CWE-908

Medium likelihood

Use of Uninitialized Resource

Parent: CWE-665 - Improper Initialization

The product uses or accesses a resource that has not been initialized.

762 vulnerabilities with CWE-908
CVE-2018-3989 MEDIUM
WIBU-SYSTEMS WibuKey.sys 6.40 (Build 2400) - Kernel Memory Disclosure via 0x8200E804 IOCTL Handler
CVSS 4.3
CVE-2018-19974 MEDIUM
YARA 3.8.1 - Information Disclosure via Uninitialized VM Scratch Memory
CVSS 5.5
CVE-2018-8627 MEDIUM
Microsoft Excel - Information Disclosure via Uninitialized Variable
CVSS 5.5
CVE-2018-20029 MEDIUM
DokanFS 0.6.0 - Denial of Service via Uninitialized Memory Read
CVSS 5.5
CVE-2018-9557 HIGH
Android 7.0-7.1.2 - Use-After-Free in really_install_package
CVSS 7.8
CVE-2018-6982 MEDIUM
VMware ESXi - Information Disclosure via vmxnet3 Uninitialized Stack Memory
CVSS 6.5
CVE-2018-6981 HIGH
VMware Workstation 14.0.0-14.1.3 & Fusion 10.0.0-10.1.3 - Uninitialized Memory Usage in vmxnet3
CVSS 8.8
CVE-2018-19626 MEDIUM
Wireshark 2.4.0-2.4.10 and 2.6.0-2.6.4 - Denial of Service in DCOM Dissector
CVSS 5.5
CVE-2018-3970 MEDIUM
Sophos HitmanPro.Alert 3.7.6.744 - Kernel Memory Disclosure via 0x222000 IOCTL Handler
CVSS 5.5
CVE-2018-9499 MEDIUM
Android - Local Information Disclosure via Uninitialized Data Read in iCrypto.cpp
CVSS 5.5
CVE-2018-3975 HIGH
Atlantis Word Processor 3.2.6 - Remote Code Execution via RTF Parsing
CVSS 7.5
CVE-2018-15911 HIGH
Debian Linux < 9.23 - Use of Uninitialized Resource
CVSS 7.8
CVE-2018-7166 HIGH
Node.js 10 <10.9.0 - Buffer Overflow
CVSS 7.5
CVE-2018-1000224 HIGH
Godot Engine < 2.1.5 and 3.0 < 3.0.6 - Denial of Service via Malformed Network Packet
CVSS 7.5
CVE-2018-8378 MEDIUM
Microsoft Office and Excel Viewer - Information Disclosure via Uninitialized Memory Read
CVSS 5.5
CVE-2018-14551 CRITICAL
ImageMagick 7.0.8-7 - Memory Corruption
CVSS 9.8
CVE-2018-5160 HIGH
Firefox < 60 - Memory Corruption
CVSS 7.5
CVE-2018-5095 CRITICAL
Skia library - Memory Corruption
CVSS 9.8
CVE-2018-11383 MEDIUM
radare2 2.5.0 - Denial of Service via Crafted ELF File in CPSE Handler
CVSS 5.5
CVE-2018-10115 HIGH
7-zip < 18.03 - Remote Code Execution via RAR Decoder Uninitialized Memory
CVSS 7.8
CVE-2018-1037 MEDIUM
Microsoft Visual Studio - Information Disclosure via Uninitialized Memory in PDB File Compilation
CVSS 4.3
CVE-2018-0919 LOW
Microsoft Office - Information Disclosure via Uninitialized Variable
CVSS 3.3
CVE-2017-18306 HIGH
Qualcomm SD 450/625/820/820A/835/845/850 Firmware - Information Disclosure via Uninitialized Variable
CVSS 8.4
CVE-2017-5103 MEDIUM
Google Chrome <60.0.3112.78 - Info Disclosure
CVSS 4.3
CVE-2017-5102 MEDIUM
Google Chrome <60.0.3112.78 - Info Disclosure
CVSS 4.3
Details
Vulnerabilities 762
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits