Vulnerabilities (CVE)

CWE filter

CWE-476

Filter

142 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-10993 1 Advantech 1 Webaccess 2019-07-02 7.5
In WebAccess/SCADA Versions 8.3.5 and prior, multiple untrusted pointer dereference vulnerabilities may allow a remote attacker to execute arbitrary code.
CVE-2019-7321 1 Artifex 1 Mupdf 2019-06-13 7.5
Usage of an uninitialized variable in the function fz_load_jpeg in Artifex MuPDF 1.14 can result in a heap overflow vulnerability that allows an attacker to execute arbitrary code.
CVE-2019-12614 1 Linux 1 Linux Kernel 2019-06-13 7.8
An issue was discovered in dlpar_parse_cc_property in arch/powerpc/platforms/pseries/dlpar.c in the Linux kernel through 5.1.6. There is an unchecked kstrdup of prop->name, which might allow an attacker to cause a denial of service (NULL pointer...
CVE-2019-11810 1 Linux 1 Linux Kernel 2019-06-07 7.8
An issue was discovered in the Linux kernel before 5.0.7. A NULL pointer dereference can occur when megasas_create_frame_pool() fails in megasas_alloc_cmds() in drivers/scsi/megaraid/megaraid_sas_base.c. This causes a Denial of Service, related...
CVE-2016-4959 1 Nvidia 1 Gpu Driver 2019-05-30 7.8
For the NVIDIA Quadro, NVS, and GeForce products, there is a Remote Desktop denial of service. A successful exploit of a vulnerable system will result in a kernel null pointer dereference, causing a blue screen crash.
CVE-2018-4024 1 Anker-in 1 Roav Dashcam A1 Firmware 2019-05-16 7.8
An exploitable denial-of-service vulnerability exists in the thumbnail display functionality of the NT9665X Chipset firmware, running on the Anker Roav A1 Dashcam, version RoavA1SWV1.9. A specially crafted packet can cause a null pointer...
CVE-2017-14626 2 Imagemagick, Canonical 2 Imagemagick, Ubuntu Linux 2019-05-14 7.5
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_decode in coders/sixel.c.
CVE-2017-14625 2 Imagemagick, Canonical 2 Imagemagick, Ubuntu Linux 2019-05-14 7.5
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_output_create in coders/sixel.c.
CVE-2017-14624 2 Imagemagick, Canonical 2 Imagemagick, Ubuntu Linux 2019-05-14 7.5
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function PostscriptDelegateMessage in coders/ps.c.
CVE-2017-14532 2 Imagemagick, Canonical 2 Imagemagick, Ubuntu Linux 2019-05-14 7.5
ImageMagick 7.0.7-0 has a NULL Pointer Dereference in TIFFIgnoreTags in coders/tiff.c.
CVE-2015-7068 1 Apple 5 Mac Os X, Iphone Os, Watchos and 2 more 2019-03-25 9.3
IOKit SCSI in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer dereference) via an app that provides...
CVE-2016-1813 1 Apple 5 Mac Os X, Iphone Os, Watchos and 2 more 2019-03-25 9.3
The IOAccelSharedUserClient2::page_off_resource method in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1 allows attackers to execute arbitrary code in a privileged context or cause a denial of service...
CVE-2017-18211 2 Imagemagick, Canonical 2 Imagemagick, Ubuntu Linux 2019-03-21 7.5
In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function saveBinaryCLProgram in magick/opencl.c because a program-lookup result is not checked, related to CacheOpenCLKernel.
CVE-2016-4777 1 Apple 6 Mac Os X, Iphone Os, Watch Os and 3 more 2019-03-13 9.3
The kernel in Apple iOS before 10, OS X before 10.12, tvOS before 10, and watchOS before 3 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (invalid pointer dereference) via a crafted app.
CVE-2018-5206 2 Irssi, Debian 2 Irssi, Debian Linux 2019-03-12 7.5
When the channel topic is set without specifying a sender, Irssi before 1.0.6 may dereference a NULL pointer.
CVE-2018-7548 3 Zsh Project, Canonical, Zsh 3 Zsh, Ubuntu Linux, Zsh 2019-03-05 7.5
In subst.c in zsh through 5.4.2, there is a NULL pointer dereference when using ${(PA)...} on an empty array result.
CVE-2017-3169 1 Apache 2 Httpd, Http Server 2019-02-07 7.5
In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, mod_ssl may dereference a NULL pointer when third-party modules call ap_hook_process_connection() during an HTTP request to an HTTPS port.
CVE-2018-18318 1 Qiku 1 360 Mobile Phone N6 Pro Firmware 2019-01-23 7.8
The /dev/block/mmcblk0rpmb driver kernel module on Qiku 360 Phone N6 Pro 1801-A01 devices allows attackers to cause a denial of service (NULL pointer dereference and device crash) via a crafted 0xc0d8b300 ioctl call.
CVE-2018-17127 1 Asus 1 Gt-ac5300 Firmware 2019-01-18 7.8
blocking_request.cgi on ASUS GT-AC5300 devices through 3.0.0.4.384_32738 allows remote attackers to cause a denial of service (NULL pointer dereference and device crash) via a request that lacks a timestap parameter.
CVE-2018-1000800 1 Zephyrproject 1 Zephyr 2018-11-02 7.5
zephyr-rtos version 1.12.0 contains a NULL base pointer reference vulnerability in sys_ring_buf_put(), sys_ring_buf_get() that can result in CPU Page Fault (error code 0x00000010). This attack appear to be exploitable via a malicious application...