CWE-476

Medium likelihood

NULL Pointer Dereference

Parent: CWE-710 - Improper Adherence to Coding Standards

The product dereferences a pointer that it expects to be valid but is NULL.

5,325 vulnerabilities with CWE-476
CVE-2018-14612 MEDIUM
Linux kernel <4.17.10 - Use After Free
CVSS 5.5
CVE-2018-14609 MEDIUM
Linux kernel <4.17.10 - Info Disclosure
CVSS 5.5
CVE-2018-6972 MEDIUM
VMware Workstation 14.0-14.1.1 and Fusion 10.0-10.1.1 - Denial of Service via RPC Handler NULL Pointer Dereference
CVSS 6.5
CVE-2018-14588 HIGH
Bento4 <1.5.1-624 - Memory Corruption
CVSS 7.5
CVE-2018-14562 CRITICAL
thunlp/thulac < 2018-02-25 - NULL Pointer Dereference in BasicModel Class
CVSS 9.8
CVE-2018-14543 MEDIUM
Bento4 1.5.1-624 - Denial of Service via Crafted MP4 File
CVSS 5.5
CVE-2018-5030 HIGH
Adobe Acrobat and Reader DC < 15.006.30418, 15.008.20082-18.011.20040 - RCE via Untrusted Pointer Dereference
CVSS 8.8
CVE-2018-5012 HIGH
Adobe Acrobat and Reader DC < 15.006.30418, 15.008.20082-18.011.20040 - Untrusted Pointer Dereference
CVSS 8.8
CVE-2018-14471 MEDIUM
GNU LibreDWG < 0.6 - Denial of Service via Crafted DWG File
CVSS 6.5
CVE-2018-14448 MEDIUM
Untrunc <2018-06-07 - Memory Corruption
CVSS 6.5
CVE-2018-14332 MEDIUM
Clementine Music Player 1.3.1 - Memory Corruption
CVSS 5.5
CVE-2018-14404 MEDIUM
libxml2 <2.9.8 - DoS
CVSS 6.5
CVE-2018-8011 HIGH
Apache HTTP Server <2.4.34 - Use After Free
CVSS 7.5
CVE-2018-13458 MEDIUM
Nagios Core < 4.4.1 - Denial of Service via Crafted UNIX Socket Payload
CVSS 5.5
CVE-2018-13457 MEDIUM
Nagios Core < 4.4.1 - Denial of Service via NULL Pointer Dereference in qh_echo
CVSS 5.5
CVE-2018-13441 MEDIUM
Nagios < 4.4.1 - Denial of Service via qh_help NULL Pointer Dereference
CVSS 5.5
CVE-2018-4987 CRITICAL
Adobe Acrobat DC < 15.006.30417, 15.008.20082-18.011.20038 - Untrusted Pointer Dereference
CVSS 9.8
CVE-2018-13440 MEDIUM
audiofile 0.3.6 - Denial of Service via Crafted CAF File
CVSS 6.5
CVE-2018-3570 HIGH
Android - NULL Pointer Dereference in CPUidle Driver
CVSS 7.8
CVE-2018-13303 MEDIUM
FFmpeg - Denial of Service via Crafted AVI to MPEG4 Conversion
CVSS 6.5
CVE-2018-13301 MEDIUM
FFmpeg 4.0.1 - Denial of Service via Crafted AVI to MPEG4 Conversion
CVSS 6.5
CVE-2018-13250 MEDIUM
libming 0.4.8 - Denial of Service via Crafted SWF File
CVSS 6.5
CVE-2018-13094 MEDIUM
Linux Kernel < 4.17.3 - NULL Pointer Dereference in xfs_da_shrink_inode
CVSS 5.5
CVE-2018-13093 MEDIUM
Linux Kernel < 4.17.3 - Denial of Service via XFS Pathwalk on Corrupted Image
CVSS 5.5
CVE-2018-12928 MEDIUM
Linux Kernel 4.15.0 - NULL Pointer Dereference in hfs_ext_read_extent
CVSS 5.5
Details
Vulnerabilities 5,325
Exploit Likelihood Medium