Vulnerabilities > Improper Initialization

DATE CVE VULNERABILITY TITLE RISK
2017-08-09 CVE-2017-0745 Improper Initialization vulnerability in Google Android
A remote code execution vulnerability in the Android media framework (avc decoder).
local
low complexity
google CWE-665
7.8
2017-08-09 CVE-2017-0735 Improper Initialization vulnerability in Google Android
A denial of service vulnerability in the Android media framework (libavc).
local
low complexity
google CWE-665
5.5
2017-08-09 CVE-2017-0723 Improper Initialization vulnerability in Google Android
A remote code execution vulnerability in the Android media framework (libavc).
local
low complexity
google CWE-665
7.8
2017-07-06 CVE-2017-10972 Improper Initialization vulnerability in X.Org Xorg-Server
Uninitialized data in endianness conversion in the XEvent handling of the X.Org X Server before 2017-06-19 allowed authenticated malicious users to access potentially privileged data from the X server.
network
low complexity
x-org CWE-665
6.5
2017-06-29 CVE-2017-8576 Improper Initialization vulnerability in Microsoft Windows 10 and Windows Server 2016
The graphics component in Microsoft Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows an authenticated attacker to run arbitrary code in kernel mode via a specially crafted application, aka "Microsoft Graphics Component Elevation of Privilege Vulnerability."
local
high complexity
microsoft CWE-665
7.0
2017-06-14 CVE-2017-0641 Improper Initialization vulnerability in Google Android
A remote denial of service vulnerability in libvpx in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot.
local
low complexity
google CWE-665
5.5
2017-06-06 CVE-2014-9942 Improper Initialization vulnerability in Google Android
In Boot in all Android releases from CAF using the Linux kernel, a Use of Uninitialized Variable vulnerability could potentially exist.
local
low complexity
google CWE-665
7.8
2017-02-03 CVE-2017-3820 Improper Initialization vulnerability in Cisco IOS XE 3.13.6S/3.16.2S/3.17.1S
A vulnerability in Simple Network Management Protocol (SNMP) functions of Cisco ASR 1000 Series Aggregation Services Routers running Cisco IOS XE Software Release 3.13.6S, 3.16.2S, or 3.17.1S could allow an authenticated, remote attacker to cause high CPU usage on an affected device, resulting in a denial of service (DoS) condition.
network
low complexity
cisco CWE-665
6.5
2017-01-23 CVE-2016-9446 Improper Initialization vulnerability in multiple products
The vmnc decoder in the gstreamer does not initialize the render canvas, which allows remote attackers to obtain sensitive information as demonstrated by thumbnailing a simple 1 frame vmnc movie that does not draw to the allocated render canvas.
7.5
2016-12-10 CVE-2016-6836 Improper Initialization vulnerability in multiple products
The vmxnet3_complete_packet function in hw/net/vmxnet3.c in QEMU (aka Quick Emulator) allows local guest OS administrators to obtain sensitive host memory information by leveraging failure to initialize the txcq_descr object.
local
low complexity
qemu debian CWE-665
6.0