CVE & Exploit Intelligence Database

CVE-2021-28902 7.5 HIGH EPSS 0.00

In function read_yin_container() in libyang <= v1.0.225, it doesn't check whether the value of retval->ext[r] is NULL. In some cases, it can be NULL, which leads to the operation of retval->ext[r]->flags that results in a crash.

CWE-252 May 20, 2021

CVE-2021-21219 5.5 MEDIUM EPSS 0.01

Uninitialized data in PDFium in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted PDF file.

CWE-252 Apr 26, 2021

CVE-2021-21217 5.5 MEDIUM EPSS 0.01

Uninitialized data in PDFium in Google Chrome prior to 90.0.4430.72 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted PDF file.

CWE-252 Apr 26, 2021

CVE-2021-28875 7.5 HIGH EPSS 0.00

In the standard library in Rust before 1.50.0, read_to_end() does not validate the return value from Read in an unsafe context. This bug could lead to a buffer overflow.

CWE-252 Apr 11, 2021

CVE-2020-12372 5.5 MEDIUM EPSS 0.00

Unchecked return value in some Intel(R) Graphics Drivers before version 26.20.100.8141 may allow a privileged user to potentially enable a denial of service via local access.

CWE-252 Feb 17, 2021

CVE-2021-26958 8.8 HIGH EPSS 0.01

An issue was discovered in the xcb crate through 2021-02-04 for Rust. It has a soundness violation because transmutation to the wrong type can happen after xcb::base::cast_event uses std::mem::transmute to return a reference to an arbitrary type.

CWE-252 Feb 09, 2021

CVE-2021-26955 9.8 CRITICAL EPSS 0.01

An issue was discovered in the xcb crate through 2021-02-04 for Rust. It has a soundness violation because xcb::xproto::GetAtomNameReply::name() calls std::str::from_utf8_unchecked() on unvalidated bytes from an X server.

CWE-252 Feb 09, 2021

CVE-2019-15523 5.3 MEDIUM EPSS 0.01

An issue was discovered in LINBIT csync2 through 2.0. It does not correctly check for the return value GNUTLS_E_WARNING_ALERT_RECEIVED of the gnutls_handshake() function. It neglects to call this function again, as required by the design of the API.

CWE-252 Dec 30, 2020

CVE-2020-17533 8.1 HIGH 1 PoC Analysis EPSS 0.05

Apache Accumulo versions 1.5.0 through 1.10.0 and version 2.0.0 do not properly check the return value of some policy enforcement functions before permitting an authenticated user to perform certain administrative operations. Specifically, the return values of the 'canFlush' and 'canPerformSystemActions' security functions are not checked in some instances, therefore allowing an authenticated user with insufficient permissions to perform the following actions: flushing a table, shutting down Accumulo or an individual tablet server, and setting or removing system-wide Accumulo configuration properties.

CWE-252 Dec 29, 2020

CVE-2020-5359 5.8 MEDIUM EPSS 0.00

Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to an Unchecked Return Value Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to modify and corrupt the encrypted data.

CWE-544 Dec 16, 2020

CVE-2020-27898 5.5 MEDIUM EPSS 0.00

A denial of service issue was addressed with improved state handling. This issue is fixed in macOS Big Sur 11.0.1. An attacker may be able to bypass Managed Frame Protection.

CWE-252 Dec 08, 2020

CVE-1999-0199 9.8 CRITICAL EPSS 0.01

manual/search.texi in the GNU C Library (aka glibc) before 2.2 lacks a statement about the unspecified tdelete return value upon deletion of a tree's root, which might allow attackers to access a dangling pointer in an application whose developer was unaware of a documentation update from 1999.

CWE-252 Oct 06, 2020

CVE-2020-15191 5.3 MEDIUM 1 Writeup EPSS 0.00

In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes an invalid argument to `dlpack.to_dlpack` the expected validations will cause variables to bind to `nullptr` while setting a `status` variable to the error condition. However, this `status` argument is not properly checked. Hence, code following these methods will bind references to null pointers. This is undefined behavior and reported as an error if compiling with `-fsanitize=null`. The issue is patched in commit 22e07fb204386768e5bcbea563641ea11f96ceb8 and is released in TensorFlow versions 2.2.1, or 2.3.1.

CWE-252 Sep 25, 2020

CVE-2020-4531 5.3 MEDIUM EPSS 0.00

IBM Business Automation Workflow 18.0, 19.0, and 20.0 and IBM Business Process Manager 8.0, 8.5, and 8.6 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be used in further attacks against the system. IBM X-Force ID: 182715.

CWE-252 Sep 25, 2020

CVE-2020-6152 7.8 HIGH EPSS 0.00

A code execution vulnerability exists in the DICOM parse_dicom_meta_info functionality of Accusoft ImageGear 19.7. A specially crafted malformed file can cause an out-of-bounds write. An attacker can trigger this vulnerability by providing a victim with a malicious DICOM file.

CWE-252 Sep 01, 2020

CVE-2020-6078 7.5 HIGH EPSS 0.00

An exploitable denial-of-service vulnerability exists in the message-parsing functionality of Videolabs libmicrodns 0.1.0. When parsing mDNS messages in mdns_recv, the return value of the mdns_read_header function is not checked, leading to an uninitialized variable usage that eventually results in a null pointer dereference, leading to service crash. An attacker can send a series of mDNS messages to trigger this vulnerability.

CWE-252 Mar 24, 2020

CVE-2019-15900 9.8 CRITICAL 1 Writeup EPSS 0.00

An issue was discovered in slicer69 doas before 6.2 on certain platforms other than OpenBSD. On platforms without strtonum(3), sscanf was used without checking for error cases. Instead, the uninitialized variable errstr was checked and in some cases returned success even if sscanf failed. The result was that, instead of reporting that the supplied username or group name did not exist, it would execute the command as root.

CWE-863 Oct 18, 2019

CVE-2019-17178 7.5 HIGH 1 Writeup EPSS 0.01

HuffmanTree_makeFromFrequencies in lodepng.c in LodePNG through 2019-09-28, as used in WinPR in FreeRDP and other products, has a memory leak because a supplied realloc pointer (i.e., the first argument to realloc) is also used for a realloc return value.

CWE-252 Oct 04, 2019

CVE-2019-9372 6.5 MEDIUM EPSS 0.00

In libskia, there is a possible crash due to a missing null check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-132782448

CWE-252 Sep 27, 2019

CVE-2019-15942 8.8 HIGH EPSS 0.01

FFmpeg through 4.2 has a "Conditional jump or move depends on uninitialised value" issue in h2645_parse because alloc_rbsp_buffer in libavcodec/h2645_parse.c mishandles rbsp_buffer.

CWE-252 Sep 05, 2019