CWE:
 

Topic
Date
Author
Med.
Linux Kernel Keyctl Null Pointer Dereference
16.11.2016
Multiple
Med.
Samsung SystemUI fimg2d Null Pointer Dereference
09.09.2016
Cheetah Mobile
Low
Linux wacom Multiple Null Pointer Dereferences
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux visor (treo_attach) Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux visor clie_5_attach Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux aiptek Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux cdc_acm Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux digi_acceleport Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux mct_u232 Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Linux cypress_m8 Null Pointer Dereference
10.03.2016
Sergej Schumilo, Hendr...
Low
Apache Http Server 2.2.29 / 2.4.12 NULL Pointer Dereference
18.04.2015
Nicholas Lemonias
Med.
OS X 10.10 IOKit IntelAccelerator NULL Pointer Dereference
22.01.2015
Google Security Resear...
Med.
K7 Computing Multiple Products Null Pointer Dereference
11.12.2014
Kyriakos Economou
Med.
Windows TrackPopupMenu Win32k NULL Pointer Dereference
28.10.2014
Spencer McIntyre
Med.
Linux 3.10 libceph Null Pointer Dereference
10.07.2013
Chanam Park
Low
DartWebserver.dll 1.9.2 Null Pointer Dereference
09.04.2013
Anonymous
Med.
Corel Quattro Pro X6 Standard Edition NULL Pointer Dereference
08.03.2013
High-Tech Bridge Secur...
Med.
Firefly MediaServer Multiple Remote DoS Vulnerabilities
20.12.2012
High-Tech Bridge Secur...
High
Samsung Kies 2.3.2.12054_20 NULL Pointer Dereference and bypass
16.10.2012
High-Tech Bridge Secur...


CVEMAP Search Results

CVE
Details
Description
2018-05-31
Low
CVE-2018-11591

Updating...
 

 
Espruino before 1.98 allows attackers to cause a denial of service (application crash) with a user crafted input file via a NULL pointer dereference during syntax parsing. This was addressed by adding validation for a debug trace print statement in jsvar.c.

 
2018-05-22
Medium
CVE-2018-11359

Vendor: Wireshark
Software: Wireshark
 

 
In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the RRC dissector and other dissectors could crash. This was addressed in epan/proto.c by avoiding a NULL pointer dereference.

 
Medium
CVE-2018-11356

Vendor: Wireshark
Software: Wireshark
 

 
In Wireshark 2.6.0, 2.4.0 to 2.4.6, and 2.2.0 to 2.2.14, the DNS dissector could crash. This was addressed in epan/dissectors/packet-dns.c by avoiding a NULL pointer dereference for an empty name in an SRV record.

 
2018-05-18
Low
CVE-2018-11256

Vendor: Podofo project
Software: Podofo
 

 
An issue was discovered in PoDoFo 0.9.5. The function PdfDocument::Append() in PdfDocument.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document.

 
Low
CVE-2018-11255

Vendor: Podofo project
Software: Podofo
 

 
An issue was discovered in PoDoFo 0.9.5. The function PdfPage::GetPageNumber() in PdfPage.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PDF document.

 
2018-05-16
Low
CVE-2018-1172

Vendor: Squid-cache
Software: Squid
 

 
This vulnerability allows remote attackers to deny service on vulnerable installations of The Squid Software Foundation Squid 3.5.27-20180318. Authentication is not required to exploit this vulnerability. The specific flaw exists within ClientRequestContext::sslBumpAccessCheck(). A crafted request can trigger the dereference of a null pointer. An attacker can leverage this vulnerability to create a denial-of-service condition to users of the system. Was ZDI-CAN-6088.

 
Low
CVE-2018-10241

Vendor: Solarwinds
Software: Serv-u
 

 
A denial of service vulnerability in SolarWinds Serv-U before 15.1.6 HFv1 allows an authenticated user to crash the application (with a NULL pointer dereference) via a specially crafted URL beginning with the /Web%20Client/ substring.

 
Low
CVE-2018-11202

Vendor: Hdfgroup
Software: HDF5
 

 
A NULL pointer dereference was discovered in H5S_hyper_make_spans in H5Shyper.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service attack.

 
Low
CVE-2018-11204

Vendor: Hdfgroup
Software: HDF5
 

 
A NULL pointer dereference was discovered in H5O__chunk_deserialize in H5Ocache.c in the HDF HDF5 1.10.2 library. It could allow a remote denial of service attack.

 
2018-05-15
Medium
CVE-2018-7497

Vendor: Advantech
Software: Webaccess
 

 
In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prior, WebAccess Scada Node versions prior to 8.3.1, and WebAccess/NMS 2.0.3 and prior, several untrusted pointer dereference vulnerabilities have been identified, which may allow an attacker to execute arbitrary code.

 

 


Copyright 2018, cxsecurity.com

 

Back to Top