Przykłady dla CWE-476: NULL Pointer Dereference

	Tytuł	Data	Autor
Med.	XWorm Trojan 2.1 Null Pointer Derefernce DoS	05.04.2023	XWorm Trojan 2.1 - Nul...
High	COVESA 2.18.8 NULL Pointer Dereference / Heap Buffer Over-Read	27.09.2022	T. Weber
High	SAP NetWeaver ABAP Dispatcher Service Memory Corruption	23.10.2021	Yvan Genuer
High	SAP NetWeaver ABAP Enqueue Memory Corruption	23.10.2021	Yvan Genuer
Med.	MikroTik RouterOS 6.x Reachable Assertion Failure / Null Pointer Dereference	07.07.2021	Qian Chen
High	Mikrotik RouterOS NULL Pointer Dereference / Reachable Assertion Failure	15.08.2020	Qian Chen
Med.	Open-Xchange Dovecot 2.3.10 Null Pointer Dereference / Denial Of Service	20.05.2020	Philippe Antoine
Low	TP-LINK Cloud Cameras NCXXX Remote NULL Pointer Dereference	02.04.2020	Pietro Oliva
Med.	Reliable Datagram Sockets (RDS) rds_atomic_free_op NULL pointer dereference Privilege Esca	27.01.2020	Mohamed
High	Xpdf 4.02 NULL Pointer Dereference	03.10.2019	Mishra Dhiraj
Med.	Netwide Assembler (NASM) 2.14rc15 NULL Pointer Dereference (PoC)	24.04.2019	Fakhri Zulkifli
Med.	Netwide Assembler (NASM) 2.14rc15 Null Pointer Dereference	19.04.2019	Fakhri Zulkifli
High	Microsoft Edge 44.17763.1.0 NULL Pointer Dereference	07.01.2019	Bogdan Kurinnoy
High	Microsoft Windows SetImeInfoEx Win32k NULL Pointer Dereference	20.10.2018	unamer
Med.	Linux Kernel Keyctl Null Pointer Dereference	16.11.2016	Multiple
Med.	Samsung SystemUI fimg2d Null Pointer Dereference	09.09.2016	Cheetah Mobile
Low	Linux wacom Multiple Null Pointer Dereferences	10.03.2016	Sergej Schumilo, Hendr...
Low	Linux visor (treo_attach) Null Pointer Dereference	10.03.2016	Sergej Schumilo, Hendr...
Low	Linux visor clie_5_attach Null Pointer Dereference	10.03.2016	Sergej Schumilo, Hendr...
Low	Linux aiptek Null Pointer Dereference	10.03.2016	Sergej Schumilo, Hendr...
Low	Linux cdc_acm Null Pointer Dereference	10.03.2016	Sergej Schumilo, Hendr...
Low	Linux digi_acceleport Null Pointer Dereference	10.03.2016	Sergej Schumilo, Hendr...
Low	Linux mct_u232 Null Pointer Dereference	10.03.2016	Sergej Schumilo, Hendr...
Low	Linux cypress_m8 Null Pointer Dereference	10.03.2016	Sergej Schumilo, Hendr...
Low	Apache Http Server 2.2.29 / 2.4.12 NULL Pointer Dereference	18.04.2015	NicholasL
Med.	OS X 10.10 IOKit IntelAccelerator NULL Pointer Dereference	22.01.2015	Google Security Resear...
Med.	K7 Computing Multiple Products Null Pointer Dereference	11.12.2014	Kyriakos Economou
Med.	Windows TrackPopupMenu Win32k NULL Pointer Dereference	28.10.2014	Spencer McIntyre
Med.	Linux 3.10 libceph Null Pointer Dereference	10.07.2013	Chanam Park
Low	DartWebserver.dll 1.9.2 Null Pointer Dereference	09.04.2013	Anonymous
Med.	Corel Quattro Pro X6 Standard Edition NULL Pointer Dereference	08.03.2013	High-Tech Bridge Secur...
Med.	Firefly MediaServer Multiple Remote DoS Vulnerabilities	20.12.2012	High-Tech Bridge Secur...
High	Samsung Kies 2.3.2.12054_20 NULL Pointer Dereference and bypass	16.10.2012	High-Tech Bridge Secur...

Common Weakness Enumeration (CWE)

CVE

Szczegóły

Opis

2024-04-23

CVE-2024-1241

Updating...

Watchdog Antivirus v1.6.415 is vulnerable to a Denial of Service vulnerability by triggering the 0x80002014 IOCTL code of the wsdk-driver.sys driver.

2024-04-11

CVE-2024-20794

Updating...

Animate versions 23.0.4, 24.0.1 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service. An attacker could leverage this vulnerability to cause a system crash, resulting in a denial of service. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

2024-04-09

CVE-2024-26277

Updating...

A vulnerability has been identified in Parasolid V35.1 (All versions < V35.1.254), Parasolid V36.0 (All versions < V36.0.207), Parasolid V36.1 (All versions < V36.1.147). The affected applications contain a null pointer dereference vulnerability while parsing specially crafted X_T files. An attacker could leverage this vulnerability to crash the application causing denial of service condition.

2024-04-03

CVE-2024-31420

Updating...

A NULL pointer dereference flaw was found in KubeVirt. This flaw allows an attacker who has access to a virtual machine guest on a node with DownwardMetrics enabled to cause a denial of service by issuing a high number of calls to vm-dump-metrics --virtio.

2024-03-18

CVE-2024-2496

Updating...

A NULL pointer dereference flaw was found in the udevConnectListAllInterfaces() function in libvirt. This issue can occur when detaching a host interface while at the same time collecting the list of interfaces via virConnectListAllInterfaces API. This flaw could be used to perform a denial of service attack by causing the libvirt daemon to crash.

2024-03-15

CVE-2024-2204

Updating...

Zemana AntiLogger v2.74.204.664 is vulnerable to a Denial of Service (DoS) vulnerability by triggering the 0x80002004 and 0x80002010 IOCTL codes of the zam64.sys and zamguard64.sys drivers.

2024-03-07

CVE-2024-1443

Updating...

MSI Afterburner v4.6.5.16370 is vulnerable to a Denial of Service vulnerability by triggering the 0x80002000 IOCTL code of the RTCore64.sys driver. The handle to the driver can only be obtained from a high integrity process.

2024-02-29

	CVE-2023-44347	Updating...	Adobe InDesign versions ID18.5 (and earlier) and ID17.4.2 (and earlier) are affected by a NULL Pointer Dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
	CVE-2023-44341	Updating...	Adobe InDesign versions ID18.5 (and earlier) and ID17.4.2 (and earlier) are affected by a NULL Pointer Dereference vulnerability. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

2024-02-22

CVE-2023-29179

Updating...

A null pointer dereference in Fortinet FortiOS version 7.2.0 through 7.2.4, 7.0.0 through 7.0.11, 6.4.0 through 6.4.12, Fortiproxy version 7.2.0 through 7.2.4, 7.0.0 through 7.0.10 allows attacker to denial of service via specially crafted HTTP requests.

05.04.2023

27.09.2022

23.10.2021

23.10.2021

07.07.2021

15.08.2020

20.05.2020

02.04.2020

27.01.2020

03.10.2019

24.04.2019

19.04.2019

07.01.2019

20.10.2018

16.11.2016

09.09.2016

10.03.2016

10.03.2016

10.03.2016

10.03.2016

10.03.2016

10.03.2016

10.03.2016

10.03.2016

18.04.2015

22.01.2015

11.12.2014

28.10.2014

10.07.2013

09.04.2013

08.03.2013

20.12.2012

16.10.2012