CWE-476

Medium likelihood

NULL Pointer Dereference

Parent: CWE-710 - Improper Adherence to Coding Standards

The product dereferences a pointer that it expects to be valid but is NULL.

5,326 vulnerabilities with CWE-476
CVE-2017-9631 HIGH
Schneider Electric Wonderware ArchestrA Logger <2017.426.2307.1 - DoS
CVSS 7.5
CVE-2017-10965 CRITICAL
irssi < 1.0.3 - Denial of Service via Invalid Time Stamp Handling
CVSS 9.8
CVE-2017-0686 MEDIUM
Android 6.0 6.0.1 7.0 7.1.1 7.1.2 - Denial of Service in Media Framework
CVSS 5.5
CVE-2017-10917 CRITICAL
Xen < 4.8.1 - Denial of Service via Unvalidated Event Channel Port Numbers
CVSS 9.1
CVE-2017-10792 MEDIUM
GNU PSPP - Denial of Service via NULL Pointer Dereference in ll_insert()
CVSS 6.5
CVE-2017-10790 HIGH
GNU Libtasn1 < 4.12 - Denial of Service via NULL Pointer Dereference in _asn1_check_identifier
CVSS 7.5
CVE-2017-9989 MEDIUM
libming 0.4.8 - Denial of Service via NULL Pointer Dereference in util/outputtxt.c
CVSS 6.5
CVE-2017-9988 MEDIUM
libming 0.4.8 - Denial of Service via readEncUInt30 Memory Allocation Mishandling
CVSS 6.5
CVE-2017-7522 MEDIUM
OpenVPN < 2.4.3 and < 2.3.17 - Authenticated Denial of Service via Certificate with Embedded NULL Character
CVSS 6.5
CVE-2017-7458 HIGH
ntopng < 2.4 - Denial of Service via Empty Hostname Field in NetworkInterface::getHost
CVSS 7.5
CVE-2017-3169 CRITICAL
Apache HTTP Server 2.2.x < 2.2.33 and 2.4.x < 2.4.26 - NULL Pointer Dereference in mod_ssl
CVSS 9.8
CVE-2017-9503 MEDIUM
QEMU < 2.9.1 - Denial of Service via MegaRAID SAS 8708EM2 Command Processing
CVSS 5.5
CVE-2017-7507 HIGH
GnuTLS <= 3.5.12 - Denial of Service via Status Response TLS Extension
CVSS 7.5
CVE-2017-6899 MEDIUM
Android_kernel_huawei_msm8916 - DoS
CVSS 6.2
CVE-2017-9124 MEDIUM
libquicktime 1.2.4 - Denial of Service via Crafted MP4 File
CVSS 6.5
CVE-2017-4900 MEDIUM
VMware Workstation Pro/Player <12.5.3 - Use After Free
CVSS 5.5
CVE-2017-9470 MEDIUM
ytnef 1.9.2 - Denial of Service via NULL Pointer Dereference in MAPIPrint
CVSS 5.5
CVE-2017-9468 HIGH
Irssi < 1.0.3 - Denial of Service via NULL Pointer Dereference in DCC Message Handling
CVSS 7.5
CVE-2017-9347 HIGH
Wireshark 2.2.0-2.2.6 - Use After Free
CVSS 7.5
CVE-2017-9343 HIGH
Wireshark <2.2.6, <2.0.12 - Buffer Overflow
CVSS 7.5
CVE-2017-7511 MEDIUM
poppler <0.17.3 - Memory Corruption
CVSS 5.5
CVE-2017-7502 HIGH
Network Security Services >= 3.24.0 - Denial of Service via Empty SSLv2 Message
CVSS 7.5
CVE-2017-9250 HIGH
JerryScript 1.0 - Denial of Service via Malformed JavaScript Source Code
CVSS 7.5
CVE-2017-8542 MEDIUM
Microsoft Malware Protection Engine < 1.1.13704.0 - Denial of Service via Crafted File Scan
CVSS 5.5
CVE-2017-8539 MEDIUM
Microsoft Malware Protection Engine < 1.1.13704.0 - Denial of Service via Crafted File Scan
CVSS 5.5
Details
Vulnerabilities 5,326
Exploit Likelihood Medium