Vulnerabilities > Use of Uninitialized Resource

DATE CVE VULNERABILITY TITLE RISK
2021-12-27 CVE-2021-45694 Use of Uninitialized Resource vulnerability in Rdiff Project Rdiff 0.1.0/0.1.1/0.1.2
An issue was discovered in the rdiff crate through 2021-02-03 for Rust.
network
low complexity
rdiff-project CWE-908
7.5
2021-12-27 CVE-2021-45703 Use of Uninitialized Resource vulnerability in Tectonic XDV Project Tectonic XDV
An issue was discovered in the tectonic_xdv crate before 0.1.12 for Rust.
network
low complexity
tectonic-xdv-project CWE-908
critical
9.8
2021-12-22 CVE-2021-40418 Use of Uninitialized Resource vulnerability in Blackmagicdesign Davinci Resolve 17.3.1.0005
When parsing a file that is submitted to the DPDecoder service as a job, the R3D SDK will mistakenly skip over the assignment of a property containing an object referring to a UUID that was parsed from a frame within the video container.
network
low complexity
blackmagicdesign CWE-908
critical
9.8
2021-12-14 CVE-2021-44003 Use of Uninitialized Resource vulnerability in Siemens Jt2Go and Teamcenter Visualization
A vulnerability has been identified in JT2Go (All versions < V13.2.0.5), Teamcenter Visualization (All versions < V13.2.0.5).
local
low complexity
siemens CWE-908
5.5
2021-11-08 CVE-2021-41253 Use of Uninitialized Resource vulnerability in Zyantific Zydis
Zydis is an x86/x86-64 disassembler library.
network
high complexity
zyantific CWE-908
8.1
2021-10-25 CVE-2021-0634 Use of Uninitialized Resource vulnerability in Google Android 11.0
In display driver, there is a possible memory corruption due to uninitialized data.
local
low complexity
google CWE-908
6.7
2021-10-25 CVE-2021-0938 Use of Uninitialized Resource vulnerability in Google Android
In memzero_explicit of compiler-clang.h, there is a possible bypass of defense in depth due to uninitialized data.
local
low complexity
google CWE-908
5.5
2021-10-19 CVE-2021-36512 Use of Uninitialized Resource vulnerability in Synchro Bulletin Board System
An issue was discovered in function scanallsubs in src/sbbs3/scansubs.cpp in Synchronet BBS, which may allow attackers to view sensitive information due to an uninitialized value.
network
low complexity
synchro CWE-908
7.5
2021-09-23 CVE-2021-1619 Use of Uninitialized Resource vulnerability in Cisco products
A vulnerability in the authentication, authorization, and accounting (AAA) function of Cisco IOS XE Software could allow an unauthenticated, remote attacker to bypass NETCONF or RESTCONF authentication and do either of the following: Install, manipulate, or delete the configuration of an affected device Cause memory corruption that results in a denial of service (DoS) on an affected device This vulnerability is due to an uninitialized variable.
network
low complexity
cisco CWE-908
critical
9.1
2021-08-30 CVE-2021-29631 Use of Uninitialized Resource vulnerability in Freebsd 11.4/12.2/13.0
In FreeBSD 13.0-STABLE before n246941-20f96f215562, 12.2-STABLE before r370400, 11.4-STABLE before r370399, 13.0-RELEASE before p4, 12.2-RELEASE before p10, and 11.4-RELEASE before p13, certain VirtIO-based device models in bhyve failed to handle errors when fetching I/O descriptors.
local
low complexity
freebsd CWE-908
7.8