Vulnerabilities > Improper Initialization

DATE CVE VULNERABILITY TITLE RISK
2019-09-27 CVE-2019-11747 Improper Initialization vulnerability in Mozilla Firefox
The "Forget about this site" feature in the History pane is intended to remove all saved user data that indicates a user has visited a site.
network
low complexity
mozilla CWE-665
6.5
2019-09-27 CVE-2019-16921 Improper Initialization vulnerability in Linux Kernel
In the Linux kernel before 4.17, hns_roce_alloc_ucontext in drivers/infiniband/hw/hns/hns_roce_main.c does not initialize the resp data structure, which might allow attackers to obtain sensitive information from kernel stack memory, aka CID-df7e40425813.
network
low complexity
linux CWE-665
7.5
2019-09-25 CVE-2019-12646 Improper Initialization vulnerability in Cisco IOS XE
A vulnerability in the Network Address Translation (NAT) Session Initiation Protocol (SIP) Application Layer Gateway (ALG) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload.
network
low complexity
cisco CWE-665
7.5
2019-09-11 CVE-2019-1299 Improper Initialization vulnerability in Microsoft Edge
An information disclosure vulnerability exists when Microsoft Edge based on Edge HTML improperly handles objects in memory, aka 'Microsoft Edge based on Edge HTML Information Disclosure Vulnerability'.
network
low complexity
microsoft CWE-665
6.5
2019-09-11 CVE-2019-1274 Improper Initialization vulnerability in Microsoft products
An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address, aka 'Windows Kernel Information Disclosure Vulnerability'.
local
low complexity
microsoft CWE-665
5.5
2019-07-29 CVE-2019-14271 Improper Initialization vulnerability in multiple products
In Docker 19.03.x before 19.03.1 linked against the GNU C Library (aka glibc), code injection can occur when the nsswitch facility dynamically loads a library inside a chroot that contains the contents of the container.
network
low complexity
docker debian opensuse CWE-665
critical
9.8
2019-07-26 CVE-2019-5605 Improper Initialization vulnerability in Freebsd 11.0/11.2/11.3
In FreeBSD 11.3-STABLE before r350217, 11.3-RELEASE before 11.3-RELEASE-p1, and 11.2-RELEASE before 11.2-RELEASE-p12, due to insufficient initialization of memory copied to userland in the freebsd32_ioctl interface, small amounts of kernel memory may be disclosed to userland processes.
network
low complexity
freebsd CWE-665
6.5
2019-06-26 CVE-2019-12979 Improper Initialization vulnerability in multiple products
ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the SyncImageSettings function in MagickCore/image.c.
7.8
2019-06-26 CVE-2019-12978 Improper Initialization vulnerability in Imagemagick 7.0.834
ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the ReadPANGOImage function in coders/pango.c.
local
low complexity
imagemagick CWE-665
7.8
2019-06-26 CVE-2019-12977 Improper Initialization vulnerability in Imagemagick 7.0.834
ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the WriteJP2Image function in coders/jp2.c.
local
low complexity
imagemagick CWE-665
7.8