Fallos del tipo CWE-476

2114 resultados
CVE-2024-31755HIGHcJSON v1.7.17 was discovered to contain a segmentation violation, which can trigger through the second parameter of function cJSON_SetValuesEPSS 0.6%CVE-2024-27660MEDIUMD-Link DIR-823G A1V1.0.2B05 was discovered to contain a Null-pointer dereferences in sub_41C488(). This vulnerability allows attackers to caEPSS 0.6%CVE-2023-31129HIGHContiki-NG missing NULL pointer check in IPv6 neighbor discoveryEPSS 0.6%CVE-2026-37226HIGHFlexRIC v2.0.0 crashes when the iApp receives an E42_RIC_SUBSCRIPTION_REQUEST referencing a non-existent E2 Node. The lookup function returnEPSS 0.6%CVE-2026-37230HIGHFlexRIC v2.0.0 crashes when the near-RT RIC receives a RIC_INDICATION message with a ran_func_id that does not exist in its registry. The loEPSS 0.6%CVE-2023-48183HIGHQuickJS before c4cdd61 has a build_for_in_iterator NULL pointer dereference because of an erroneous lexical scope of "this" with eval.EPSS 0.6%CVE-2024-20266MEDIUMA vulnerability in the DHCP version 4 (DHCPv4) server feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to trEPSS 0.6%CVE-2024-31420MEDIUMCnv: dos through repeatedly calling vm-dump-metrics until virt handler crashesEPSS 0.6%CVE-2021-3467A NULL pointer dereference flaw was found in the way Jasper versions before 2.0.26 handled component references in CDEF box in the JP2 imageEPSS 0.6%CVE-2024-36626MEDIUMIn prestashop 8.1.4, a NULL pointer dereference was identified in the math_round function within Tools.php.EPSS 0.6%CVE-2023-22839HIGHBIG-IP DNS profile vulnerabilityEPSS 0.6%CVE-2024-37605MEDIUMA NULL pointer dereference in D-Link DIR-860L REVB_FIRMWARE_2.04.B04_ic5b allows attackers to cause a Denial of Service (DoS) via a crafted EPSS 0.6%CVE-2023-22340HIGHBIG-IP SIP profile vulnerabilityEPSS 0.6%CVE-2023-22341HIGHBIG-IP APM OAuth vulnerabilityEPSS 0.6%CVE-2023-34398HIGHMercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB. Some values of this table are serialized archEPSS 0.6%CVE-2023-34400HIGHMercedes-Benz head-unit NTG6 contains functions to import or export profile settings over USB. In case of parsing file, service try to definEPSS 0.6%CVE-2024-42058HIGHA null pointer dereference vulnerability in Zyxel ATP series firmware versions from V4.32 through V5.38, USG FLEX series firmware versions fEPSS 0.6%CVE-2025-6395MEDIUMGnutls: null pointer dereference in _gnutls_figure_common_ciphersuite()EPSS 0.6%CVE-2025-31115HIGHXZ has a heap-use-after-free bug in threaded .xz decoderEPSS 0.6%CVE-2022-22232HIGHSRX Series: If Unified Threat Management (UTM) Enhanced Content Filtering (CF) is enabled and specific traffic is processed the PFE will crashEPSS 0.6%