CWE-476

Medium likelihood

NULL Pointer Dereference

Parent: CWE-710 - Improper Adherence to Coding Standards

The product dereferences a pointer that it expects to be valid but is NULL.

5,321 vulnerabilities with CWE-476
CVE-2021-32269 MEDIUM
gpac < 1.0.1 - Denial of Service via NULL Pointer Dereference in ilst_item_box_dump
CVSS 5.5
CVE-2021-1939 HIGH
Qualcomm APQ8009 Firmware - Null Pointer Dereference via Preemption Feature Toggle
CVSS 8.4
CVE-2021-34798 HIGH
Apache HTTP Server < 2.4.48 - NULL Pointer Dereference
CVSS 7.5
CVE-2021-38177 HIGH
SAP CommonCryptoLib <8.5.38 - Memory Corruption
CVSS 7.5
CVE-2021-32139 MEDIUM
GPAC 1.0.1 - Denial of Service via NULL Pointer Dereference in gf_isom_vp_config_get
CVSS 5.5
CVE-2021-32138 MEDIUM
GPAC 1.0.1 - Denial of Service via NULL Pointer Dereference in DumpTrackInfo
CVSS 5.5
CVE-2021-32135 MEDIUM
GPAC 1.0.1 - Denial of Service via Crafted MP4 File in MP4Box
CVSS 5.5
CVE-2021-32132 MEDIUM
GPAC 1.0.1 - Denial of Service via Crafted MP4Box File
CVSS 5.5
CVE-2021-32134 MEDIUM
GPAC 1.0.1 - Denial of Service via NULL Pointer Dereference in gf_odf_desc_copy
CVSS 5.5
CVE-2021-25462 LOW
NPU driver <SMR Sep-2021 Release 1 - Memory Corruption
CVSS 3.3
CVE-2021-25458 LOW
ION driver <SMR Sep-2021 Release 1 - Memory Corruption
CVSS 3.3
CVE-2021-30294 HIGH
Snapdragon Auto-Snapdragon Industrial IOT - Memory Corruption
CVSS 8.4
CVE-2021-30290 HIGH
Qualcomm Firmware - Null Pointer Dereference via Timeline Fence Race Condition
CVSS 8.4
CVE-2021-1946 CRITICAL
Qualcomm Snapdragon Firmware - Null Pointer Dereference via Crafted SDP Body
CVSS 9.8
CVE-2021-1935 HIGH
Qualcomm APQ8009 Firmware - Null Pointer Dereference during Key Import
CVSS 7.1
CVE-2021-34737 MEDIUM
Cisco IOS XR < 7.3.2 - Unauthenticated Denial of Service via Malformed DHCPv4 Message
CVSS 5.8
CVE-2021-30698 HIGH
Safari < 14.1.1 - Denial of Service via Null Pointer Dereference
CVSS 7.5
CVE-2021-39251 HIGH
NTFS-3G < 2021.8.22 - Denial of Service via Crafted NTFS Image
CVSS 7.8
CVE-2021-22792 HIGH
Modicon M340 and M580 - Denial of Service via Crafted Project File
CVSS 7.5
CVE-2021-28601 LOW
Adobe After Effects < 18.2 - Unauthenticated Denial of Service via Crafted File Parsing
CVSS 3.3
CVE-2021-37750 MEDIUM
MIT Kerberos 5 < 1.18.5 and 1.19.x < 1.19.3 - NULL Pointer Dereference in KDC FAST Inner Body
CVSS 6.5
CVE-2021-35985 MEDIUM
Acrobat Reader DC <2021.005.20054 - DoS
CVSS 5.5
CVE-2021-35984 MEDIUM
Acrobat Reader DC <2021.005.20054 - DoS
CVSS 5.5
CVE-2021-37689 HIGH
TensorFlow 2.3.0-2.3.3 - Denial of Service via MLIR L2NormalizeReduceAxis Optimization
CVSS 7.8
CVE-2021-37688 HIGH
TensorFlow 2.3.0-2.3.3, 2.4.0-2.4.2, 2.5.0 - Denial of Service via Null Pointer Dereference
CVSS 7.8
Details
Vulnerabilities 5,321
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits