CWE-476

Medium likelihood

NULL Pointer Dereference

Parent: CWE-710 - Improper Adherence to Coding Standards

The product dereferences a pointer that it expects to be valid but is NULL.

5,326 vulnerabilities with CWE-476
CVE-2017-17123 MEDIUM
GNU Binutils - Denial of Service via Crafted COFF File
CVSS 5.5
CVE-2017-17113 MEDIUM
IKARUS anti-virus <2.16.15 - Use After Free
CVSS 5.5
CVE-2017-8820 HIGH
Tor < 0.2.5.16 - NULL Pointer Dereference
CVSS 7.5
CVE-2017-15116 MEDIUM
Linux kernel < 4.2 - Denial of Service via NULL Pointer Dereference in rngapi_reset
CVSS 5.5
CVE-2017-17050 HIGH
TG Soft Vir.IT eXplorer Lite <8.5.42 - DoS
CVSS 7.8
CVE-2017-17049 HIGH
TG Soft Vir.IT eXplorer Lite <8.5.42 - DoS
CVSS 7.8
CVE-2017-16948 HIGH
TG Soft Vir.IT eXplorer Lite <8.5.42 - DoS
CVSS 7.8
CVE-2017-12193 MEDIUM
Linux kernel < 4.13.11 - Denial of Service via assoc_array_insert_into_terminal_node Node Splitting
CVSS 5.5
CVE-2017-16883 MEDIUM
libming <= 0.4.8 - Denial of Service via Crafted SWF File
CVSS 6.5
CVE-2017-4938 MEDIUM
VMware Workstation/Fusion <12.5.8-8.5.9 - Use After Free
CVSS 6.5
CVE-2017-16868 MEDIUM
SWFTools 0.9.2 - Denial of Service via Integer Overflow in wav_convert2mono
CVSS 5.5
CVE-2017-1000200 HIGH
tcmu-runner 1.0.5-1.2.0 - Denial of Service via DBus NULL Pointer Dereference
CVSS 7.5
CVE-2017-13135 HIGH
libbpg 0.9.7 - NULL Pointer Dereference in CUData::initialize
CVSS 7.8
CVE-2017-15102 MEDIUM
Linux kernel < 4.8.1 - Local Privilege Escalation via USB Legousbtower Race Condition
CVSS 6.3
CVE-2017-15526 MEDIUM
Symantec Endpoint Encryption < 11.1.3MP1 - Privilege Escalation via Null Pointer Dereference
CVSS 6.8
CVE-2017-12803 MEDIUM
mkclean 0.8.9 - Denial of Service via Crafted MKV File
CVSS 6.5
CVE-2017-12800 MEDIUM
libebml2 < 2012-08-26 - Denial of Service via Crafted MKV File
CVSS 6.5
CVE-2017-12781 MEDIUM
libebml2 < 2012-08-26 - Denial of Service via Crafted MKV File
CVSS 6.5
CVE-2017-12779 MEDIUM
mkvalidator 0.5.1 - Denial of Service via Crafted MKV File
CVSS 6.5
CVE-2017-16711 MEDIUM
SWFTools 0.9.2 - Denial of Service via NULL Pointer Dereference in swf_DefineLosslessBitsTagToImage
CVSS 5.5
CVE-2017-16647 MEDIUM
Linux Kernel < 4.13.11 - Denial of Service via Crafted USB Device in ASIX Driver
CVSS 6.6
CVE-2017-16646 MEDIUM
Linux Kernel < 4.13.11 - Denial of Service via Crafted USB Device
CVSS 6.6
CVE-2017-2893 HIGH
Cesanta Mongoose 6.8 - Denial of Service via MQTT SUBSCRIBE Packet Parsing
CVSS 7.5
CVE-2017-12719 HIGH
Advantech WebAccess <V8.2_20170817 - Code Injection
CVSS 7.5
CVE-2017-15306 MEDIUM
Linux Kernel < 4.13.11 - Denial of Service via KVM_CHECK_EXTENSION KVM_CAP_PPC_HTM ioctl
CVSS 5.5
Details
Vulnerabilities 5,326
Exploit Likelihood Medium