148 matches found
GHSA-7QCC-G2M9-8533 Null pointer deference in fltk
An issue was discovered in the fltk crate before 0.15.3 for Rust. There is a NULL pointer dereference during attempted use of a non-raster image for a window icon...
CVE-2021-28842
CVE-2021-28842 affects TRENDnet TEW-755AP (1.11B03), TEW-755AP2KAC (1.11B03), TEW-821DAP2KAC (1.11B03), and TEW-825DAP (1.11B03). A null pointer dereference vulnerability lets a remote attacker cause a denial of service by sending a POST request to apply_cgi via action do_graph_auth without login...
CVE-2021-28842
Null Pointer Deference vulnerability exists in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW-821DAP2KAC 1.11B03, and TEW-825DAP 1.11B03, which could let a remote malicious user cause a denial os service by sending the POST request to applycgi via action dographauth without loginname key...
CVE-2021-33717
The CVE-2021-33717 vulnerability affects Siemens JT2Go and Teamcenter Visualization (versions before 13.2.0.1). It is a NULL pointer dereference when parsing specially crafted CGM files, which can crash the application and require a restart, enabling a denial-of-service condition. Affected produc...
Race condition
A vulnerability has been identified in JT Utilities All versions V13.0.2.0. When parsing specially crafted JT files, a race condition could cause an object to be released before being operated on, leading to NULL pointer deference condition and causing the application to crash. An attacker could...
CVE-2021-33714
Siemens JT Utilities contains a NULL pointer dereference flaw (CVE-2021-33714) when parsing specially crafted JT files due to a missing iterator validity check. Affected product: Siemens JT Utilities prior to version 13.0.2.0. Impact: denial-of-service via application crash. Source material indic...
Updated exif packages fix a security vulnerability
NULL Pointer Deference in the exif command line tool, when printing out XML formatted EXIF data, in exif v0.6.22 and earlier allows attackers to cause a Denial of Service DoS by uploading a malicious JPEG file, causing the application to crash. CVE-2021-27815...
CVE-2020-18395
A NULL-pointer deference issue was discovered in GNUgama::set in ellipsoid.h in Gama 2.04 which can lead to a denial of service DOS via segment faults caused by crafted inputs...
CVE-2020-21835
A null pointer deference issue exists in GNU LibreDWG 0.10 via read2004compressedsection ../../src/decode.c:2337...
CVE-2020-21834
A null pointer deference issue exists in GNU LibreDWG 0.10 via getbmp ../../programs/dwgbmp.c:164...
CVE-2020-21835
A null pointer deference issue exists in GNU LibreDWG 0.10 via read2004compressedsection ../../src/decode.c:2337...
CVE-2020-21834
A null pointer deference issue exists in GNU LibreDWG 0.10 via getbmp ../../programs/dwgbmp.c:164...
CVE-2020-21815
A null pointer deference issue exists in GNU LibreDWG 0.10.2641 via outputTEXT ../../programs/dwg2SVG.c:114, which causes a denial of service application crash...
CVE-2020-21815
A null pointer deference issue exists in GNU LibreDWG 0.10.2641 via outputTEXT ../../programs/dwg2SVG.c:114, which causes a denial of service application crash...
sbibboleth-sp -- denial of service vulnerability
Shibboleth project reports: Session recovery feature contains a null pointer deference. The cookie-based session recovery feature added in V3.0 contains a flaw that is exploitable on systems not using the feature if a specially crafted cookie is supplied. This manifests as a crash in the shibd...
CVE-2021-27815
NULL Pointer Deference in the exif command line tool, when printing out XML formatted EXIF data, in exif v0.6.22 and earlier allows attackers to cause a Denial of Service DoS by uploading a malicious JPEG file, causing the application to crash...
CVE-2021-27815
CVE-2021-27815 affects the exif tool (libexif) up to and including version 0.6.22. The vulnerability is a NULL pointer dereference in the XML output path, allowing a crafted JPEG to crash the application (Denial of Service). Affected products cite exif v0.6.22 and earlier. Exploitation involves u...
CVE-2021-30485
An issue was discovered in libezxml.a in ezXML 0.8.6. The function ezxmlinternaldtd, while parsing a crafted XML file, performs incorrect memory handling, leading to a NULL pointer dereference while running strcmp on a NULL pointer...
CVE-2021-25674
CVE-2021-25674 affects SIMATIC S7-PLCSIM v5.4 (all versions) where opening a specially crafted file can trigger a NULL pointer dereference, causing the application to terminate and require restart. The vulnerability is locally exploitable; no remote access is indicated. Connected sources corrobor...
CVE-2021-25674
A vulnerability has been identified in SIMATIC S7-PLCSIM V5.4 All versions. An attacker with local access to the system could cause a Denial-of-Service condition in the application when it is used to open a specially crafted file. As a consequence, a NULL pointer deference condition could cause t...