Vulnerabilities > Missing Initialization of Resource

DATE CVE VULNERABILITY TITLE RISK
2019-09-27 CVE-2019-9315 Missing Initialization of Resource vulnerability in Google Android 10.0
In libhevc, there is a missing variable initialization.
network
low complexity
google CWE-909
6.5
2019-09-27 CVE-2019-9314 Missing Initialization of Resource vulnerability in Google Android 10.0
In libavc, there is a missing variable initialization.
network
low complexity
google CWE-909
6.5
2019-09-27 CVE-2019-9313 Missing Initialization of Resource vulnerability in Google Android 10.0
In libstagefright, there is a missing variable initialization.
network
low complexity
google CWE-909
6.5
2019-09-27 CVE-2019-9247 Missing Initialization of Resource vulnerability in Google Android 10.0
In AAC Codec, there is a missing variable initialization.
network
low complexity
google CWE-909
6.5
2019-09-23 CVE-2019-16714 Missing Initialization of Resource vulnerability in multiple products
In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows attackers to obtain sensitive information from kernel stack memory because tos and flags fields are not initialized.
network
low complexity
linux canonical f5 CWE-909
7.5
2019-03-26 CVE-2019-3804 Missing Initialization of Resource vulnerability in multiple products
It was found that cockpit before version 184 used glib's base64 decode functionality incorrectly resulting in a denial of service attack.
network
low complexity
cockpit-project fedoraproject redhat CWE-909
7.5
2019-03-09 CVE-2019-9639 Missing Initialization of Resource vulnerability in multiple products
An issue was discovered in the EXIF component in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3.
network
low complexity
php debian canonical opensuse netapp redhat CWE-909
7.5
2018-11-25 CVE-2018-19519 Missing Initialization of Resource vulnerability in Tcpdump 4.9.2
In tcpdump 4.9.2, a stack-based buffer over-read exists in the print_prefix function of print-hncp.c via crafted packet data because of missing initialization.
local
low complexity
tcpdump CWE-909
5.5
2018-10-02 CVE-2018-9511 Missing Initialization of Resource vulnerability in Google Android 9.0
In ipSecSetEncapSocketOwner of XfrmController.cpp, there is a possible failure to initialize a security feature due to uninitialized data.
local
low complexity
google CWE-909
5.5
2018-09-25 CVE-2018-14647 Missing Initialization of Resource vulnerability in multiple products
Python's elementtree C accelerator failed to initialise Expat's hash salt during initialization.
7.5