Vulnerabilities > NULL Pointer Dereference

DATE CVE VULNERABILITY TITLE RISK
2017-11-06 CVE-2017-15306 NULL Pointer Dereference vulnerability in Linux Kernel
The kvm_vm_ioctl_check_extension function in arch/powerpc/kvm/powerpc.c in the Linux kernel before 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) via a KVM_CHECK_EXTENSION KVM_CAP_PPC_HTM ioctl call to /dev/kvm.
local
low complexity
linux CWE-476
5.5
2017-11-05 CVE-2017-16545 NULL Pointer Dereference vulnerability in Graphicsmagick 1.3.26
The ReadWPGImage function in coders/wpg.c in GraphicsMagick 1.3.26 does not properly validate colormapped images, which allows remote attackers to cause a denial of service (ImportIndexQuantumType invalid write and application crash) or possibly have unspecified other impact via a malformed WPG image.
network
low complexity
graphicsmagick CWE-476
8.8
2017-11-04 CVE-2017-16537 NULL Pointer Dereference vulnerability in Linux Kernel
The imon_probe function in drivers/media/rc/imon.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.
low complexity
linux CWE-476
6.6
2017-11-04 CVE-2017-16536 NULL Pointer Dereference vulnerability in Linux Kernel
The cx231xx_usb_probe function in drivers/media/usb/cx231xx/cx231xx-cards.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.
low complexity
linux CWE-476
6.6
2017-11-04 CVE-2017-16532 NULL Pointer Dereference vulnerability in multiple products
The get_endpoints function in drivers/usb/misc/usbtest.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.
low complexity
linux debian canonical CWE-476
6.6
2017-11-01 CVE-2017-16359 NULL Pointer Dereference vulnerability in Radare Radare2 2.0.1
In radare 2.0.1, a pointer wraparound vulnerability exists in store_versioninfo_gnu_verdef() in libr/bin/format/elf/elf.c.
local
low complexity
radare CWE-476
5.5
2017-10-30 CVE-2017-15921 NULL Pointer Dereference vulnerability in Watchdogdevelopment Anti-Malware and Online Security PRO
In Watchdog Anti-Malware 2.74.186.150 and Online Security Pro 2.74.186.150, the zam32.sys driver contains a NULL pointer dereference vulnerability that gets triggered when sending an operation to ioctl 0x80002010.
network
low complexity
watchdogdevelopment CWE-476
7.5
2017-10-30 CVE-2017-15920 NULL Pointer Dereference vulnerability in Watchdogdevelopment Anti-Malware and Online Security PRO
In Watchdog Anti-Malware 2.74.186.150 and Online Security Pro 2.74.186.150, the zam32.sys driver contains a NULL pointer dereference vulnerability that gets triggered when sending an operation to ioctl 0x80002054.
network
low complexity
watchdogdevelopment CWE-476
7.5
2017-10-30 CVE-2015-7549 NULL Pointer Dereference vulnerability in Qemu
The MSI-X MMIO support in hw/pci/msix.c in QEMU (aka Quick Emulator) allows local guest OS privileged users to cause a denial of service (NULL pointer dereference and QEMU process crash) by leveraging failure to define the .write method.
local
low complexity
qemu CWE-476
6.0
2017-10-28 CVE-2017-15955 NULL Pointer Dereference vulnerability in multiple products
bchunk (related to BinChunker) 1.2.0 and 1.2.1 is vulnerable to an "Access violation near NULL on destination operand" and crash when processing a malformed CUE (.cue) file.
local
low complexity
debian bchunk-project CWE-476
5.5