CWE-476

Medium likelihood

NULL Pointer Dereference

Parent: CWE-710 - Improper Adherence to Coding Standards

The product dereferences a pointer that it expects to be valid but is NULL.

5,325 vulnerabilities with CWE-476
CVE-2018-9165 MEDIUM
libming < 0.4.8 - Denial of Service via Crafted SWF File
CVSS 6.5
CVE-2018-9151 MEDIUM
Kingsoft Internet Security 9+ - Denial of Service via KWatch3.sys IOCTL 0x80030030
CVSS 5.5
CVE-2018-9132 MEDIUM
libming 0.4.8 - Denial of Service via Crafted SWF File
CVSS 6.5
CVE-2018-1302 MEDIUM
Apache HTTP Server < 2.4.30 - NULL Pointer Dereference in HTTP/2 Stream Handling
CVSS 5.9
CVE-2018-7525 MEDIUM
Omron CX-Supervisor <3.30 - Memory Corruption
CVSS 5.3
CVE-2018-7262 HIGH
Ceph < 12.2.3 and 13.x through 13.0.1 - Denial of Service via Malformed HTTP Headers
CVSS 7.5
CVE-2018-8740 HIGH
SQLite < 3.22.0 - NULL Pointer Dereference via Corrupted Schema
CVSS 7.5
CVE-2018-1000121 HIGH
curl <7.59 - Denial of Service
CVSS 7.5
CVE-2018-1050 MEDIUM
Canonical Ubuntu Linux < 4.5.16 - NULL Pointer Dereference
CVSS 4.3
CVE-2018-8043 MEDIUM
Linux Kernel < 4.15.8 - Denial of Service via unimac_mdio_probe NULL Pointer Dereference
CVSS 5.5
CVE-2018-7999 HIGH
graphite2 1.3.11 - Denial of Service via NULL Pointer Dereference in Segment.cpp
CVSS 8.8
CVE-2018-7998 HIGH
libvips < 8.6.3 - Denial of Service via Race Condition in vips_region_generate
CVSS 7.5
CVE-2018-7872 MEDIUM
libming 0.4.8 - Denial of Service via Invalid Memory Address Dereference in getName Function
CVSS 6.5
CVE-2018-7870 MEDIUM
libming 0.4.8 - Denial of Service via Invalid Memory Address Dereference in getString
CVSS 6.5
CVE-2018-7866 MEDIUM
libming 0.4.8 - Denial of Service via NULL Pointer Dereference in newVar3
CVSS 6.5
CVE-2018-5729 MEDIUM
MIT Kerberos 5 >= 1.6 - Authenticated Denial of Service via Tagged Data in LDAP Database Module
CVSS 4.7
CVE-2018-7731 MEDIUM
exempi < 2.4.4 - NULL Pointer Dereference in WEBP::VP8XChunk
CVSS 5.5
CVE-2018-5449 MEDIUM
Moxa OnCell G3100-HSPA <1.4 Build 16062919 - DoS
CVSS 6.5
CVE-2018-0490 HIGH
Tor < 0.2.9.14 - Denial of Service via Misformatted Relay Descriptor
CVSS 7.5
CVE-2018-7642 MEDIUM
GNU Binutils - Denial of Service via Crafted ELF File in BFD Library
CVSS 5.5
CVE-2018-1066 MEDIUM
Linux Kernel < 4.11 - Denial of Service via CIFS NTLMSSP Setup Negotiation
CVSS 6.5
CVE-2018-1065 MEDIUM
Linux Kernel < 4.15.7 - Denial of Service via Netfilter Rule Blob NULL Pointer Dereference
CVSS 4.7
CVE-2018-7570 MEDIUM
GNU Binutils - Denial of Service via RELRO Segment Handling in BFD Library
CVSS 5.5
CVE-2018-7548 CRITICAL
zsh < 5.4.2 - NULL Pointer Dereference via Empty Array Parameter Expansion
CVSS 9.8
CVE-2018-7542 MEDIUM
Xen 4.8.0-4.10.0 - Denial of Service via Local APIC Mishandling
CVSS 6.5
Details
Vulnerabilities 5,325
Exploit Likelihood Medium