CWE-908

Medium likelihood

Use of Uninitialized Resource

Parent: CWE-665 - Improper Initialization

The product uses or accesses a resource that has not been initialized.

761 vulnerabilities with CWE-908
CVE-2024-42106 MEDIUM
Linux Kernel 4.10-6.9.8 - Use of Uninitialized Resource in inet_diag_req_v2
CVSS 5.5
CVE-2024-42096 MEDIUM
Linux Kernel < 4.19.317, 4.20.0-6.9.8 - Use of Uninitialized Resource in profile_pc()
CVSS 5.5
CVE-2024-42076 MEDIUM
Linux Kernel < 5.4 - Information Disclosure via Uninitialized Memory in j1939_send_one
CVSS 5.5
CVE-2024-42063 MEDIUM
Linux Kernel - Use of Uninitialized Resource in BPF Map Lookup/Delete Operations
CVSS 5.5
CVE-2024-41059 HIGH
Linux Kernel < 4.19.319, 4.20.0-6.9.11 - Use of Uninitialized Resource in hfsplus_listxattr
CVSS 7.1
CVE-2024-41052 MEDIUM
Linux Kernel 6.6.36-6.6.40 and 6.9.7-6.9.9 - Use of Uninitialized Resource in VFIO PCI Hot-Reset Device Counting
CVSS 5.5
CVE-2024-40998 MEDIUM
Linux Kernel < 6.6.36, >=6.7.0 <6.9.7, >=6.10 - Use of Uninitialized Resource in ext4 ratelimit_state->lock
CVSS 5.5
CVE-2024-40931 MEDIUM
Linux Kernel 5.9-6.9.5 - Use of Uninitialized Resource in MPTCP
CVSS 5.5
CVE-2024-40926 MEDIUM
Linux Kernel 6.7-6.9.5 - Use of Uninitialized Resource in Nouveau DRM HPD Work Scheduling
CVSS 5.5
CVE-2024-39507 MEDIUM
Linux Kernel 5.1-5.15.161, 5.16-6.1.94, 6.2-6.6.34, 6.7-6.9.5 - Use-After-Free in HNS3 NIC Driver
CVSS 5.5
CVE-2024-39491 MEDIUM
Linux Kernel 6.6-6.6.32, 6.7-6.9.3 - Use of Uninitialized Resource in ALSA HDA CS35L56 Driver
CVSS 5.5
CVE-2024-38064 HIGH
Windows 10/11, Server 2008-2022 - TCP/IP Information Disclosure via Uninitialized Resource
CVSS 7.5
CVE-2024-23159 HIGH
Autodesk AutoCAD 2022-<2022.1.5 - Use-After-Free via STP File Parsing
CVSS 7.8
CVE-2024-37002 HIGH
Autodesk AutoCAD 2022-2022.1.5 - Use of Uninitialized Variable via Crafted MODEL File
CVSS 7.8
CVE-2024-38381 HIGH
Linux Kernel - Use of Uninitialized Resource in NFC NCI rx_work Packet Processing
CVSS 7.1
CVE-2024-33619 MEDIUM
Linux Kernel 6.1-6.1.92, 6.2-6.6.32, 6.7-6.9.3 - Use-After-Free in EFI Runtime Map Handling
CVSS 5.5
CVE-2024-38619 MEDIUM
Linux Kernel <=6.9.6 - Use of Uninitialized Resource in alauda_init_media()
CVSS 5.5
CVE-2024-38593 MEDIUM
Linux Kernel 6.5-6.6.32, 6.7-6.8.11, 6.9-6.9.2 - Use-After-Free in PTP Workqueue Handling
CVSS 5.5
CVE-2024-38592 MEDIUM
Linux Kernel 6.7-6.8.11, 6.9.0-6.9.2, 6.10 - Use of Uninitialized Resource in DRM Mediatek Component
CVSS 5.5
CVE-2024-38538 HIGH
Linux Kernel - Use of Uninitialized Resource in Bridge Device Xmit Path
CVSS 7.1
CVE-2024-36503 HIGH
Huawei EMUI and HarmonyOS - Denial of Service via Gralloc Module Memory Management
CVSS 7.3
CVE-2024-32910 MEDIUM
Android - Local Information Disclosure via Uninitialized Stack Data in TIPC Message Handling
CVSS 5.5
CVE-2024-32906 HIGH
Android - Local Privilege Escalation via Uninitialized Data in AcvpOnMessage
CVSS 7.8
CVE-2024-29785 MEDIUM
Android - Local Information Disclosure via Uninitialized Data in aur_get_state
CVSS 5.5
CVE-2024-29780 MEDIUM
Android - Local Information Disclosure via Uninitialized Stack Data
CVSS 5.5
Details
Vulnerabilities 761
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits