CWE-476

Medium likelihood

NULL Pointer Dereference

Parent: CWE-710 - Improper Adherence to Coding Standards

The product dereferences a pointer that it expects to be valid but is NULL.

5,326 vulnerabilities with CWE-476
CVE-2017-8106 MEDIUM
Linux Kernel 3.12-3.15 - Denial of Service via KVM INVEPT Instruction
CVSS 5.5
CVE-2017-1000360 MEDIUM
OpenDaylight odl-mdsal-xsql <4.1 - Info Disclosure
CVSS 5.3
CVE-2017-1000358 MEDIUM
OpenDaylight odl-restconf 4.0 - Info Disclosure
CVSS 6.5
CVE-2017-7994 MEDIUM
PoDoFo 0.9.5 - Denial of Service via NULL Pointer Dereference in TextExtractor
CVSS 6.5
CVE-2017-5969 MEDIUM
libxml2 2.9.4 - Denial of Service via NULL Pointer Dereference in Recover Mode
CVSS 4.7
CVE-2017-7614 CRITICAL
GNU Binutils 2.28 - Null Pointer Dereference in elflink.c
CVSS 9.8
CVE-2017-0546 HIGH
Android 4.4.4 5.0.2 5.1.1 6.0 6.0.1 7.0 7.1.1 - Elevation of Privilege via SurfaceFlinger
CVSS 7.8
CVE-2017-7453 MEDIUM
ImageWorsener 1.3.0 - Denial of Service via Crafted File
CVSS 5.5
CVE-2017-7452 MEDIUM
ImageWorsener 1.3.0 - Denial of Service via Crafted BMP File
CVSS 5.5
CVE-2017-7383 MEDIUM
PoDoFo 0.9.5 - Denial of Service via Crafted PDF Document
CVSS 5.5
CVE-2017-7382 MEDIUM
PoDoFo 0.9.5 - Denial of Service via Crafted PDF Document
CVSS 5.5
CVE-2017-7381 MEDIUM
PoDoFo 0.9.5 - Denial of Service via NULL Pointer Dereference
CVSS 5.5
CVE-2017-7380 MEDIUM
PoDoFo 0.9.5 - Denial of Service via NULL Pointer Dereference in PdfPage
CVSS 5.5
CVE-2017-6441 HIGH
PHP 7.1.2 - Denial of Service via NULL Pointer Dereference in _zval_get_long_func_ex
CVSS 7.5
CVE-2017-5951 MEDIUM
Ghostscript - Denial of Service via NULL Pointer Dereference in mem_get_bits_rectangle
CVSS 5.5
CVE-2017-2388 MEDIUM
macOS < 10.12.4 - Denial of Service via IOFireWireFamily NULL Pointer Dereference
CVSS 5.5
CVE-2017-7374 HIGH
Linux kernel < 4.10.7 - Use After Free
CVSS 7.8
CVE-2017-2647 HIGH
Linux Kernel < 3.17.8 - Denial of Service via KEYS Subsystem NULL Pointer Dereference
CVSS 7.8
CVE-2017-7274 MEDIUM
radare2 1.3.0 - Denial of Service via Crafted PE File
CVSS 5.5
CVE-2017-7243 HIGH
Eclipse tinydtls 0.8.2 - Denial of Service via Change Cipher Spec Packet
CVSS 7.5
CVE-2017-7225 HIGH
GNU Binutils 2.28 - Memory Corruption
CVSS 7.5
CVE-2017-7209 MEDIUM
GNU Binutils - Denial of Service via Corrupt Binary in readelf
CVSS 5.5
CVE-2017-7207 MEDIUM
Ghostscript 9.20 - Denial of Service via Crafted PostScript Document
CVSS 5.5
CVE-2017-6178 HIGH
USBPcap 1.1.0.0 - Privilege Escalation via IOCTL Call
CVSS 7.8
CVE-2017-0016 MEDIUM
Microsoft Windows SMBv2/SMBv3 - Remote Code Execution via Crafted Packet
CVSS 5.9
Details
Vulnerabilities 5,326
Exploit Likelihood Medium