Vulnerabilities > Use of Uninitialized Resource

DATE CVE VULNERABILITY TITLE RISK
2019-12-24 CVE-2019-19947 Use of Uninitialized Resource vulnerability in multiple products
In the Linux kernel through 5.4.6, there are information leaks of uninitialized memory to a USB device in the drivers/net/can/usb/kvaser_usb/kvaser_usb_leaf.c driver, aka CID-da2311a6385c. 		4.6
4.6
2019-12-10 CVE-2019-1462 Use of Uninitialized Resource vulnerability in Microsoft Office, Office 365 Proplus and Powerpoint
A remote code execution vulnerability exists in Microsoft PowerPoint software when the software fails to properly handle objects in memory, aka 'Microsoft PowerPoint Remote Code Execution Vulnerability'.
local
low complexity
microsoft CWE-908
7.8
7.8
2019-12-10 CVE-2019-13751 Use of Uninitialized Resource vulnerability in multiple products
Uninitialized data in SQLite in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafted HTML page. 		6.5
6.5
2019-12-10 CVE-2019-13747 Use of Uninitialized Resource vulnerability in multiple products
Uninitialized data in rendering in Google Chrome on Android prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
network
low complexity
google debian fedoraproject redhat CWE-908
8.8
8.8
2019-11-22 CVE-2019-19240 Use of Uninitialized Resource vulnerability in Embedthis Goahead
Embedthis GoAhead before 5.0.1 mishandles redirected HTTP requests with a large Host header.
network
low complexity
embedthis CWE-908
5.3
5.3
2019-11-06 CVE-2019-10541 Use of Uninitialized Resource vulnerability in Qualcomm products
Dereference on uninitialized buffer can happen when parsing FLV clip with corrupted codec specific data in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9206, MDM9607, MSM8909W, MSM8996AU, QCA6574AU, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 439 / SD 429, SD 450, SD 600, SD 625, SD 632, SD 636, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SDA660, SDM439, SDM630, SDM660, SDX20
network
low complexity
qualcomm CWE-908
critical
 9.8
9.8
2019-11-06 CVE-2019-18786 Use of Uninitialized Resource vulnerability in multiple products
In the Linux kernel through 5.3.8, f->fmt.sdr.reserved is uninitialized in rcar_drif_g_fmt_sdr_cap in drivers/media/platform/rcar_drif.c, which could cause a memory disclosure problem.
local
low complexity
linux canonical CWE-908
5.5
5.5
2019-10-29 CVE-2019-18603 Use of Uninitialized Resource vulnerability in multiple products
OpenAFS before 1.6.24 and 1.8.x before 1.8.5 is prone to information leakage upon certain error conditions because uninitialized RPC output variables are sent over the network to a peer.
network
high complexity
openafs debian CWE-908
5.9
5.9
2019-10-29 CVE-2019-18602 Use of Uninitialized Resource vulnerability in multiple products
OpenAFS before 1.6.24 and 1.8.x before 1.8.5 is prone to an information disclosure vulnerability because uninitialized scalars are sent over the network to a peer.
network
low complexity
openafs debian CWE-908
7.5
7.5
2019-10-18 CVE-2019-18197 Use of Uninitialized Resource vulnerability in multiple products
In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable isn't reset under certain circumstances.
network
high complexity
xmlsoft debian canonical CWE-908
7.5
7.5