CVE-2022-3084 GE CIMPLICITY Access of Uninitialized Pointer

GE CIMPICITY versions 2022 and prior is vulnerable when data from a faulting address controls code flow starting at gmmiObj!CGmmiRootOptionTable, which could allow an attacker to execute arbitrary code...

Callback Technologies CBFS Filter 代码问题漏洞

Callback Technologies CBFS Filter is an interceptor from Callback Technologies, USA. Allows you to intercept and react to file system, registry and process manager operations as they occur. A code issue vulnerability exists in Callback Technologies CBFS Filter version 20.0.8317, which stems from ...

SUSE-SU-2022:3735-1 Security update for telnet

This update for telnet fixes the following issues: - CVE-2022-39028: Fixed NULL pointer dereference in telnetd bsc1203759...

PT-2022-25979 · Unknown · Fingerprint Trusted Application

Name of the Vulnerable Software and Affected Versions: Fingerprint trusted application TA affected versions not specified Description: The issue concerns heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application. Successful exploitation may affect...

Protect

An access of uninitialized pointer vulnerability CWE-824 in the SSL VPN portal of FortiOS & FortiProxy may allow a remote unauthenticated or authenticated see Affected Products section attacker to crash the sslvpn daemon via an HTTP GET request...

VMware ESXi 代码问题漏洞

VMware ESXi is a server virtualization platform from VMware that can be installed directly on physical servers. A security vulnerability exists in VMware ESXi versions 6.5, 6.7, and 7.0, and VMware Cloud Foundation versions 3.x and 4.x series, which stems from a null pointer dereference, and can ...

SUSE-SU-2022:3475-1 Security update for libjpeg-turbo

This update for libjpeg-turbo fixes the following issues: - CVE-2020-35538: Fixed null pointer dereference in jcopysamplerows function bsc1202915...

XPDF 代码问题漏洞

XPDF is an open source PDF reader from FOO Labs. The product supports decoding files in LZW compressed format and reading encrypted PDF files. A security vulnerability exists in XPDF version 4.04, which stems from vulnerability to the null pointer dereference attack in FoFiType1C.cc:2393...

CVE-2022-38096 There is a NULL pointer vulnerability in vmwgfx driver

A NULL pointer dereference vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfxexecbuf.c in GPU component of Linux kernel with device file '/dev/dri/renderD128 or Dxxx'. This flaw allows a local attacker with a user account on the system to gain privilege, causing a denial of...

CVE-2022-38096 There is a NULL pointer vulnerability in vmwgfx driver

A NULL pointer dereference vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfxexecbuf.c in GPU component of Linux kernel with device file '/dev/dri/renderD128 or Dxxx'. This flaw allows a local attacker with a user account on the system to gain privilege, causing a denial of...

Mz Automation Libiec61850 代码问题漏洞

Mz Automation Libiec61850 is an open source library for the IEC 61850 protocol from Mz Automation. Mz Automation Libiec61850 suffers from a code issue vulnerability that stems from its use of null pointers under certain circumstances. This could allow an attacker to crash the server...

CVE-2022-36659

xhyve commit dfbe09b was discovered to contain a NULL pointer dereference via the component vipciwrite. This vulnerability allows attackers to cause a Denial of Service via unspecified vectors...

Foxit PDF Reader 代码问题漏洞

Foxit PDF Reader is a PDF reader. Foxit PDF Editor is a PDF editor. Foxit PDF Reader and PDF Editor have a code issue vulnerability that stems from a null pointer reference when this.Span is used by the oState of oStateCollab.addStateModel A null pointer reference exists when this.Span.text is us...

PingCAP TiDB 代码问题漏洞

PingCAP TiDB is an open source, cloud-native, distributed, MySQL-compatible database for elastic scaling and real-time analytics from China-based PingCAP. A code issue vulnerability exists in PingCAP TiDB version v6.1.0, which stems from the presence of null pointer references...

Cesanta MJS 代码问题漏洞

Cesanta MJS is an embedded JavaScript engine for C/C++ from Cesanta Ireland. It is designed for microcontrollers with limited resources. The main design goals are a small footprint and simple C/C++ interoperability. A security vulnerability exists in Cesanta MJS mJS: Restricted JavaScript engine...

CVE-2022-34228

Adobe Acrobat Reader versions 22.001.20142 and earlier, 20.005.30334 and earlier and 17.012.30229 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user...

Vulnerability of BIOS microprogramming software of Intel processors, allowing attackers to enhance their privileges

The vulnerability of Intel processor BIOS microprogramming software is related to the pointer being moved outside of its expected range. Exploiting this vulnerability can allow an attacker to enhance their privileges...

CVE-2022-31625

In PHP versions 7.4.x below 7.4.30, 8.0.x below 8.0.20, and 8.1.x below 8.1.7, when using Postgres database extension, supplying invalid parameters to the parametrized query may lead to PHP attempting to free memory using uninitialized data as pointers. This could lead to RCE vulnerability or...

CVE-2022-29795

The frame scheduling module has a null pointer dereference vulnerability. Successful exploitation of this vulnerability will affect the kernel availability...

The vulnerability of the Adobe Media Encoder application, related to the swapping of the zero pointer, allows a perpetrator to cause service interruptions.

The vulnerability of the Adobe Media Encoder application relates to the assignment of a zero pointer. Exploiting this vulnerability could allow an attacker to cause service interruptions...