Vulnerabilities > Use of Uninitialized Resource

DATE CVE VULNERABILITY TITLE RISK
2019-02-05 CVE-2018-3989 Use of Uninitialized Resource vulnerability in Wibu Wibukey 6.40
An exploitable kernel memory disclosure vulnerability exists in the 0x8200E804 IOCTL handler functionality of WIBU-SYSTEMS WibuKey.sys Version 6.40 (Build 2400).A specially crafted IRP request can cause the driver to return uninitialized memory, resulting in kernel memory disclosure.
local
low complexity
wibu CWE-908
5.5
2019-01-26 CVE-2019-6976 Use of Uninitialized Resource vulnerability in Libvips
libvips before 8.7.4 generates output images from uninitialized memory locations when processing corrupted input image data because iofuncs/memory.c does not zero out allocated memory.
network
low complexity
libvips CWE-908
5.3
2019-01-15 CVE-2019-0006 Use of Uninitialized Resource vulnerability in Juniper Junos 14.1X53/15.1/15.1X53
A certain crafted HTTP packet can trigger an uninitialized function pointer deference vulnerability in the Packet Forwarding Engine manager (fxpc) on all EX, QFX and MX Series devices in a Virtual Chassis configuration.
network
low complexity
juniper CWE-908
critical
9.8
2018-12-17 CVE-2018-19974 Use of Uninitialized Resource vulnerability in Virustotal Yara 3.8.1
In YARA 3.8.1, bytecode in a specially crafted compiled rule can read uninitialized data from VM scratch memory in libyara/exec.c.
local
low complexity
virustotal CWE-908
5.5
2018-12-12 CVE-2018-8627 Use of Uninitialized Resource vulnerability in Microsoft products
An information disclosure vulnerability exists when Microsoft Excel software reads out of bound memory due to an uninitialized variable, which could disclose the contents of memory, aka "Microsoft Excel Information Disclosure Vulnerability." This affects Microsoft Office, Office 365 ProPlus, Microsoft Excel, Microsoft Excel Viewer, Excel.
local
low complexity
microsoft CWE-908
5.5
2018-12-10 CVE-2018-20029 Use of Uninitialized Resource vulnerability in multiple products
The nxfs.sys driver in the DokanFS library 0.6.0 in NoMachine before 6.4.6 on Windows 10 allows local users to cause a denial of service (BSOD) because uninitialized memory can be read.
local
low complexity
dokan-dev nomachine CWE-908
5.5
2018-12-06 CVE-2018-9557 Use of Uninitialized Resource vulnerability in Google Android 7.0/7.1.1/7.1.2
In really_install_package of install.cpp, there is a possible free of arbitrary memory due to uninitialized data.
local
low complexity
google CWE-908
7.8
2018-12-04 CVE-2018-6982 Use of Uninitialized Resource vulnerability in VMWare Esxi, Fusion and Workstation
VMware ESXi 6.7 without ESXi670-201811401-BG and VMware ESXi 6.5 without ESXi650-201811301-BG contain uninitialized stack memory usage in the vmxnet3 virtual network adapter which may lead to an information leak from host to guest.
local
low complexity
vmware CWE-908
6.5
2018-12-04 CVE-2018-6981 Use of Uninitialized Resource vulnerability in VMWare Esxi, Fusion and Workstation
VMware ESXi 6.7 without ESXi670-201811401-BG and VMware ESXi 6.5 without ESXi650-201811301-BG, VMware ESXi 6.0 without ESXi600-201811401-BG, VMware Workstation 15, VMware Workstation 14.1.3 or below, VMware Fusion 11, VMware Fusion 10.1.3 or below contain uninitialized stack memory usage in the vmxnet3 virtual network adapter which may allow a guest to execute code on the host.
local
low complexity
vmware CWE-908
8.8
2018-11-29 CVE-2018-19626 Use of Uninitialized Resource vulnerability in multiple products
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the DCOM dissector could crash.
local
low complexity
wireshark debian CWE-908
5.5