Vulnerabilities > Use of Uninitialized Resource

DATE CVE VULNERABILITY TITLE RISK
2023-08-14 CVE-2023-21276 Use of Uninitialized Resource vulnerability in Google Android 12.0/12.1/13.0
In writeToParcel of CursorWindow.cpp, there is a possible information disclosure due to uninitialized data.
local
low complexity
google CWE-908
5.5
2023-08-11 CVE-2023-22330 Use of Uninitialized Resource vulnerability in Intel products
Use of uninitialized resource in some Intel(R) NUC BIOS firmware may allow a privileged user to potentially enable information disclosure via local access.
local
low complexity
intel CWE-908
4.4
2023-07-28 CVE-2023-3488 Use of Uninitialized Resource vulnerability in Silabs Gecko Software Development KIT
Uninitialized buffer in GBL parser in Silicon Labs GSDK v4.3.0 and earlier allows attacker to leak data from Secure stack via malformed GBL file.
local
low complexity
silabs CWE-908
5.5
2023-07-14 CVE-2023-36836 Use of Uninitialized Resource vulnerability in Juniper Junos
A Use of an Uninitialized Resource vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a local, authenticated attacker with low privileges to cause a Denial of Service (DoS). On all Junos OS and Junos OS Evolved platforms, in a Multicast only Fast Reroute (MoFRR) scenario, the rpd process can crash when a a specific low privileged CLI command is executed.
local
high complexity
juniper CWE-908
4.7
2023-07-13 CVE-2021-0948 Use of Uninitialized Resource vulnerability in Google Android
The PVRSRVBridgeGetMultiCoreInfo ioctl in the PowerVR kernel driver can return uninitialized kernel memory to user space.
local
low complexity
google CWE-908
5.5
2023-06-19 CVE-2023-35847 Use of Uninitialized Resource vulnerability in Virtualsquare Picotcp
VirtualSquare picoTCP (aka PicoTCP-NG) through 2.1 does not have an MSS lower bound (e.g., it could be zero).
network
low complexity
virtualsquare CWE-908
7.5
2023-06-15 CVE-2023-2747 Use of Uninitialized Resource vulnerability in Silabs Gecko Software Development KIT
The initialization vector (IV) used by the secure engine (SE) for encrypting data stored in the SE flash memory is uninitialized. 
local
low complexity
silabs CWE-908
5.5
2023-06-15 CVE-2023-21127 Use of Uninitialized Resource vulnerability in Google Android
In readSampleData of NuMediaExtractor.cpp, there is a possible out of bounds write due to uninitialized data.
network
low complexity
google CWE-908
8.8
2023-06-02 CVE-2023-32213 Use of Uninitialized Resource vulnerability in Mozilla Firefox
When reading a file, an uninitialized value could have been used as read limit.
network
low complexity
mozilla CWE-908
8.8
2023-04-17 CVE-2023-28967 Use of Uninitialized Resource vulnerability in Juniper Junos and Junos OS Evolved
A Use of Uninitialized Resource vulnerability in the Border Gateway Protocol (BGP) software of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker to send specific genuine BGP packets to a device configured with BGP to cause a Denial of Service (DoS) by crashing the Routing Protocol Daemon (rpd).
network
low complexity
juniper CWE-908
7.5