Vulnerabilities (CVE)

CWE filter

CWE-476

Filter

142 total CVE
CVE Vendors Products Updated CVSS
CVE-2015-9000 1 Google 1 Android 2017-07-11 9.3
In TrustZone an untrusted pointer dereference vulnerability can potentially occur in a DRM routine in all Android releases from CAF using the Linux kernel.
CVE-2015-9027 1 Google 1 Android 2017-07-08 9.3
In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in WideVine DRM.
CVE-2015-9026 1 Google 1 Android 2017-07-08 9.3
In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in WideVine DRM.
CVE-2015-9020 1 Google 1 Android 2017-07-08 9.3
In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in the unlocking of memory.
CVE-2014-9967 1 Google 1 Android 2017-07-08 9.3
In all Android releases from CAF using the Linux kernel, an untrusted pointer dereference vulnerability exists in WideVine DRM.
CVE-2014-9943 1 Google 1 Android 2017-06-09 9.3
In Core Kernel in all Android releases from CAF using the Linux kernel, a Null Pointer Dereference vulnerability could potentially exist.
CVE-2014-9949 1 Google 1 Android 2017-06-08 9.3
In TrustZone in all Android releases from CAF using the Linux kernel, an Untrusted Pointer Dereference vulnerability could potentially exist.
CVE-2017-9051 1 Libav 1 Libav 2017-05-25 7.5
libav before 12.1 is vulnerable to an invalid read of size 1 due to NULL pointer dereferencing in the nsv_read_chunk function in libavformat/nsvdec.c.
CVE-2016-6561 1 Illumos 1 Illumos 2017-05-02 7.8
illumos smbsrv NULL pointer dereference allows system crash.
CVE-2016-8723 1 Moxa 1 Awk-3131a Firmware 2017-04-20 7.8
An exploitable null pointer dereference exists in the Web Application functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. Any HTTP GET request not preceded by an '/' will cause a segmentation fault in the web server. An...
CVE-2016-8726 1 Moxa 1 Awk-3131a Firmware 2017-04-20 7.8
An exploitable null pointer dereference vulnerability exists in the Web Application /forms/web_runScript iw_filename functionality of Moxa AWK-3131A Wireless Access Point running firmware 1.1. An HTTP POST request with a blank line in the header...
CVE-2017-5668 1 Bitlbee 2 Bitlbee-libpurple, Bitlbee 2017-03-16 7.5
bitlbee-libpurple before 3.5.1 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) and possibly execute arbitrary code via a file transfer request for a contact that is not in the contact list. NOTE: this...
CVE-2016-4780 1 Apple 1 Mac Os X 2017-02-21 9.3
An issue was discovered in certain Apple products. macOS before 10.12.1 is affected. The issue involves the "Thunderbolt" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (NULL pointer...
CVE-2016-6604 1 Samsung 1 Exynos Fimg2d 2017-02-07 10.0
NULL pointer dereference in Samsung Exynos fimg2d driver for Android L(5.0/5.1) and M(6.0) allows attackers to have unspecified impact via unknown vectors.
CVE-2014-8241 2 Tigervnc, Redhat 5 Enterprise Linux Server, Tigervnc, Enterprise Linux Desktop and 2 more 2016-12-20 7.5
XRegion in TigerVNC allows remote VNC servers to cause a denial of service (NULL pointer dereference) by leveraging failure to check a malloc return value, a similar issue to CVE-2014-6052.
CVE-2016-5689 2 Imagemagick, Oracle 2 Imagemagick, Solaris 2016-12-16 7.5
The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact by leveraging lack of NULL pointer checks.
CVE-2016-5690 2 Imagemagick, Oracle 2 Imagemagick, Solaris 2016-12-16 7.5
The ReadDCMImage function in DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact via vectors involving the for statement in computing the pixel scaling table.
CVE-2016-6692 1 Google 1 Android 2016-12-06 7.5
drivers/video/msm/mdss/mdss_mdp_pp.c in the Qualcomm MDSS driver in Android before 2016-10-05 allows attackers to cause a denial of service (invalid pointer access) or possibly have unspecified other impact via unknown vectors, aka Qualcomm...
CVE-2016-9313 1 Linux 1 Linux Kernel 2016-11-30 9.3
security/keys/big_key.c in the Linux kernel before 4.8.7 mishandles unsuccessful crypto registration in conjunction with successful key-type registration, which allows local users to cause a denial of service (NULL pointer dereference and panic)...
CVE-2016-7160 1 Samsung 1 Samsung Mobile 2016-11-28 7.8
A vulnerability on Samsung Mobile M(6.0) devices exists because external access to SystemUI activities is not properly restricted, leading to a SystemUI crash and device restart, aka SVE-2016-6248.