CVE-2021-38401

Fuji Electric V-Server Lite and Tellus Lite V-Simulator prior to v4.0.12.0 is vulnerable to an untrusted pointer dereference, which may allow an attacker to execute arbitrary code and cause the application to crash...

Design/Logic Flaw

Adobe Premiere Rush versions 1.5.16 and earlier allows access to an uninitialized pointer vulnerability that allows remote attackers to disclose sensitive information on affected installations. User interaction is required to exploit this vulnerability in that the target must visit a malicious pa...

CVE-2021-38401 Fuji Electric Tellus Lite V-Simulator untrusted pointer dereference

Fuji Electric V-Server Lite and Tellus Lite V-Simulator prior to v4.0.12.0 is vulnerable to an untrusted pointer dereference, which may allow an attacker to execute arbitrary code and cause the application to crash...

CVE-2021-43030

Adobe Premiere Rush (Windows/macOS)

The vulnerability of the Apache HTTP Server’s web server, related to the assignment of the zero pointer, allows attackers to trigger a service failure.

The vulnerability of the Apache HTTP Server web server is related to the assignment of the zero pointer. Exploiting this vulnerability allows a malicious actor to cause service interruptions through specially crafted HTTP requests...

Wireshark null pointer dereference vulnerability (CNVD-2021-94899)

Wireshark is a network packet analysis software. Wireshark uses WinPCAP as an interface to exchange data packets directly with the network card.A null pointer dereference vulnerability exists in the IPPUSB parser in Wireshark versions 3.4.0 - 3.4.9. An attacker could exploit this vulnerability to...

@2109-t5/server (>=1.0.0 <=1.0.9), @agentscript-ai/linear (>=0.1.0 <=0.9.0) +339 more potentially affected by CVE-2021-23509 via json-ptr (>=0.1.1 <=2.2.0)

json-ptr NPM version =0.1.1, =1.0.0, =0.1.0, =0.0.1, =0.0.1, =1.0.0, =1.0.0, =0.0.1, =0.15.0, =2.0.0-pr.1, =0.0.1-alpha.1, =5.4.3 - @cdxoo/pojo-utils =0.1.0 - @chix/chit =0.5.2 and more Source cves: CVE-2021-23509 Source advisory: OSV:GHSA-8GWJ-8HXC-285W...

PT-2021-7248 · Npm · Json-Pointer

Name of the Vulnerable Software and Affected Versions: json-pointer versions up to and including 0.6.1 Description: A type confusion issue in the json-pointer package can lead to a bypass when the pointer components are arrays. This can potentially allow a remote attacker to execute arbitrary cod...

json-ptr 安全漏洞

Json-Ptr is a full implementation of Json pointer Rfc 6901 for Nodejs and modern browsers. a security vulnerability exists in Json-Ptr, which stems from a design or implementation impropriety in the code development process of a web system or product. No details of the vulnerability are currently...

Adobe Audition null pointer dereference vulnerability

Adobe Audition is an audio editor and post-production suite. Adobe Audition 14.4 and earlier versions are vulnerable to a null pointer dereference vulnerability that could be exploited by attackers to cause a denial of service for the application...

CVE-2021-23139

A null pointer vulnerability in Trend Micro Apex One and Worry-Free Business Security 10.0 SP1 could allow an attacker to crash the CGI program on affected installations...

CVE-2021-41524

While fuzzing the 2.4.49 httpd, a new null pointer dereference was detected during HTTP/2 request processing, allowing an external source to DoS the server. This requires a specially crafted request. The vulnerability was recently introduced in version 2.4.49. No exploit is known to the project...

CVE-2021-32280

The transfig package is susceptible to a NULL pointer dereference on crafted input. While translating fig code, patterns which include incomplete closed splines lead to this software flaw. The highest threat from this vulnerability is availability...

Null pointer dereference

NULL pointer dereference vulnerability in NPU driver prior to SMR Sep-2021 Release 1 allows attackers to cause memory corruption...

Multiple D-Link products null pointer dereference vulnerability

The D-Link DAP-2310 is a single-band wireless network access point for small businesses or schools that need a fast and reliable wireless network. the DAP-2330 is a wireless N300 single-band PoE access point. A null pointer dereference vulnerability exists in several D-Link products. The...

PYSEC-2021-569

TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in tf.rawops.RaggedTensorToSparse. The implementation has an incomplete validation of the splits values: it does not check...

Exiv2 代码问题漏洞

Exiv2 is a cross-platform C++ library and command line utility for managing image metadata. A null pointer dereference vulnerability exists in Exiv2 0.27.4 and earlier versions. An attacker could exploit this vulnerability to cause a denial of service via a specially crafted image file...

Zephyr Null Pointer Dereference Vulnerability

Zephyr is an open source, small, scalable real-time operating system from the Linux Foundation. Zephyr suffers from a security vulnerability that stems from error handling in the Bluetooth HCI kernel. No detailed vulnerability details are provided at this time...

CVE-2021-22548

The CVE-2021-22548 entry concerns Google Asylo. A vulnerability arises where an attacker can change a pointer from untrusted memory to reference trusted memory, causing copying of trusted memory to trusted memory. If the later copy-out occurs, this enables reading memory regions from the trusted ...

Envoy null pointer dereference vulnerability (CNVD-2021-58574)

Envoy is an open source distributed proxy server. versions prior to Envoy 1.71.1 are vulnerable to a null pointer dereference vulnerability, which can be exploited by attackers to crash the program...