CWE-909

Medium likelihood

Missing Initialization of Resource

Parent: CWE-665 - Improper Initialization

The product does not initialize a critical resource.

102 vulnerabilities with CWE-909
CVE-2026-43040 HIGH
net: ipv6: ndisc: fix ndisc_ra_useropt to initialize nduseropt_padX fields to zero to prevent an info-leak
CVSS 7.1
CVE-2026-40687 MEDIUM
Exim < 4.99.2 - Uninitialized Memory Exposure and Denial of Service via SPA Authentication Driver
CVSS 4.8
CVE-2025-8117 HIGH
widzialni pad_cms < 1.2.1 - Unauthenticated Password Reset Parameter Initialization Flaw
CVSS 7.5
CVE-2025-38601 MEDIUM
Linux Kernel - Use-After-Free in ath11k WiFi Driver SRNG List Handling
CVSS 5.5
CVE-2025-38532 MEDIUM
Linux Kernel 6.3-6.6.99, 6.7-6.12.39, 6.13-6.15.7 - Denial of Service via Rx Ring Descriptor Reset
CVSS 5.5
CVE-2025-54410 LOW
Moby <28.0.0 - Network Segmentation Bypass
CVSS 3.3
CVE-2025-54388 MEDIUM
Moby 28.2.0-28.3.2 - Unintended Remote Access to Localhost-Published Ports via Firewalld Reload
CVSS 4.6
CVE-2024-52870 HIGH
Teradata Vantage Editor 1.0.1 - SSRF
CVSS 7.1
CVE-2024-56676 MEDIUM
Linux Kernel 6.12-6.12.1 - Use-After-Free in Thermal Testing Code
CVSS 5.5
CVE-2024-53845 MEDIUM
ESPTouch <5.3.2-5.0.8 - Info Disclosure
CVE-2024-50076 MEDIUM
Linux Kernel - Information Disclosure via Uninitialized Memory in con_font_get()
CVSS 6.5
CVE-2024-9780 HIGH
Wireshark 4.4.0 - Denial of Service via ITS Dissector Packet Injection
CVSS 7.8
CVE-2024-8178 HIGH
FreeBSD 13.0-13.2 - Uninitialized Memory Exposure in ctl_write_buffer and ctl_read_buffer
CVSS 8.8
CVE-2024-43873 HIGH
Linux Kernel 5.14-5.15.164, 5.16-6.1.102, 6.2-6.6.43, 6.7-6.10.2 - Uninitialized Resource in vhost/vsock seqpacket_allow
CVSS 7.8
CVE-2024-32945 LOW
Mattermost Mobile Apps <=2.16.0 - XSS
CVSS 2.6
CVE-2024-26635 MEDIUM
Linux Kernel - Uninitialized Memory Read in LLC Connection Handler via ETH_P_TR_802_2 Packet
CVSS 5.5
CVE-2024-27913 MEDIUM
FRRouting < 9.0 - Denial of Service via Malformed OSPF LSA Packet
CVSS 6.5
CVE-2023-5138 MEDIUM
Silicon Labs secure vault - Info Disclosure
CVSS 6.8
CVE-2022-50169 HIGH
Linux Kernel 3.17-5.19.2 - Information Disclosure via Uninitialized Buffer in wil_write_file_wmi
CVSS 7.1
CVE-2022-49865 HIGH
Linux kernel - Info Disclosure
CVSS 7.1
CVE-2022-49217 MEDIUM
Linux Kernel - Use-After-Free in SCSI pm8001 Abort Task Initialization
CVSS 5.5
CVE-2022-1016 MEDIUM
Linux Kernel < 3.12 - Use-After-Free in nf_tables_core.c
CVSS 5.5
CVE-2022-0175 MEDIUM
virglrenderer - Information Disclosure via Uninitialized Memory in Host-Backed Resource Allocation
CVSS 5.5
CVE-2022-29968 HIGH
Linux kernel <5.17.5 - Info Disclosure
CVSS 7.8
CVE-2022-0382 MEDIUM
Linux Kernel <5.17-rc1 - Info Disclosure
CVSS 5.5
Details
Vulnerabilities 102
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits