Vulnerabilities > NULL Pointer Dereference

DATE CVE VULNERABILITY TITLE RISK
2018-12-18 CVE-2018-20195 NULL Pointer Dereference vulnerability in Audiocoding Freeware Advanced Audio Decoder 2 2.8.8
A NULL pointer dereference was discovered in ic_predict of libfaad/ic_predict.c in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8.
local
low complexity
audiocoding CWE-476
5.5
2018-12-17 CVE-2018-20190 NULL Pointer Dereference vulnerability in Sass-Lang Libsass 3.5.5
In LibSass 3.5.5, a NULL Pointer Dereference in the function Sass::Eval::operator()(Sass::Supports_Operator*) in eval.cpp may cause a Denial of Service (application crash) via a crafted sass input file.
network
low complexity
sass-lang CWE-476
6.5
2018-12-17 CVE-2018-14853 NULL Pointer Dereference vulnerability in Samsung Galaxy S6 Firmware G920Fxxu5Eqh7
A NULL pointer dereference in dhd_prot_txdata_write_flush in drivers/net/wireless/bcmdhd4358/dhd_msgbuf.c in the bcmdhd4358 Wi-Fi driver on the Samsung Galaxy S6 SM-G920F G920FXXU5EQH7 allows an attacker (who has obtained code execution on the Wi-Fi chip) to cause the device to reboot.
low complexity
samsung CWE-476
4.3
2018-12-07 CVE-2018-5812 NULL Pointer Dereference vulnerability in multiple products
An error within the "nikon_coolscan_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.9 can be exploited to trigger a NULL pointer dereference.
network
low complexity
libraw canonical CWE-476
6.5
2018-12-07 CVE-2018-5806 NULL Pointer Dereference vulnerability in multiple products
An error within the "leaf_hdr_load_raw()" function (internal/dcraw_common.cpp) in LibRaw versions prior to 0.18.8 can be exploited to trigger a NULL pointer dereference.
network
low complexity
libraw redhat CWE-476
6.5
2018-12-07 CVE-2018-5801 NULL Pointer Dereference vulnerability in multiple products
An error within the "LibRaw::unpack()" function (src/libraw_cxx.cpp) in LibRaw versions prior to 0.18.7 can be exploited to trigger a NULL pointer dereference.
network
low complexity
libraw redhat canonical debian CWE-476
6.5
2018-12-07 CVE-2018-19939 NULL Pointer Dereference vulnerability in MI A2 Lite Firmware and Redmi 6 Firmware
The Goodix GT9xx touchscreen driver for custom Linux kernels on Xiaomi daisy-o-oss and daisy-p-oss as used in Mi A2 Lite and RedMi6 pro devices through 2018-08-27 has a NULL pointer dereference in kfree after a kmalloc failure in gtp_read_Color in drivers/input/touchscreen/gt917d/gt9xx.c.
network
low complexity
mi CWE-476
7.5
2018-12-07 CVE-2018-19935 NULL Pointer Dereference vulnerability in multiple products
ext/imap/php_imap.c in PHP 5.x and 7.x before 7.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via an empty string in the message argument to the imap_mail function.
network
low complexity
php debian CWE-476
7.5
2018-12-06 CVE-2018-19882 NULL Pointer Dereference vulnerability in Artifex Mupdf 1.14.0
In Artifex MuPDF 1.14.0, the svg_run_image function in svg/svg-run.c allows remote attackers to cause a denial of service (href_att NULL pointer dereference and application crash) via a crafted svg file, as demonstrated by mupdf-gl.
local
low complexity
artifex CWE-476
5.5
2018-12-04 CVE-2018-6116 NULL Pointer Dereference vulnerability in multiple products
A nullptr dereference in WebAssembly in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page.
network
low complexity
google redhat debian CWE-476
6.5