Vulnerabilities (CVE)

CWE filter

CWE-476

Filter

948 total CVE
CVE Vendors Products Updated CVSS
CVE-2017-14863 1 Exiv2 1 Exiv2 2019-10-03 4.3
A NULL pointer dereference was discovered in Exiv2::Image::printIFDStructure in image.cpp in Exiv2 0.26. The vulnerability causes a segmentation fault and application crash, which leads to denial of service.
CVE-2017-1000358 1 Opendaylight 1 Opendaylight 2019-10-03 4.0
Controller throws an exception and does not allow user to add subsequent flow for a particular switch. Component: OpenDaylight odl-restconf feature contains this flaw. Version: OpenDaylight 4.0 is affected by this flaw.
CVE-2017-1000360 1 Opendaylight 1 Opendaylight 2019-10-03 5.0
StreamCorruptedException and NullPointerException in OpenDaylight odl-mdsal-xsql. Controller launches exceptions in the console. Component: OpenDaylight odl-mdsal-xsql is vulnerable to this flaw. Version: The tested versions are OpenDaylight 3.3 and 4.0.
CVE-2017-0546 1 Google 1 Android 2019-10-03 9.3
An elevation of privilege vulnerability in SurfaceFlinger could enable a local malicious application to execute arbitrary code within the context of a privileged process. This issue is rated as High because it could be used to gain local access...
CVE-2017-5149 1 St. Jude Medical 1 Merlin%40home Firmware 2019-10-03 6.8
An issue was discovered in St. Jude Medical Merlin@home, versions prior to Version 8.2.2 (RF models: EX1150; Inductive models: EX1100; and Inductive models: EX1100 with MerlinOnDemand capability). The identities of the endpoints for the...
CVE-2017-8539 1 Microsoft 3 Windows Defender, Forefront Security, Malware Protection Engine 2019-10-03 4.3
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511,...
CVE-2017-0686 1 Google 1 Android 2019-10-03 4.3
A denial of service vulnerability in the Android media framework. Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-34231231.
CVE-2017-11333 1 Xiph.org 1 Libvorbis 2019-10-03 4.3
The vorbis_analysis_wrote function in lib/block.c in Xiph.Org libvorbis 1.3.5 allows remote attackers to cause a denial of service (OOM) via a crafted wav file.
CVE-2018-14588 1 Axiosys 1 Bento4 2019-10-03 5.0
An issue has been discovered in Bento4 1.5.1-624. A NULL pointer dereference can occur in AP4_DataBuffer::SetData in Core/Ap4DataBuffer.cpp.
CVE-2017-0635 1 Google 1 Android 2019-10-03 7.1
A remote denial of service vulnerability in HevcUtils.cpp in libstagefright in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated as Low due to details specific to the...
CVE-2017-8535 1 Microsoft 9 Windows Defender, Forefront Security, Malware Protection Engine and 6 more 2019-10-03 4.3
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511,...
CVE-2019-10489 1 Qualcomm 42 Mdm9206 Firmware, Mdm9607 Firmware, Msm8909w Firmware and 39 more 2019-10-02 7.8
Possible null-pointer dereference can occur while parsing avi clip during copy in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...
CVE-2019-10510 1 Qualcomm 12 Qcs405 Firmware, Qcs605 Firmware, Sd 636 Firmware and 9 more 2019-10-02 8.5
BT process died and BT toggled due to null pointer dereference when invalid vendor pass through command sent from remote in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile, Snapdragon Voice & Music in QCS405, QCS605, SD 636, SD 675,...
CVE-2019-9279 1 Google 1 Android 2019-10-01 5.0
In the wifi hotspot service, there is a possible denial of service due to a null pointer dereference. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation....
CVE-2019-15098 1 Linux 1 Linux Kernel 2019-09-30 7.8
drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.9 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.
CVE-2019-9400 1 Google 1 Android 2019-09-30 5.0
In Bluetooth, there is a possible null pointer dereference due to a missing null check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Product:...
CVE-2019-9430 1 Google 1 Android 2019-09-30 5.0
In Bluetooth, there is a possible null pointer dereference due to a missing null check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Product:...
CVE-2019-10097 1 Apache 1 Http Server 2019-09-27 6.0
In Apache HTTP Server 2.4.32-2.4.39, when mod_remoteip was configured to use a trusted intermediary proxy server using the "PROXY" protocol, a specially crafted PROXY header could trigger a stack buffer overflow or NULL pointer deference. This...
CVE-2019-16754 1 Riot-os 1 Riot 2019-09-25 5.0
RIOT 2019.07 contains a NULL pointer dereference in the MQTT-SN implementation (asymcute), potentially allowing an attacker to crash a network node running RIOT. This requires spoofing an MQTT server response. To do so, the attacker needs to know...
CVE-2018-21015 1 Gpac 1 Gpac 2019-09-18 4.3
AVC_DuplicateConfig() at isomedia/avc_ext.c in GPAC 0.7.1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file. There is "cfg_new->AVCLevelIndication = cfg->AVCLevelIndication;"...