Przykłady dla CWE-476: NULL Pointer Dereference

	Tytuł	Data	Autor
Med.	XWorm Trojan 2.1 Null Pointer Derefernce DoS	05.04.2023	XWorm Trojan 2.1 - Nul...
High	COVESA 2.18.8 NULL Pointer Dereference / Heap Buffer Over-Read	27.09.2022	T. Weber
High	SAP NetWeaver ABAP Dispatcher Service Memory Corruption	23.10.2021	Yvan Genuer
High	SAP NetWeaver ABAP Enqueue Memory Corruption	23.10.2021	Yvan Genuer
Med.	MikroTik RouterOS 6.x Reachable Assertion Failure / Null Pointer Dereference	07.07.2021	Qian Chen
High	Mikrotik RouterOS NULL Pointer Dereference / Reachable Assertion Failure	15.08.2020	Qian Chen
Med.	Open-Xchange Dovecot 2.3.10 Null Pointer Dereference / Denial Of Service	20.05.2020	Philippe Antoine
Low	TP-LINK Cloud Cameras NCXXX Remote NULL Pointer Dereference	02.04.2020	Pietro Oliva
Med.	Reliable Datagram Sockets (RDS) rds_atomic_free_op NULL pointer dereference Privilege Esca	27.01.2020	Mohamed
High	Xpdf 4.02 NULL Pointer Dereference	03.10.2019	Mishra Dhiraj
Med.	Netwide Assembler (NASM) 2.14rc15 NULL Pointer Dereference (PoC)	24.04.2019	Fakhri Zulkifli
Med.	Netwide Assembler (NASM) 2.14rc15 Null Pointer Dereference	19.04.2019	Fakhri Zulkifli
High	Microsoft Edge 44.17763.1.0 NULL Pointer Dereference	07.01.2019	Bogdan Kurinnoy
High	Microsoft Windows SetImeInfoEx Win32k NULL Pointer Dereference	20.10.2018	unamer
Med.	Linux Kernel Keyctl Null Pointer Dereference	16.11.2016	Multiple
Med.	Samsung SystemUI fimg2d Null Pointer Dereference	09.09.2016	Cheetah Mobile
Low	Linux wacom Multiple Null Pointer Dereferences	10.03.2016	Sergej Schumilo, Hendr...
Low	Linux visor (treo_attach) Null Pointer Dereference	10.03.2016	Sergej Schumilo, Hendr...
Low	Linux visor clie_5_attach Null Pointer Dereference	10.03.2016	Sergej Schumilo, Hendr...
Low	Linux aiptek Null Pointer Dereference	10.03.2016	Sergej Schumilo, Hendr...
Low	Linux cdc_acm Null Pointer Dereference	10.03.2016	Sergej Schumilo, Hendr...
Low	Linux digi_acceleport Null Pointer Dereference	10.03.2016	Sergej Schumilo, Hendr...
Low	Linux mct_u232 Null Pointer Dereference	10.03.2016	Sergej Schumilo, Hendr...
Low	Linux cypress_m8 Null Pointer Dereference	10.03.2016	Sergej Schumilo, Hendr...
Low	Apache Http Server 2.2.29 / 2.4.12 NULL Pointer Dereference	18.04.2015	NicholasL
Med.	OS X 10.10 IOKit IntelAccelerator NULL Pointer Dereference	22.01.2015	Google Security Resear...
Med.	K7 Computing Multiple Products Null Pointer Dereference	11.12.2014	Kyriakos Economou
Med.	Windows TrackPopupMenu Win32k NULL Pointer Dereference	28.10.2014	Spencer McIntyre
Med.	Linux 3.10 libceph Null Pointer Dereference	10.07.2013	Chanam Park
Low	DartWebserver.dll 1.9.2 Null Pointer Dereference	09.04.2013	Anonymous
Med.	Corel Quattro Pro X6 Standard Edition NULL Pointer Dereference	08.03.2013	High-Tech Bridge Secur...
Med.	Firefly MediaServer Multiple Remote DoS Vulnerabilities	20.12.2012	High-Tech Bridge Secur...
High	Samsung Kies 2.3.2.12054_20 NULL Pointer Dereference and bypass	16.10.2012	High-Tech Bridge Secur...

Common Weakness Enumeration (CWE)

CVE

Szczegóły

Opis

2024-10-17

	CVE-2024-3184	Updating...	Multiple CWE-476 NULL Pointer Dereference vulnerabilities were found in GoAhead Web Server up to version 6.0.0 when compiled with the ME_GOAHEAD_REPLACE_MALLOC flag. Without a memory notifier for allocation failures, remote attackers can exploit these vulnerabilities by sending malicious requests, leading to a crash and Denial of Service (DoS).
	CVE-2024-47459	Updating...	Substance3D - Sampler versions 4.5 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service (DoS) condition. An attacker could exploit this vulnerability to crash the application, resulting in a DoS. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

2024-10-11

	CVE-2024-47501	Updating...	A NULL Pointer Dereference vulnerability in the packet forwarding engine (pfe) of Juniper Networks Junos OS on MX304, MX with MPC10/11/LC9600, and EX9200 with EX9200-15C allows a locally authenticated attacker with low privileges to cause a Denial of Service (DoS). In a VPLS or Junos Fusion scenario, the execution of specific show commands will cause all FPCs hosting VPLS sessions or connecting to satellites to crash and restart. This issue affects Junos on MX304, MX with MPC10/11/LC9600 and EX9200 with EX9200-15C: * All version before 21.2R3-S1, * 21.3 versions before 21.3R3, * 21.4 versions before 21.4R2.
	CVE-2024-47496	Updating...	A NULL Pointer Dereference vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS allows a local, low-privileged attacker to cause a Denial-of-Service (DoS). When a specific command is executed, the pfe crashes. This will cause traffic forwarding to be interrupted until the system self-recovers. Repeated execution will create a sustained DoS condition. This issue only affects MX Series devices with Line cards MPC1-MPC9. This issue affects: Junos OS on MX Series: * All versions before 21.4R3-S9, * from 22.2 before 22.2R3-S5, * from 22.3 before 22.3R3-S4, * from 22.4 before 22.4R3-S2, * from 23.2 before 23.2R2-S1, * from 23.4 before 23.4R2.

2024-10-10

CVE-2024-6157

Updating...

An attacker who successfully exploited these vulnerabilities could cause the robot to stop. A vulnerability exists in the PROFINET stack included in the RobotWare versions listed below. This vulnerability arises under specific condition when specially crafted message is processed by the system. Below are reported vulnerabilities in the Robot Ware versions. * IRC5- RobotWare 6 < 6.15.06 except 6.10.10, and 6.13.07

2024-10-08

CVE-2024-45476	Updating...	A vulnerability has been identified in Tecnomatix Plant Simulation V2302 (All versions < V2302.0016), Tecnomatix Plant Simulation V2404 (All versions < V2404.0005). The affected applications contain a null pointer dereference vulnerability while parsing specially crafted WRL files. An attacker could leverage this vulnerability to crash the application causing denial of service condition.
CVE-2024-43559	Updating...	Windows Mobile Broadband Driver Denial of Service Vulnerability
CVE-2024-43520	Updating...	Windows Kernel Denial of Service Vulnerability

2024-10-03

CVE-2024-0125

Updating...

NVIDIA CUDA Toolkit for Windows and Linux contains a vulnerability in the nvdisam command line tool, where a user can cause a NULL pointer dereference by running nvdisasm on a malformed ELF file. A successful exploit of this vulnerability might lead to a limited denial of service.

2024-09-30

CVE-2024-8454

Updating...

The swctrl service is used to detect and remotely manage PLANET Technology devices. Certain switch models have a Denial-of-Service vulnerability in the swctrl service, allowing unauthenticated remote attackers to send crafted packets that can crash the service.

05.04.2023

27.09.2022

23.10.2021

23.10.2021

07.07.2021

15.08.2020

20.05.2020

02.04.2020

27.01.2020

03.10.2019

24.04.2019

19.04.2019

07.01.2019

20.10.2018

16.11.2016

09.09.2016

10.03.2016

10.03.2016

10.03.2016

10.03.2016

10.03.2016

10.03.2016

10.03.2016

10.03.2016

18.04.2015

22.01.2015

11.12.2014

28.10.2014

10.07.2013

09.04.2013

08.03.2013

20.12.2012

16.10.2012