Vulnerabilities > NULL Pointer Dereference

DATE CVE VULNERABILITY TITLE RISK
2024-11-05 CVE-2024-50122 NULL Pointer Dereference vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: PCI: Hold rescan lock while adding devices during host probe Since adding the PCI power control code, we may end up with a race between the pwrctl platform device rescanning the bus and host controller probe functions.
local
low complexity
linux CWE-476
5.5
2024-11-05 CVE-2024-50132 NULL Pointer Dereference vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: tracing/probes: Fix MAX_TRACE_ARGS limit handling When creating a trace_probe we would set nr_args prior to truncating the arguments to MAX_TRACE_ARGS.
local
low complexity
linux CWE-476
5.5
2024-11-05 CVE-2024-50133 NULL Pointer Dereference vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: LoongArch: Don't crash in stack_top() for tasks without vDSO Not all tasks have a vDSO mapped, for example kthreads never do.
local
low complexity
linux CWE-476
5.5
2024-11-05 CVE-2023-52920 NULL Pointer Dereference vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: bpf: support non-r10 register spill/fill to/from stack in precision tracking Use instruction (jump) history to record instructions that performed register spill/fill to/from stack, regardless if this was done through read-only r10 register, or any other register after copying r10 into it *and* potentially adjusting offset. To make this work reliably, we push extra per-instruction flags into instruction history, encoding stack slot index (spi) and stack frame number in extra 10 bit flags we take away from prev_idx in instruction history.
local
low complexity
linux CWE-476
5.5
2024-11-04 CVE-2024-10750 NULL Pointer Dereference vulnerability in Tenda I22 Firmware 1.0.0.3(4687)
A vulnerability has been found in Tenda i22 1.0.0.3(4687) and classified as problematic.
network
low complexity
tenda CWE-476
6.5
2024-11-01 CVE-2024-22733 NULL Pointer Dereference vulnerability in Tp-Link Mr200 Firmware 210201
TP Link MR200 V4 Firmware version 210201 was discovered to contain a null-pointer-dereference in the web administration panel on /cgi/login via the sign, Action or LoginStatus query parameters which could lead to a denial of service by a local or remote unauthenticated attacker.
network
low complexity
tp-link CWE-476
7.5
2024-10-29 CVE-2024-50069 NULL Pointer Dereference vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: pinctrl: apple: check devm_kasprintf() returned value devm_kasprintf() can return a NULL pointer on failure but this returned value is not checked.
local
low complexity
linux CWE-476
5.5
2024-10-29 CVE-2024-50070 NULL Pointer Dereference vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: pinctrl: stm32: check devm_kasprintf() returned value devm_kasprintf() can return a NULL pointer on failure but this returned value is not checked.
local
low complexity
linux CWE-476
5.5
2024-10-25 CVE-2024-44101 NULL Pointer Dereference vulnerability in Google Android
there is a possible Null Pointer Dereference (modem crash) due to improper input validation.
network
low complexity
google CWE-476
7.5
2024-10-23 CVE-2024-10280 NULL Pointer Dereference vulnerability in Tenda products
A vulnerability was found in Tenda AC6, AC7, AC8, AC9, AC10, AC10U, AC15, AC18, AC500 and AC1206 up to 20241022.
network
low complexity
tenda CWE-476
7.5