2025-23308	NVIDIA CUDA Toolkit 安全漏洞 — NVIDIA CUDA Toolkit	3.3	Low	2025-09-24
CVE-2025-7983	Ashlar-Vellum Graphite VC6 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability — Graphite	7.8^AI	High^AI	2025-09-17
CVE-2025-8894	PDF File Parsing Heap-Based Buffer Overflow Vulnerability — Revit	7.8	High	2025-09-16
CVE-2025-55118	BMC Control-M/Agent memory corruption in SSL/TLS communication — Control-M/Agent	8.9	High	2025-09-16
CVE-2025-58447	rAthena has heap-based buffer overflow in login server — rathena	9.8	Critical	2025-09-09
CVE-2025-54244	Substance3D - Viewer \| Heap-based Buffer Overflow (CWE-122) — Substance3D - Viewer	7.8	High	2025-09-09
CVE-2025-54910	Microsoft Office Remote Code Execution Vulnerability — Microsoft 365 Apps for Enterprise	8.4	High	2025-09-09
CVE-2025-54900	Microsoft Excel Remote Code Execution Vulnerability — Microsoft 365 Apps for Enterprise	7.8	High	2025-09-09
CVE-2025-54113	Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability — Windows Server 2008 R2 Service Pack 1	8.8	High	2025-09-09
CVE-2025-54907	Microsoft Office Visio Remote Code Execution Vulnerability — Microsoft 365 Apps for Enterprise	7.8	High	2025-09-09
CVE-2025-54894	Local Security Authority Subsystem Service Elevation of Privilege Vulnerability — Windows 10 Version 1507	7.8	High	2025-09-09
CVE-2025-9951	Remote code execution via Heap Buffer Overflow in FFmpeg JPEG2000 — FFmpeg	8.8^AI	High^AI	2025-09-09
CVE-2025-40930	JSON::SIMD before version 1.07 and earlier for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact — JSON::SIMD	9.1^AI	Critical^AI	2025-09-08
CVE-2025-40929	Cpanel::JSON::XS before version 4.40 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact — Cpanel::JSON::XS	9.1^AI	Critical^AI	2025-09-08
CVE-2025-40928	JSON::XS before version 4.04 for Perl has an integer buffer overflow causing a segfault when parsing crafted JSON, enabling denial-of-service attacks or other unspecified impact — JSON::XS	9.1^AI	Critical^AI	2025-09-08
CVE-2025-8300	Realtek rtl81xx SDK Wi-Fi Driver rtwlanu Heap-based Buffer Overflow Local Privilege Escalation Vulnerability — rtl81xx SDK	7.8	-	2025-09-02
CVE-2025-8299	Realtek rtl81xx SDK Wi-Fi Driver MgntActSet_TEREDO_SET_RS_PACKET Heap-based Buffer Overflow Local Privilege Escalation Vulnerability — rtl81xx SDK	7.8	-	2025-09-02
CVE-2025-8301	Realtek RTL8811AU rtwlanu.sys N6CSet_DOT11_CIPHER_DEFAULT_KEY Heap-based Buffer Overflow Local Privilege Escalation Vulnerability — RTL8811AU	7.8	-	2025-09-02
CVE-2025-8302	Realtek rtl81xx SDK Wi-Fi Driver rtwlanu Heap-based Buffer Overflow Local Privilege Escalation Vulnerability — rtl81xx SDK	7.8	-	2025-09-02
CVE-2025-34164	NetSupport Manager < 14.12.0000 Heap-Based Buffer Overflow — NetSupport Manager	9.8	-	2025-08-29
CVE-2025-34522	Arcserve UDP < 10.2 Pre-Authentication Heap Overflow — Unified Data Protection (UDP)	9.8^AI	Critical^AI	2025-08-27
CVE-2025-34523	Arcserve UDP < 10.2 Pre-Authentication Heap Overflow — Unified Data Protection (UDP)	9.8^AI	Critical^AI	2025-08-27
CVE-2025-57803	ImageMagick (WriteBMPImage): 32-bit integer overflow when writing BMP scanline stride → heap buffer overflow — ImageMagick	7.5	High	2025-08-26
CVE-2025-35984	SAIL 安全漏洞 — SAIL Image Decoding Library	8.8	High	2025-08-25
CVE-2025-53085	SAIL 安全漏洞 — SAIL Image Decoding Library	8.8	High	2025-08-25
CVE-2025-50129	SAIL 安全漏洞 — SAIL Image Decoding Library	8.8	High	2025-08-25
CVE-2025-53853	libbiosig 安全漏洞 — libbiosig	9.8	Critical	2025-08-25
CVE-2025-53557	libbiosig 安全漏洞 — libbiosig	9.8	Critical	2025-08-25
CVE-2025-53511	libbiosig 安全漏洞 — libbiosig	9.8	Critical	2025-08-25

Vulnerabilities classified as CWE-122 (堆缓冲区溢出) represent 1837 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-122 (堆缓冲区溢出) — Vulnerability Class 1837