CWE-476

Medium likelihood

NULL Pointer Dereference

Parent: CWE-710 - Improper Adherence to Coding Standards

The product dereferences a pointer that it expects to be valid but is NULL.

5,326 vulnerabilities with CWE-476
CVE-2017-5023 MEDIUM
Google Chrome <56.0.2924.76-56.0.2924.87 - Memory Corruption
CVSS 4.3
CVE-2017-0323 HIGH
NVIDIA Windows GPU Display Driver - Denial of Service via NULL Pointer Dereference
CVSS 7.8
CVE-2017-0321 HIGH
NVIDIA GPU Display Driver - Denial of Service via Kernel Mode Layer Handler
CVSS 8.8
CVE-2017-0315 HIGH
NVIDIA Windows GPU Display Driver - Denial of Service via DxgkDdiEscape Invalid Object Pointer
CVSS 7.8
CVE-2017-5991 HIGH
Artifex MuPDF < 1.11 - NULL Pointer Dereference in pdf_run_xobject
CVSS 7.5
CVE-2017-5970 HIGH
Linux Kernel < 4.9.9 - Denial of Service via IPv4 Packet Info Handling
CVSS 7.5
CVE-2017-5149 HIGH
St. Jude Medical Merlin@home <8.2.2 - SSRF
CVSS 8.9
CVE-2016-11039 HIGH
Android KK(4.4) L(5.0/5.1) M(6.0) - NULL Pointer Dereference in IPC Socket Code
CVSS 7.5
CVE-2016-5285 HIGH
Mozilla NSS < 3.26 - Denial of Service via PK11_SignWithSymKey Null Pointer Dereference
CVSS 7.5
CVE-2016-7550 HIGH
Asterisk 13.10.0 - Denial of Service via NULL Pointer Dereference
CVSS 7.5
CVE-2016-9572 MEDIUM
OpenJPEG 2.1.2 - Denial of Service via NULL Pointer Dereference
CVSS 5.9
CVE-2016-8626 MEDIUM
Red Hat Ceph < 0.94.9-8 - Authenticated Denial of Service via POST Object Request
CVSS 6.5
CVE-2016-10496 CRITICAL
Qualcomm Snapdragon Mobile Firmware - NULL Pointer Dereference during SSL Handshake
CVSS 9.8
CVE-2016-10489 CRITICAL
Qualcomm SD 400 Firmware - Untrusted Pointer Dereference in qsee_get_tz_app_name()
CVSS 9.8
CVE-2016-10487 CRITICAL
Qualcomm MDM9206 and Snapdragon Firmware - NULL Pointer Dereference in QuRT API Function
CVSS 9.8
CVE-2016-10449 CRITICAL
Qualcomm Snapdragon Mobile and Wear Firmware - NULL Pointer Dereference in GNSS API Function
CVSS 9.8
CVE-2016-10439 HIGH
Qualcomm Snapdragon SD 425/430/450/625/650/652/820/820A Firmware - Race Condition in Bulletin Board Read Syscall
CVSS 8.1
CVE-2016-10415 HIGH
Qualcomm Snapdragon Mobile and Wear Firmware - Denial of Service via NULL Pointer Dereference
CVSS 7.5
CVE-2016-9600 MEDIUM
JasPer < 2.0.10 - Denial of Service via Null Pointer Dereference in JPEG 2000 Decoding
CVSS 6.5
CVE-2016-9570 HIGH
Carbon Black 5.1.1.60603 - Denial of Service via NetMon Named Pipe
CVSS 7.5
CVE-2016-10708 HIGH
OpenSSH < 7.4 - Denial of Service via Out-of-Sequence NEWKEYS Message
CVSS 7.5
CVE-2016-10505 MEDIUM
OpenJPEG < 2.1.2 - Denial of Service via NULL Pointer Dereference in J2K File Parsing
CVSS 6.5
CVE-2016-10344 CRITICAL
Google Android - NULL Pointer Dereference
CVSS 9.8
CVE-2016-5391 HIGH
libreswan < 3.18 - Denial of Service via NULL Pointer Dereference
CVSS 7.5
CVE-2016-7053 HIGH
OpenSSL 1.1.0-1.1.0b - NULL Pointer Dereference in ASN.1 CHOICE Type Handling
CVSS 7.5
Details
Vulnerabilities 5,326
Exploit Likelihood Medium