CWE-476

Medium likelihood

NULL Pointer Dereference

Parent: CWE-710 - Improper Adherence to Coding Standards

The product dereferences a pointer that it expects to be valid but is NULL.

5,325 vulnerabilities with CWE-476
CVE-2018-3841 HIGH
Pixar Renderman IT Display Service 21.6 - Denial of Service via Network Packet Parsing
CVSS 7.5
CVE-2018-3840 HIGH
Pixar Renderman IT Display Service 21.6 - Denial of Service via Network Packet Parsing
CVSS 7.5
CVE-2018-12697 HIGH
GNU libiberty <2.30 - NULL Pointer Dereference
CVSS 7.5
CVE-2018-12648 HIGH
Exempi 2.4.5 - NULL Pointer Dereference in WEBP::GetLE32
CVSS 7.5
CVE-2018-0305 HIGH
Cisco FXOS and NX-OS - Denial of Service via Crafted Fabric Services Packet
CVSS 8.6
CVE-2018-10945 HIGH
Mongoose 6.11 - Denial of Service via HTTP Request Handling in mg_handle_cgi
CVSS 7.5
CVE-2018-12460 MEDIUM
FFmpeg 4.0 - Denial of Service via Crafted AVI to MPEG4 Conversion
CVSS 6.5
CVE-2018-12249 HIGH
mruby 1.4.1 - NULL Pointer Dereference in mrb_class_real
CVSS 7.5
CVE-2018-12247 HIGH
mruby 1.4.1 - NULL Pointer Dereference via .clone Usage
CVSS 7.5
CVE-2018-12102 MEDIUM
md4c 0.2.6 - Memory Corruption
CVSS 5.5
CVE-2018-1000200 MEDIUM
Linux Kernel 4.14-4.16 - Use After Free
CVSS 5.5
CVE-2018-11696 HIGH
libsass < 3.5.4 - NULL Pointer Dereference in Sass::Inspect::operator
CVSS 8.8
CVE-2018-11695 HIGH
libsass < 3.5.2 - NULL Pointer Dereference in Sass::Expand::operator
CVSS 8.8
CVE-2018-11694 HIGH
libsass < 3.5.4 - NULL Pointer Dereference in Sass::Functions::selector_append
CVSS 8.8
CVE-2018-11591 MEDIUM
Espruino < 1.98 - Denial of Service via NULL Pointer Dereference in Syntax Parser
CVSS 5.5
CVE-2018-10196 MEDIUM
Graphviz 2.40.1 - NULL Pointer Dereference
CVSS 5.5
CVE-2018-11359 HIGH
Wireshark 2.2.0-2.2.14 and 2.4.0-2.4.6 - Denial of Service via NULL Pointer Dereference in RRC Dissector
CVSS 7.5
CVE-2018-11356 HIGH
Wireshark 2.2.0-2.2.14 and 2.4.0-2.4.6 - Denial of Service via DNS SRV Record NULL Pointer Dereference
CVSS 7.5
CVE-2018-6963 MEDIUM
VMware Fusion 10.0-10.1.1 and Workstation 14.0-14.1.1 - Denial of Service via RPC Handler NULL Pointer Dereference
CVSS 5.5
CVE-2018-11256 MEDIUM
PoDoFo 0.9.5 - Denial of Service via Crafted PDF Document
CVSS 6.5
CVE-2018-11255 MEDIUM
PoDoFo 0.9.5 - Denial of Service via NULL Pointer Dereference in PdfPage::GetPageNumber()
CVSS 5.5
CVE-2018-1172 MEDIUM
Squid 3.5.27-20180318 - DoS via Null Pointer Dereference in ClientRequestContext::sslBumpAccessCheck()
CVSS 5.9
CVE-2018-11204 MEDIUM
HDF5 1.10.2 - Denial of Service via NULL Pointer Dereference in H5O__chunk_deserialize
CVSS 6.5
CVE-2018-11202 MEDIUM
HDF5 1.10.2 - Denial of Service via NULL Pointer Dereference in H5S_hyper_make_spans
CVSS 6.5
CVE-2018-10241 MEDIUM
SolarWinds Serv-U < 15.1.6 - Authenticated Denial of Service via Crafted Web Client URL
CVSS 6.5
Details
Vulnerabilities 5,325
Exploit Likelihood Medium