CWE-909

Medium likelihood

Missing Initialization of Resource

Parent: CWE-665 - Improper Initialization

The product does not initialize a critical resource.

102 vulnerabilities with CWE-909
CVE-2022-22704 CRITICAL
zabbix-agent2 < 5.4.9-r1 - Privilege Escalation via Incorrect Systemd Configuration Handling
CVSS 9.8
CVE-2021-0947 HIGH
Android - Uninitialized Heap Memory Exposure via TLServerDiscoverStreamsKM Failure
CVSS 7.5
CVE-2021-0946 HIGH
Android - Uninitialized Heap Memory Exposure via PVRSRVBridgePMRPDumpSymbolicAddr
CVSS 7.5
CVE-2021-40403 MEDIUM
Gerbv 2.7.0 and 2.8.0 - Information Disclosure via Pick-and-Place Rotation Parsing
CVSS 6.3
CVE-2021-39966 HIGH
Huawei EMUI and Magic UI - Uninitialized Memory Exposure in AOD Driver
CVSS 7.5
CVE-2021-0966 MEDIUM
Android 11-12 - Local Information Disclosure via Uninitialized Memory in BuildParcelFields
CVSS 5.5
CVE-2021-0961 MEDIUM
Android - Local Information Disclosure via Uninitialized Data in quota_proc_write
CVSS 4.4
CVE-2021-22482 MEDIUM
Huawei Smartphone - Info Disclosure
CVSS 5.3
CVE-2021-36513 HIGH
SignalWire Freeswitch <1.10.6 - Info Disclosure
CVSS 7.5
CVE-2021-26333 MEDIUM
AMD Chipset Driver < 3.08.17.735 and PSP Driver < 5.17.0.0 - Information Disclosure via Uninitialized Physical Pages
CVSS 5.5
CVE-2021-29980 HIGH
Thunderbird <78.13, Firefox ESR <78.13, Firefox <91 - Memory Corrup...
CVSS 8.8
CVE-2021-3655 LOW
Linux Kernel < 5.14 - Information Disclosure via SCTP Packet Size Validation
CVSS 3.3
CVE-2021-36386 HIGH
fetchmail < 6.4.20 - Denial of Service via Long Error Messages
CVSS 7.5
CVE-2021-23994 HIGH
Firefox ESR <78.10 & Firefox <88 - Memory Corruption
CVSS 8.8
CVE-2021-34693 MEDIUM
Linux kernel <5.12.10 - Info Disclosure
CVSS 5.5
CVE-2021-0484 MEDIUM
Android - Local Information Disclosure via Uninitialized Heap Data Read in IMediaPlayer.cpp
CVSS 5.5
CVE-2021-22898 LOW
curl 7.7-7.76.1 - Information Disclosure via TELNET NEW_ENV Option Parser
CVSS 3.1
CVE-2021-28687 MEDIUM
Xen 4.12-4.14.99 - Denial of Service via Uninitialized libxl__domain_suspend_state
CVSS 5.5
CVE-2021-23386 HIGH
dns-packet <5.2.2 - Info Disclosure
CVSS 7.7
CVE-2021-31919 HIGH
rkyv < 0.6.0 - Missing Initialization of Resource
CVSS 7.5
CVE-2021-28167 MEDIUM
Eclipse Openj9 <0.25.0 - Info Disclosure
CVSS 6.5
CVE-2021-1405 HIGH
ClamAV < 0.103.1 - Unauthenticated Denial of Service via Email Parsing
CVSS 7.5
CVE-2021-29647 MEDIUM
Linux kernel <5.11.11 - Info Disclosure
CVSS 5.5
CVE-2020-25579 MEDIUM
FreeBSD Information Disclosure via msdosfs dirent Structure
CVSS 5.3
CVE-2020-24455 MEDIUM
TPM2 <3.0.1, <2.4.3 - Privilege Escalation
CVSS 6.7
Details
Vulnerabilities 102
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits