CWE-476
Medium likelihoodNULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.
5,326 vulnerabilities with CWE-476
CVE-2017-9631
HIGH
Schneider Electric Wonderware ArchestrA Logger <2017.426.2307.1 - DoS
CVSS 7.5
CVE-2017-10965
CRITICAL
irssi < 1.0.3 - Denial of Service via Invalid Time Stamp Handling
CVSS 9.8
CVE-2017-0686
MEDIUM
Android 6.0 6.0.1 7.0 7.1.1 7.1.2 - Denial of Service in Media Framework
CVSS 5.5
CVE-2017-10917
CRITICAL
Xen < 4.8.1 - Denial of Service via Unvalidated Event Channel Port Numbers
CVSS 9.1
CVE-2017-10792
MEDIUM
GNU PSPP - Denial of Service via NULL Pointer Dereference in ll_insert()
CVSS 6.5
CVE-2017-10790
HIGH
GNU Libtasn1 < 4.12 - Denial of Service via NULL Pointer Dereference in _asn1_check_identifier
CVSS 7.5
CVE-2017-9989
MEDIUM
libming 0.4.8 - Denial of Service via NULL Pointer Dereference in util/outputtxt.c
CVSS 6.5
CVE-2017-9988
MEDIUM
libming 0.4.8 - Denial of Service via readEncUInt30 Memory Allocation Mishandling
CVSS 6.5
CVE-2017-7522
MEDIUM
OpenVPN < 2.4.3 and < 2.3.17 - Authenticated Denial of Service via Certificate with Embedded NULL Character
CVSS 6.5
CVE-2017-7458
HIGH
ntopng < 2.4 - Denial of Service via Empty Hostname Field in NetworkInterface::getHost
CVSS 7.5
CVE-2017-3169
CRITICAL
Apache HTTP Server 2.2.x < 2.2.33 and 2.4.x < 2.4.26 - NULL Pointer Dereference in mod_ssl
CVSS 9.8
CVE-2017-9503
MEDIUM
QEMU < 2.9.1 - Denial of Service via MegaRAID SAS 8708EM2 Command Processing
CVSS 5.5
CVE-2017-7507
HIGH
GnuTLS <= 3.5.12 - Denial of Service via Status Response TLS Extension
CVSS 7.5
CVE-2017-6899
MEDIUM
Android_kernel_huawei_msm8916 - DoS
CVSS 6.2
CVE-2017-9124
MEDIUM
libquicktime 1.2.4 - Denial of Service via Crafted MP4 File
CVSS 6.5
CVE-2017-4900
MEDIUM
VMware Workstation Pro/Player <12.5.3 - Use After Free
CVSS 5.5
CVE-2017-9470
MEDIUM
ytnef 1.9.2 - Denial of Service via NULL Pointer Dereference in MAPIPrint
CVSS 5.5
CVE-2017-9468
HIGH
Irssi < 1.0.3 - Denial of Service via NULL Pointer Dereference in DCC Message Handling
CVSS 7.5
CVE-2017-9347
HIGH
Wireshark 2.2.0-2.2.6 - Use After Free
CVSS 7.5
CVE-2017-9343
HIGH
Wireshark <2.2.6, <2.0.12 - Buffer Overflow
CVSS 7.5
CVE-2017-7511
MEDIUM
poppler <0.17.3 - Memory Corruption
CVSS 5.5
CVE-2017-7502
HIGH
Network Security Services >= 3.24.0 - Denial of Service via Empty SSLv2 Message
CVSS 7.5
CVE-2017-9250
HIGH
JerryScript 1.0 - Denial of Service via Malformed JavaScript Source Code
CVSS 7.5
CVE-2017-8542
MEDIUM
Microsoft Malware Protection Engine < 1.1.13704.0 - Denial of Service via Crafted File Scan
CVSS 5.5
CVE-2017-8539
MEDIUM
Microsoft Malware Protection Engine < 1.1.13704.0 - Denial of Service via Crafted File Scan
CVSS 5.5
Details
Vulnerabilities
5,326
Exploit Likelihood
Medium