CWE-476

Medium likelihood

NULL Pointer Dereference

Parent: CWE-710 - Improper Adherence to Coding Standards

The product dereferences a pointer that it expects to be valid but is NULL.

5,328 vulnerabilities with CWE-476
CVE-2014-9949 HIGH
Android TrustZone - Untrusted Pointer Dereference
CVSS 7.8
CVE-2014-9943 HIGH
Android - Null Pointer Dereference in Core Kernel
CVSS 7.8
CVE-2014-9814 MEDIUM
ImageMagick < 6.9.4-0 - Denial of Service via Crafted WPG File
CVSS 5.5
CVE-2014-9812 MEDIUM
ImageMagick < 6.9.4-0 - Denial of Service via Crafted PS File
CVSS 5.5
CVE-2014-8241 CRITICAL
TigerVNC - Denial of Service via NULL Pointer Dereference in XRegion
CVSS 9.8
CVE-2014-9708
Embedthis Appweb <5.2.1 - DoS
CVE-2014-9660
FreeType <2.5.4 - DoS
CVE-2014-5353
MIT Kerberos 5 < 1.13.1 - Authenticated Denial of Service via LDAP Password Policy Query
CVE-2014-9323
Firebird < 2.1.7 and 2.5.x < 2.5.3 SU1 - Denial of Service via op_response Action
CVE-2014-7826 HIGH
Linux Kernel < 3.17.2 - Denial of Service via Ftrace Private Syscall Handling
CVSS 7.8
CVE-2014-3640
Debian Linux - NULL Pointer Dereference
CVE-2014-3581
Apache HTTP Server - Denial of Service via Empty Content-Type Header
CVE-2014-4344
MIT Kerberos 5 <1.12.2 - DoS
CVE-2014-5077
Linux Kernel 2.6.24-3.15.8 - Denial of Service via SCTP Association Update
CVE-2014-3470
OpenSSL < 0.9.8za, 1.0.0 < 1.0.0m, 1.0.1 < 1.0.1h - DoS via NULL Pointer Dereference in Anonymous ECDH
CVE-2014-3469
GNU Libtasn1 < 3.6 - Denial of Service via NULL Pointer Dereference in asn1_read_value_type and asn1_read_value
CVE-2014-0190
Qt < 5.3.0 - Denial of Service via GIF Image Width and Height Values
CVE-2014-0198
OpenSSL 1.0.0-1.0.1g - Denial of Service via NULL Pointer Dereference in do_ssl3_write
CVE-2014-2678
Linux Kernel < 3.14 - Denial of Service via RDS Socket Bind
CVE-2014-2497
PHP < 5.4.32 - Denial of Service via Crafted XPM Color Table
CVE-2014-0101
Linux Kernel 2.6.24-3.13.6 - Denial of Service via SCTP Handshake with Modified INIT and Crafted AUTH Chunks
CVE-2014-0757
CoDeSys Runtime Toolkit < V2.4.7.44 - Denial of Service via NULL Pointer Dereference
CVE-2013-4412 HIGH
slim < 1.3.6 - NULL Pointer Dereference via crypt() Method
CVSS 7.5
CVE-2013-4119 HIGH
FreeRDP < 1.1.0-beta+2013071101 - Denial of Service via Early Disconnect
CVSS 7.5
CVE-2013-4118 HIGH
FreeRDP < 1.1.0-beta1 - Denial of Service via NULL Pointer Dereference
CVSS 7.5
Details
Vulnerabilities 5,328
Exploit Likelihood Medium