CWE-665
Medium likelihoodImproper Initialization
The product does not initialize or incorrectly initializes a resource, which might leave the resource in an unexpected state when it is accessed or used.
347 vulnerabilities with CWE-665
CVE-2024-11158
MEDIUM
Rockwell Automation Arena < 16.20.00 - Remote Code Execution via Uninitialized Variable in DOE File
CVSS 6.7
CVE-2024-54129
CRITICAL
ION-DTN 4.1.3 - Denial of Service via Improper Previous Node Block Handling
CVE-2024-25563
LOW
Intel PROSet/Wireless <23.40 - Info Disclosure
CVSS 3.4
CVE-2024-45289
HIGH
FreeBSD 14.1-RELEASE < p6, 13.4-RELEASE < p2, 13.3-RELEASE < p8 - Improper Initialization in fetch(3) Library
CVSS 7.5
CVE-2024-46697
MEDIUM
Linux Kernel 6.7-6.10.7 - Use-After-Free in NFS Server Context Handling
CVSS 5.5
CVE-2024-45018
MEDIUM
Linux Kernel 5.5-6.10.7 Netfilter Flowtable Extack Improper Initialization
CVSS 5.5
CVE-2024-44947
MEDIUM
Linux Kernel - Information Disclosure via Uninitialized Page Contents in FUSE Notify Store
CVSS 5.5
CVE-2024-21807
HIGH
Intel(R) Ethernet Network Controllers <28.3 - Privilege Escalation
CVSS 8.8
CVE-2024-42078
MEDIUM
Linux Kernel < 6.8 - Use-After-Free in NFS Server Netns Initialization
CVSS 5.5
CVE-2024-36455
CRITICAL
Broadcom Symantec PAM 3.4.6 and 4.1.0-4.1.7 - Crafted Request Remote Command Execution
CVE-2024-39864
CRITICAL
Apache CloudStack 4.0.0-4.18.2.0 - Unauthenticated Remote Code Execution via Integration API Service
CVSS 9.8
CVE-2024-39485
MEDIUM
Linux Kernel - Improper Initialization in V4L Async Notifier Entry
CVSS 5.5
CVE-2024-39301
MEDIUM
Linux Kernel - Information Exposure via Uninitialized Memory in 9P Client RPC
CVSS 5.5
CVE-2024-38558
MEDIUM
Linux Kernel 4.11-6.9.2 - Improper Initialization in Open vSwitch ICMPv6 Packet Parsing
CVSS 5.5
CVE-2024-0089
HIGH
NVIDIA GPU Display Driver 470-475.06 - Information Disclosure via Improper Initialization
CVSS 7.8
CVE-2024-32930
MEDIUM
Android - Local Information Disclosure via Uninitialized Data in plugin_ipc_handler
CVSS 5.5
CVE-2024-32916
MEDIUM
Android - Information Disclosure via Uninitialized Data in fvp_freq_histogram_init
CVSS 5.9
CVE-2024-22064
HIGH
ZTE ZXUN-ePDG < 5.20.20 - User Session Information Exposure via Non-Unique Cryptographic Keys
CVSS 8.3
CVE-2024-28084
HIGH
Intel IWD < 2.15 - Denial of Service via Service Information Parsing Failure
CVSS 7.5
CVE-2023-48361
LOW
Intel(R) CSME - Information Disclosure via Improper Initialization
CVSS 2.3
CVE-2023-20591
MEDIUM
AMD EPYC 8024/8124/8224/8324/8434/8534/9734/9754S Firmware < genoapi_1.0.0.8 - Improper IOMMU Re-initialization
CVSS 6.5
CVE-2023-40261
MEDIUM
Diebold Nixdorf VSS <4.3.0 - Info Disclosure
CVSS 6.8
CVE-2023-32467
MEDIUM
Dell Edge Gateway 3200 and 5200 Firmware - Authenticated Out-of-Bounds Write Leading to Arbitrary Code Execution
CVSS 5.7
CVE-2023-45315
MEDIUM
Intel Power Gadget < 3.6.0 - Authenticated Denial of Service via Improper Initialization
CVSS 5.5
CVE-2023-27325
HIGH
Parallels Desktop < 18.1.0 (53311) - Local Privilege Escalation via Updater Service Environment Variable
CVSS 7.8
Details
Vulnerabilities
347
Exploit Likelihood
Medium