Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-457

CWE-457

High likelihood

Use of Uninitialized Variable

Parent: CWE-908 - Use of Uninitialized Resource

The code uses a variable that has not been initialized, leading to unpredictable or unintended results.

172 vulnerabilities with CWE-457

CVE-2025-5047 HIGH

Autodesk AutoCAD - Uninitialized Variable

CVE-2025-54874 CRITICAL

OpenJPEG <2.5.4 - Memory Corruption

CVE-2025-8027 MEDIUM

Firefox < 115.26.0, 115.26-115.*, < 128.13.0, 128.13-128.*, < 140.1, >=141 - Uninitialized Variable Use in IonMonkey-JIT

CVE-2025-53644 CRITICAL

OpenCV 4.10.0-4.11.0 - Arbitrary Heap Buffer Write via Crafted JPEG Image

CVE-2025-6974 HIGH

SOLIDWORKS eDrawings 2025 JT File - Uninitialized Variable Code Execution

CVE-2025-2520 HIGH

Honeywell Experion PKS 520.1-520.2 TCU9 and 530-530 TCU3 - Denial of Service via Uninitialized Pointer Dereference

CVE-2025-20271 HIGH

Cisco Meraki MX Firmware - Unauthenticated Denial of Service via Crafted HTTPS Requests

CVE-2025-5777 HIGH KEV

Citrix NetScaler ADC/Gateway 12.1-12.1-55.328, 13.1-13.1-37.235, 13.1-13.1-58.32 - Out-of-bounds Read

CVE-2025-26383 MEDIUM

iSTAR Configuration Utility - Info Disclosure

CVE-2025-5749 HIGH

WOLFBOX Level 2 EV Charger Firmware - Unauthenticated Authentication Bypass via Uninitialized BLE Encryption Key

CVE-2025-40575 MEDIUM

SCALANCE LPE9403 - Unauthenticated RCE

CVE-2025-2287 HIGH

Rockwell Automation Arena < 16.20.09 - Local Code Execution via Malicious DOE File

CVE-2025-2286 HIGH

Rockwell Automation Arena < 16.20.09 - Local Code Execution via Malicious DOE File

CVE-2025-2285 HIGH

Rockwell Automation Arena < 16.20.09 - Local Code Execution via Malicious DOE File

CVE-2025-20212 HIGH

Cisco Meraki MX Firmware - Authenticated Denial of Service via Crafted SSL VPN Session Attributes

CVE-2025-1650 HIGH

AutoCAD 2022 < 2022.1.6 - Use-After-Free via Malicious CATPRODUCT File

CVE-2025-1649 HIGH

AutoCAD 2022 < 2022.1.6 - Use-After-Free via Malicious CATPRODUCT File

CVE-2025-1427 HIGH

AutoCAD 2022 < 2022.1.6 - Use-After-Free via Malicious CATPRODUCT File

CVE-2025-2014 HIGH

Ashlar-Vellum Cobalt - Remote Code Execution via VS File Parsing

CVE-2025-2024 HIGH

Trimble SketchUp < 2025.0 - Remote Code Execution via SKP File Parsing

CVE-2025-20638 MEDIUM

Android - Local Information Disclosure via Uninitialized Heap Data Read

CVE-2024-56446 MEDIUM

Notification Module - Info Disclosure

CVE-2024-47540 CRITICAL

GStreamer < 1.24.10 - Use-After-Free in Matroska Demuxer

CVE-2024-9717 HIGH

Trimble SketchUp Viewer - Remote Code Execution via SKP File Parsing

CVE-2024-8842 HIGH

PDF-XChange Editor 10.3.0.386-10.4.0.388 - Remote Code Execution via RTF File Parsing

Previous Page 4 of 7 Next

Details

Vulnerabilities 172

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy