CWE-476

Medium likelihood

NULL Pointer Dereference

Parent: CWE-710 - Improper Adherence to Coding Standards

The product dereferences a pointer that it expects to be valid but is NULL.

5,324 vulnerabilities with CWE-476
CVE-2020-8011 HIGH
CA Unified Infrastructure Management <20.3 - Buffer Overflow
CVSS 7.5
CVE-2020-0021 MEDIUM
Android 10 - Denial of Service via Missing Package Dependency Test in PackageManagerService
CVSS 6.5
CVE-2020-8448 MEDIUM
OSSEC-HIDS 2.7-3.5.0 - Denial of Service via Crafted UNIX Domain Socket Messages
CVSS 5.5
CVE-2020-8002 MEDIUM
virglrenderer <= 0.8.1 - Denial of Service via Missing Compute Shader
CVSS 5.5
CVE-2020-7105 HIGH
hiredis < 0.14.0 - NULL Pointer Dereference in async.c and dict.c
CVSS 7.5
CVE-2020-7045 MEDIUM
Wireshark 3.0.0-3.0.7 - Denial of Service via BT ATT Dissector
CVSS 6.5
CVE-2020-6631 MEDIUM
GPAC 0.8.0 - NULL Pointer Dereference in gf_m2ts_stream_process_pmt
CVSS 5.5
CVE-2020-6630 MEDIUM
GPAC 0.8.0 - NULL Pointer Dereference in gf_isom_get_media_data_size
CVSS 5.5
CVE-2020-6629 MEDIUM
libming 0.4.8 - NULL Pointer Dereference in decompileGETURL2
CVSS 6.5
CVE-2020-6615 MEDIUM
GNU LibreDWG 0.9.3.2564 - NULL Pointer Dereference in dynapi.c
CVSS 6.5
CVE-2020-6611 MEDIUM
GNU LibreDWG 0.9.3.2564 - NULL Pointer Dereference in get_next_owned_entity
CVSS 6.5
CVE-2020-5183 HIGH
FTPGetter Professional 5.97.0.223 - Denial of Service via Crafted String
CVSS 7.5
CVE-2019-14584 HIGH
Tianocore EDK2 - Privilege Escalation
CVSS 7.8
CVE-2019-12067 MEDIUM
QEMU - Denial of Service via NULL Pointer Dereference in ahci_commit_buf
CVSS 6.5
CVE-2019-25014 MEDIUM
Istio < 1.5.0-alpha.0 - Denial of Service via NULL Pointer Dereference in Pilot API
CVSS 6.5
CVE-2019-12412 HIGH
Apache libapreq2 2.07-2.13 - Denial of Service via Multipart Parser Null Pointer Dereference
CVSS 7.5
CVE-2019-8588 HIGH
AirPort Base Station Firmware < 7.8.1 - Denial of Service via Null Pointer Dereference
CVSS 7.5
CVE-2019-8572 CRITICAL
AirPort Base Station Firmware < 7.8.1 - Remote Code Execution via Null Pointer Dereference
CVSS 9.8
CVE-2019-20919 MEDIUM
Perl DBI <1.643 - Memory Corruption
CVSS 4.7
CVE-2019-20917 MEDIUM
InspIRCd <2.0.28-3.3.0 - Use After Free
CVSS 6.5
CVE-2019-20914 CRITICAL
GNU LibreDWG < 0.9.3 - NULL Pointer Dereference in dwg_encode_common_entity_handle_data
CVSS 9.8
CVE-2019-20909 HIGH
GNU LibreDWG < 0.9.3 - NULL Pointer Dereference in dwg_encode_LWPOLYLINE
CVSS 7.5
CVE-2019-20829 HIGH
Foxit PhantomPDF and Reader < 9.6 - NULL Pointer Dereference via FXSYS_wcslen in Epub File
CVSS 7.5
CVE-2019-20826 HIGH
Foxit PhantomPDF and Reader for Mac < 3.3 - NULL Pointer Dereference
CVSS 7.5
CVE-2019-20824 HIGH
Foxit PhantomPDF < 8.3.11 - NULL Pointer Dereference via FXSYS_wcslen in Epub File
CVSS 7.5
Details
Vulnerabilities 5,324
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits