Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
null pointer vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2019-6445
An issue exists in NTPsec prior to 1.1.3. An authenticated attacker can cause a NULL pointer dereference and ntpd crash in ntp_control.c, related to ctl_getitem.
Ntpsec Ntpsec
1 EDB exploit
NA
CVE-2004-0118
The component for the Virtual DOS Machine (VDM) subsystem in Windows NT 4.0 and Windows 2000 does not properly validate system structures, which allows local users to access protected kernel memory and execute arbitrary code.
Microsoft Windows 2000
Microsoft Windows Nt 4.0
7.5
CVSSv3
CVE-2013-4133
kde-workspace prior to 4.10.5 has a memory leak in plasma desktop
Kde Kde-workspace
Debian Debian Linux 8.0
NA
CVE-2024-27978
A Null Pointer Dereference vulnerability in WLAvalancheService component of Ivanti Avalanche prior to 6.4.3 allows an authenticated remote malicious user to perform denial of service attacks.
3.3
CVSSv3
CVE-2017-15096
A flaw was found in GlusterFS in versions before 3.10. A null pointer dereference in send_brick_req function in glusterfsd/src/gf_attach.c may be used to cause denial of service.
Gluster Glusterfs
NA
CVE-2008-6713
World in Conflict (WIC) 1.008 and previous versions allows remote malicious users to cause a denial of service (access violation and crash) via a zero-byte data block to TCP port 48000, which triggers a NULL pointer dereference.
Massive Entertainment Wic 1.002
Massive Entertainment Wic 1.003
Massive Entertainment Wic 1.006
Massive Entertainment Wic 1.001
Massive Entertainment Wic
Massive Entertainment Wic 1.000
Massive Entertainment Wic 1.005
Massive Entertainment Wic 1.007
1 EDB exploit
NA
CVE-2023-46046
An issue in MiniZinc prior to 2.8.0 allows a NULL pointer dereference via ti_expr in a crafted .mzn file. NOTE: this is disputed because there is no common libminizinc use case in which an unattended process is supposed to run forever to process a series of atttacker-controlled ....
NA
CVE-2023-46047
An issue in Sane 1.2.1 allows a local malicious user to execute arbitrary code via a crafted file to the sanei_configure_attach() function. NOTE: this is disputed because there is no expectation that the product should be starting with an attacker-controlled configuration file.
NA
CVE-2008-5006
smtp.c in the c-client library in University of Washington IMAP Toolkit 2007b allows remote SMTP servers to cause a denial of service (NULL pointer dereference and application crash) by responding to the QUIT command with a close of the TCP connection instead of the expected 221 ...
University Of Washington Imap Toolkit 2007b
NA
CVE-2008-0384
OpenBSD 4.2 allows local users to cause a denial of service (kernel panic) by calling the SIOCGIFRTLABEL IOCTL on an interface that does not have a route label, which triggers a NULL pointer dereference when the return value from the rtlabel_id2name function is not checked.
Openbsd Openbsd 4.2
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »