Vulnerabilities > Improper Initialization

DATE CVE VULNERABILITY TITLE RISK
2019-12-18 CVE-2019-8552 Improper Initialization vulnerability in Apple products
A memory initialization issue was addressed with improved memory handling.
local
low complexity
apple CWE-665
7.8
2019-12-18 CVE-2019-8540 Improper Initialization vulnerability in Apple products
A memory initialization issue was addressed with improved memory handling.
local
low complexity
apple CWE-665
5.5
2019-12-18 CVE-2019-8504 Improper Initialization vulnerability in Apple mac OS X
A memory initialization issue was addressed with improved memory handling.
local
low complexity
apple CWE-665
5.5
2019-11-19 CVE-2019-19126 Improper Initialization vulnerability in multiple products
On the x86-64 architecture, the GNU C Library (aka glibc) before 2.31 fails to ignore the LD_PREFER_MAP_32BIT_EXEC environment variable during program execution after a security transition, allowing local attackers to restrict the possible mapping addresses for loaded libraries and thus bypass ASLR for a setuid program.
local
low complexity
gnu canonical fedoraproject debian CWE-665
3.3
2019-11-14 CVE-2019-14565 Improper Initialization vulnerability in Intel Software Guard Extensions SDK
Insufficient initialization in Intel(R) SGX SDK Windows versions 2.4.100.51291 and earlier, and Linux versions 2.6.100.51363 and earlier, may allow an authenticated user to enable information disclosure, escalation of privilege or denial of service via local access.
local
low complexity
intel CWE-665
7.8
2019-11-12 CVE-2019-1409 Improper Initialization vulnerability in Microsoft products
An information disclosure vulnerability exists when the Windows Remote Procedure Call (RPC) runtime improperly initializes objects in memory, aka 'Windows Remote Procedure Call Information Disclosure Vulnerability'.
local
low complexity
microsoft CWE-665
5.5
2019-11-06 CVE-2014-8181 Improper Initialization vulnerability in Redhat Enterprise Linux and Enterprise MRG
The kernel in Red Hat Enterprise Linux 7 and MRG-2 does not clear garbage data for SG_IO buffer, which may leaking sensitive information to userspace.
local
low complexity
redhat CWE-665
5.5
2019-10-29 CVE-2019-15681 Improper Initialization vulnerability in multiple products
LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an attacker to read stack memory and can be abused for information disclosure.
network
low complexity
libvnc-project canonical debian siemens CWE-665
7.5
2019-09-27 CVE-2019-11747 Improper Initialization vulnerability in Mozilla Firefox
The "Forget about this site" feature in the History pane is intended to remove all saved user data that indicates a user has visited a site.
network
low complexity
mozilla CWE-665
6.5
2019-09-27 CVE-2019-16921 Improper Initialization vulnerability in Linux Kernel
In the Linux kernel before 4.17, hns_roce_alloc_ucontext in drivers/infiniband/hw/hns/hns_roce_main.c does not initialize the resp data structure, which might allow attackers to obtain sensitive information from kernel stack memory, aka CID-df7e40425813.
network
low complexity
linux CWE-665
7.5