Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
null pointer vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2021-3319
DOS: Incorrect 802154 Frame Validation for Omitted Source / Dest Addresses. Zephyr versions >= > v2.4.0 contain NULL Pointer Dereference (CWE-476), Attempt to Access Child of a Non-structure Pointer (CWE-588). For more information, see https://github.com/zephyrproject-rtos/...
Zephyrproject Zephyr
9.8
CVSSv3
CVE-2021-39275
ap_escape_quotes() may write beyond the end of a buffer when given malicious input. No included modules pass untrusted data to these functions, but third-party / external modules may. This issue affects Apache HTTP Server 2.4.48 and previous versions.
Apache Http Server
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Cloud Backup -
Netapp Storagegrid -
Netapp Clustered Data Ontap -
Oracle Http Server 12.2.1.3.0
Oracle Instantis Enterprisetrack 17.1
Oracle Instantis Enterprisetrack 17.2
Oracle Instantis Enterprisetrack 17.3
Oracle Http Server 12.2.1.4.0
Oracle Zfs Storage Appliance Kit 8.8
Siemens Sinema Server 14.0
Siemens Sinec Nms
9.8
CVSSv3
CVE-2021-1946
Null Pointer Dereference may occur due to improper validation while processing crafted SDP body in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile
Qualcomm Apq8017 Firmware -
Qualcomm Apq8053 Firmware -
Qualcomm Aqt1000 Firmware -
Qualcomm Ar8035 Firmware -
Qualcomm Msm8917 Firmware -
Qualcomm Msm8920 Firmware -
Qualcomm Msm8940 Firmware -
Qualcomm Msm8953 Firmware -
Qualcomm Qca6174a Firmware -
Qualcomm Qca6390 Firmware -
Qualcomm Qca6391 Firmware -
Qualcomm Qca6420 Firmware -
Qualcomm Qca6421 Firmware -
Qualcomm Qca6426 Firmware -
Qualcomm Qca6430 Firmware -
Qualcomm Qca6431 Firmware -
Qualcomm Qca6436 Firmware -
Qualcomm Qca6574a Firmware -
Qualcomm Qca6574au Firmware -
Qualcomm Qca6595au Firmware -
Qualcomm Qca6696 Firmware -
Qualcomm Qca8337 Firmware -
9.8
CVSSv3
CVE-2021-38563
An issue exists in Foxit PDF Reader prior to 11.0.1 and PDF Editor prior to 11.0.1. It mishandles situations in which an array size (derived from a /Size entry) is smaller than the maximum indirect object number, and thus there is an attempted incorrect array access (leading to a...
Foxitsoftware Pdf Editor
Foxit Pdf Reader
9.8
CVSSv3
CVE-2021-26691
In Apache HTTP Server versions 2.4.0 to 2.4.46 a specially crafted SessionHeader sent by an origin server could cause a heap overflow
Apache Http Server
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Fedoraproject Fedora 34
Fedoraproject Fedora 35
Oracle Instantis Enterprisetrack 17.1
Oracle Instantis Enterprisetrack 17.2
Oracle Instantis Enterprisetrack 17.3
Oracle Enterprise Manager Ops Center 12.4.0.0
Oracle Zfs Storage Appliance Kit 8.8
Oracle Secure Backup
Netapp Cloud Backup -
1 Github repository
9.8
CVSSv3
CVE-2021-30475
aom_dsp/noise_model.c in libaom in AOMedia prior to 2021-03-24 has a buffer overflow.
Aomedia Aomedia
Fedoraproject Fedora 34
9.8
CVSSv3
CVE-2021-30474
aom_dsp/grain_table.c in libaom in AOMedia prior to 2021-03-30 has a use-after-free.
Aomedia Aomedia
9.8
CVSSv3
CVE-2021-30473
aom_image.c in libaom in AOMedia prior to 2021-04-07 frees memory that is not located on the heap.
Aomedia Aomedia
Fedoraproject Fedora 34
9.8
CVSSv3
CVE-2021-28300
NULL Pointer Dereference in the "isomedia/track.c" module's "MergeTrack()" function of GPAC v0.5.2 allows malicious users to execute arbitrary code or cause a Denial-of-Service (DoS) by uploading a malicious MP4 file.
9.8
CVSSv3
CVE-2019-8572
A null pointer dereference was addressed with improved input validation. This issue is fixed in AirPort Base Station Firmware Update 7.8.1, AirPort Base Station Firmware Update 7.9.1. A remote attacker may be able to cause arbitrary code execution.
Apple Airport Base Station Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »