CWE-476

Medium likelihood

NULL Pointer Dereference

Parent: CWE-710 - Improper Adherence to Coding Standards

The product dereferences a pointer that it expects to be valid but is NULL.

5,323 vulnerabilities with CWE-476
CVE-2020-14323 MEDIUM
Samba < 4.11.15 - Denial of Service via Winbind Null Pointer Dereference
CVSS 5.5
CVE-2020-27675 MEDIUM
Linux Kernel < 5.9.1 - Use-After-Free in Xen Event Channel Handling
CVSS 4.7
CVE-2020-24421 MEDIUM
Adobe InDesign < 15.1.2 - Denial of Service via Malformed .indd File
CVSS 5.5
CVE-2020-1656 HIGH
Juniper Junos - Denial of Service and Remote Code Execution via DHCPv6 Relay-Agent Service
CVSS 8.8
CVE-2020-25858 HIGH
Qualcomm Mobile Access Point - Denial of Service via Unvalidated strstr/strchr Return Value
CVSS 7.5
CVE-2020-9746 HIGH
Adobe Flash Player < 32.0.0.433 - NULL Pointer Dereference via Malicious HTTP Response
CVSS 7.0
CVE-2020-25866 HIGH
Wireshark 3.0.0-3.0.13 and 3.2.0-3.2.6 - Denial of Service via BLIP Protocol Dissector NULL Pointer Dereference
CVSS 7.5
CVE-2020-25743 LOW
QEMU < 5.1.1 - NULL Pointer Dereference in IDE PCI Controller
CVSS 3.2
CVE-2020-25742 LOW
QEMU < 5.1.1 - NULL Pointer Dereference in pci_change_irq_level
CVSS 3.2
CVE-2020-5989 MEDIUM
NVIDIA Virtual GPU Manager - Use After Free
CVSS 5.5
CVE-2020-25741 LOW
QEMU 5.0.0 - NULL Pointer Dereference in fdctrl_write_data
CVSS 3.2
CVE-2020-26536 MEDIUM
Foxit Reader & PhantomPDF <10.1 - Info Disclosure
CVSS 5.5
CVE-2020-15209 MEDIUM
TensorFlow-Lite <2.3.1 - Code Injection
CVSS 5.9
CVE-2020-15204 MEDIUM
TensorFlow <1.15.4, 2.0.3, 2.1.2, 2.2.1, 2.3.1 - Use After Free
CVSS 5.3
CVE-2020-15191 MEDIUM
Tensorflow <2.2.1-2.3.1 - Use After Free
CVSS 5.3
CVE-2020-15190 MEDIUM
Tensorflow <2.3.1 - Memory Corruption
CVSS 5.3
CVE-2020-3552 HIGH
Cisco Aironet Access Points Software - Unauthenticated Denial of Service via Ethernet Packet Handling
CVSS 7.4
CVE-2020-3407 HIGH
Cisco IOS XE - Unauthenticated Denial of Service via RESTCONF/NETCONF-YANG ACL Processing
CVSS 8.6
CVE-2020-25821 HIGH
peg-markdown 0.4.14 - NULL Pointer Dereference in process_raw_blocks
CVSS 7.5
CVE-2020-15964 HIGH
Google Chrome < 85.0.4183.121 - Remote Code Execution via Media Data Validation
CVSS 8.8
CVE-2020-24890 MEDIUM
libraw 20.0 - Null Pointer Dereference in TIFF IFD Parser
CVSS 5.5
CVE-2020-25285 MEDIUM
Linux Kernel < 5.8.8 - Race Condition in hugetlb sysctl Handlers
CVSS 6.4
CVE-2020-11158 HIGH
Qualcomm IPS PDF - Denial of Service via PDF Font Array Null Pointer Dereference
CVSS 7.5
CVE-2020-11122 MEDIUM
Snapdragon Auto/Mobile/CIO - Null Pointer Exception
CVSS 5.5
CVE-2020-24659 HIGH
GnuTLS <3.6.15 - NULL Pointer Dereference
CVSS 7.5
Details
Vulnerabilities 5,323
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits