Vulnerabilities > Improper Initialization

DATE CVE VULNERABILITY TITLE RISK
2018-03-14 CVE-2018-0813 Improper Initialization vulnerability in Microsoft products
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way objects are initialized in memory, aka "Windows Kernel Information Disclosure Vulnerability".
local
low complexity
microsoft CWE-665
5.5
2018-03-14 CVE-2018-0811 Improper Initialization vulnerability in Microsoft products
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way objects are initialized in memory, aka "Windows Kernel Information Disclosure Vulnerability".
local
low complexity
microsoft CWE-665
5.5
2018-02-28 CVE-2018-6947 Improper Initialization vulnerability in multiple products
An uninitialised stack variable in the nxfuse component that is part of the Open Source DokanFS library shipped with NoMachine 6.0.66_2 and earlier allows a local low privileged user to gain elevation of privileges on Windows 7 (32 and 64bit), and denial of service for Windows 8 and 10.
local
low complexity
nomachine microsoft CWE-665
7.8
2018-02-23 CVE-2018-7419 Improper Initialization vulnerability in multiple products
In Wireshark 2.2.0 to 2.2.12 and 2.4.0 to 2.4.4, the NBAP dissector could crash.
network
low complexity
wireshark debian CWE-665
7.5
2018-02-15 CVE-2018-0853 Improper Initialization vulnerability in Microsoft Office 2010/2013/2016
Microsoft Office 2010 SP2, Microsoft Office 2013 SP1 and RT SP1, Microsoft Office 2016, and Microsoft Office 2016 Click-to-Run (C2R) allow an information disclosure vulnerability, due to how Office initializes the affected variable, aka "Microsoft Office Information Disclosure Vulnerability".
local
low complexity
microsoft CWE-665
3.3
2018-02-15 CVE-2018-0810 Improper Initialization vulnerability in Microsoft Windows 7, Windows Server 2008 and Windows Server 2012
The Windows kernel in Windows 7 SP1, Windows Server 2008 SP2 and R2, and Windows Server 2012 allows an information disclosure vulnerability due to the way memory is initialized, aka "Windows Kernel Information Disclosure Vulnerability".
local
high complexity
microsoft CWE-665
4.7
2018-01-04 CVE-2018-0746 Improper Initialization vulnerability in Microsoft products
The Windows kernel in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memory addresses are handled, aka "Windows Information Disclosure Vulnerability".
local
high complexity
microsoft CWE-665
4.7
2018-01-04 CVE-2018-0745 Improper Initialization vulnerability in Microsoft Windows 10 and Windows Server 2016
The Windows kernel in Windows 10 version 1703.
local
high complexity
microsoft CWE-665
4.7
2017-12-26 CVE-2017-12736 Improper Initialization vulnerability in Siemens products
A vulnerability has been identified in RUGGEDCOM ROS for RSL910 devices (All versions < ROS V5.0.1), RUGGEDCOM ROS for all other devices (All versions < ROS V4.3.4), SCALANCE XB-200/XC-200/XP-200/XR300-WG (All versions between V3.0 (including) and V3.0.2 (excluding)), SCALANCE XR-500/XM-400 (All versions between V6.1 (including) and V6.1.1 (excluding)).
low complexity
siemens CWE-665
8.8
2017-12-11 CVE-2017-15897 Improper Initialization vulnerability in Nodejs Node.Js
Node.js had a bug in versions 8.X and 9.X which caused buffers to not be initialized when the encoding for the fill value did not match the encoding specified.
network
high complexity
nodejs CWE-665
3.1