CWE-908

Medium likelihood

Use of Uninitialized Resource

Parent: CWE-665 - Improper Initialization

The product uses or accesses a resource that has not been initialized.

761 vulnerabilities with CWE-908
CVE-2022-32616 MEDIUM
Android - Local Privilege Escalation via Uninitialized Data in ISP
CVSS 6.7
CVE-2022-32615 MEDIUM
Android - Local Privilege Escalation via Uninitialized Data in CCD
CVSS 6.7
CVE-2022-39283 MEDIUM
FreeRDP < 2.8.1 - Out-of-bounds Read via Video Command Line Switch
CVSS 5.9
CVE-2022-39282 LOW
FreeRDP < 2.8.1 - Uninitialized Data Exposure via Parallel Port Redirection
CVSS 3.5
CVE-2022-34390 HIGH
Dell Alienware Area-51 R5 and R4 Firmware < 2.0.6 - Authenticated Arbitrary Code Execution via SMI
CVSS 7.5
CVE-2022-40768 MEDIUM
Linux Kernel < 5.19.9 - Information Disclosure via Uninitialized Memory in stex_queuecommand_lck
CVSS 5.5
CVE-2022-29240 HIGH
Scylla < 4.6.7 and < 2020.1.14 - Unauthenticated Authentication Bypass and Information Disclosure via LZ4 Decompression
CVSS 8.1
CVE-2022-2308 MEDIUM
Linux Kernel - Use of Uninitialized Variable in vDPA VDUSE Config Space Handling
CVSS 6.5
CVE-2022-32745 HIGH
Samba 4.13.14-4.14.14 - Out-of-bounds Read via LDAP Add or Modify Request
CVSS 8.1
CVE-2022-38668 HIGH
Crow through 1.0+4 - Uninitialized Memory Exposure via Static File Request
CVSS 7.5
CVE-2022-20357 MEDIUM
Android - Information Disclosure via Uninitialized Data in SurfaceControl.cpp
CVSS 5.5
CVE-2022-33716 LOW
ICCC TA <SMR Aug-2022 Release 1 - Info Disclosure
CVSS 2.3
CVE-2022-34655 HIGH
BIG-IP 14.1.0-14.1.4 - Denial of Service via iRule HTTP::payload Command
CVSS 7.5
CVE-2022-26437 CRITICAL
MediaTek NBIoT SDK httpclient - Out-of-Bounds Write Remote Privilege Escalation
CVSS 9.8
CVE-2022-34266 MEDIUM
libtiff - Denial of Service via TIFFFetchStripThing Uninitialized Resource
CVSS 5.5
CVE-2022-35414 HIGH
QEMU 4.1.50-7.0.0 - Use-After-Free in softmmu/physmem.c
CVSS 8.8
CVE-2022-25345 HIGH
@discordjs/opus < 0.8.0 - Denial of Service via Zero Channel Encoder or Uninitialized Buffer
CVSS 7.5
CVE-2022-20176 MEDIUM
Android - Local Information Disclosure via Uninitialized Memory Read in sjtag-driver.c
CVSS 4.4
CVE-2022-31026 MEDIUM
Trilogy < 2.1.1 - Information Disclosure via Uninitialized Memory Read
CVSS 5.9
CVE-2022-29205 MEDIUM
TensorFlow <2.9.0-2.6.4 - Use After Free
CVSS 5.5
CVE-2022-20119 MEDIUM
Android - Local Information Disclosure via Uninitialized Data in mali_gralloc_buffer.h
CVSS 5.5
CVE-2022-20008 MEDIUM
Android - Local Information Disclosure via Uninitialized Data in mmc_blk_read_single
CVSS 4.6
CVE-2022-26370 MEDIUM
F5 BIG-IP <16.1.2.2, 15.1.5, 14.1.4.6 - DoS
CVSS 5.9
CVE-2022-28488 HIGH
libwav <2017-04-20 - Info Disclosure
CVSS 7.5
CVE-2022-20096 MEDIUM
Android - Local Information Disclosure via Uninitialized Data in Camera
CVSS 4.4
Details
Vulnerabilities 761
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits