CWE-252

Low likelihood

Unchecked Return Value

Parent: CWE-754 - Improper Check for Unusual or Exceptional Conditions

The product does not check the return value from a method or function, which can prevent it from detecting unexpected states and conditions.

171 vulnerabilities with CWE-252
CVE-2019-15942 HIGH
FFmpeg < 4.2 - Uninitialized Memory Access in h2645_parse
CVSS 8.8
CVE-2019-12107 HIGH
miniupnpd < 2.1 - Information Disclosure via upnp_event_prepare snprintf Return Value
CVSS 7.5
CVE-2019-10902 HIGH
Wireshark 3.0.0 - Denial of Service in TSDNS Dissector
CVSS 7.5
CVE-2019-9704 MEDIUM
Vixie Cron < 3.0pl1-133 - Denial of Service via Large Crontab File
CVSS 5.5
CVE-2018-20216 HIGH
QEMU < 3.1.0 - Denial of Service via Unchecked Return Value in pvrdma_dev_ring
CVSS 7.5
CVE-2018-16643 MEDIUM
ImageMagick 7.0.8-4 - Denial of Service via Unchecked fputc Return Value
CVSS 6.5
CVE-2018-14622 HIGH
libtirpc <0.3.3-rc3 - Use After Free
CVSS 7.5
CVE-2018-14367 HIGH
Wireshark 2.4.0-2.4.7 - Denial of Service in CoAP Protocol Dissector
CVSS 7.5
CVE-2017-0774 MEDIUM
Android 4.4.4 5.0.2 5.1.1 6.0 6.0.1 7.0 7.1.1 7.1.2 - Denial of Service in Media Framework
CVSS 5.5
CVE-2017-0720 HIGH
Android 5.0.2 5.1.1 6.0 6.0.1 7.0 7.1.1 7.1.2 - Remote Code Execution in Media Framework libhevc
CVSS 7.8
CVE-2017-0599 MEDIUM
Android 6.0 6.0.1 7.0 7.1.1 7.1.2 - Denial of Service in libhevc
CVSS 5.5
CVE-2017-6964 HIGH
eject <2.1.5+deb1+cvs20081104-13.1 - Code Injection
CVSS 7.8
CVE-2016-10061 MEDIUM
ImageMagick < 6.9.4-8 - Denial of Service via TIFF GROUP4 Image Handling
CVSS 6.5
CVE-2016-10060 MEDIUM
ImageMagick < 6.9.4-1 - Denial of Service via Unchecked fputc Return Value
CVSS 6.5
CVE-2010-0211 CRITICAL
OpenLDAP 2.4.22 - Denial of Service via Invalid UTF-8 RDN String
CVSS 9.8
CVE-2009-0265 HIGH
ISC BIND < 9.6.0 - Certificate Chain Validation Bypass via OpenSSL EVP_VerifyFinal
CVSS 7.5
CVE-2007-5191
util-linux/loop-aes-utils - Privilege Escalation
CVE-2007-3798 CRITICAL
tcpdump <3.9.6 - RCE
CVSS 9.8
CVE-2005-4360
Microsoft Internet Information Services 5.1 - Remote Code Execution via DLL URL Parser
CVE-2002-1372 HIGH
CUPS 1.1.14-1.1.17 - Denial of Service via Unchecked File Descriptor Return Values
CVSS 7.5
CVE-1999-0199 CRITICAL
GNU C Library <2.2 - Info Disclosure
CVSS 9.8
Details
Vulnerabilities 171
Exploit Likelihood Low
Links
MITRE CWE Entry Search this CWE With Exploits