CWE-665: CWE-665

An improper initialization vulnerability in Intel Ethernet Network Controller drivers allows authenticated local users to potentially escalate privile...

This vulnerability in Intel Aptio V UEFI Firmware Integrator Tools allows authenticated local users to potentially escalate privileges due to improper...

CVE-2023-27934 is a memory initialization vulnerability in macOS that could allow a remote attacker to cause application crashes or execute arbitrary ...

This vulnerability in Apache Calcite Avatica JDBC driver allows attackers with JDBC connection parameter privileges to execute arbitrary code by loadi...

An improper initialization vulnerability in the Portmapper component of B&R Industrial Automation Automation Runtime allows unauthenticated attackers ...

CVE-2021-33637 is a container escape vulnerability in iSulad's isula export command. When an attacker controls a container, they can exploit this flaw...

This vulnerability allows attackers to gain administrative privileges on Windows systems running vulnerable FortiClient versions by placing a maliciou...

This vulnerability in NVIDIA GPU Display Driver for Windows allows information disclosure between processes, potentially exposing sensitive data from ...

This vulnerability in Parallels Desktop Service allows local attackers with low-privileged access to escalate to root privileges due to improper envir...

This vulnerability allows local attackers to escalate privileges on affected Parallels Desktop installations by exploiting improper initialization of ...

This CVE describes a Linux kernel vulnerability in the cfg80211 wireless subsystem where switching from P2P_GO to ADHOC interface type fails to proper...

This vulnerability in SCONE for Intel SGX allows a local attacker to compromise floating-point operation integrity or access sensitive information via...

CVE-2022-26721 is a memory initialization vulnerability in macOS that allows a malicious application to gain root privileges. This affects macOS Catal...

CVE-2022-22657 is a memory initialization vulnerability in Apple's Logic Pro, GarageBand, and macOS Monterey that could allow arbitrary code execution...

CVE-2022-0847 (Dirty Pipe) is a Linux kernel vulnerability that allows unprivileged local users to write to read-only files in the page cache, enablin...

This vulnerability in Intel Graphics Drivers allows an authenticated local user to potentially escalate privileges due to improper initialization. It ...

This vulnerability in Softaculous allows attackers to execute arbitrary code on affected systems by exploiting improper initialization of trusted vari...

CVE-2021-1661 is a Windows Installer elevation of privilege vulnerability that allows authenticated attackers to execute arbitrary code with SYSTEM pr...

An unauthenticated attacker can cause a complete denial-of-service on vulnerable Juniper EX4000 switches by sending high volumes of traffic to the dev...

This vulnerability in iNet wireless daemon (IWD) allows attackers to cause denial of service through daemon crashes by exploiting initialization issue...

Katran, a high-performance layer 4 load balancer, could leak uninitialized kernel memory in IPv4 headers due to missing initialization of the Identifi...

CVE-2020-35342 is an uninitialized heap vulnerability in GNU Binutils' tic4x disassembler that allows attackers to leak sensitive information from mem...

CVE-2022-48352 is a data initialization vulnerability in some Huawei smartphones that can cause system panic (crash/reboot) when exploited. This affec...

This CVE describes an improper initialization vulnerability in BIOS firmware for certain Intel processors. It allows a privileged user with local acce...

This vulnerability affects F5 BIG-IP Virtual Edition and SPK systems with specific FastL4 profile configurations. Undisclosed network traffic can caus...

CVE-2022-29695 is a memory leak vulnerability in Unicorn Engine v2.0.0-rc7 caused by incomplete initialization. This allows attackers to cause denial ...

CVE-2022-22719 is a memory corruption vulnerability in Apache HTTP Server where a specially crafted request body can cause the server to read from ran...

This vulnerability in Schneider Electric's Interactive Graphical SCADA System Data Server allows attackers to expose sensitive information by sending ...

This vulnerability allows remote unauthenticated attackers to cause a denial-of-service condition in the communication function of affected MELSEC-F s...

CVE-2021-40025 is an uninitialized memory use vulnerability in the eID module of HarmonyOS. This allows attackers to potentially access sensitive info...

This vulnerability in Juniper Junos OS prevents DDoS protection configuration changes from taking effect on specific PTX and QFX10K platforms with Par...

This vulnerability in Exim mail servers allows remote attackers to cause a denial of service through stack consumption via specially crafted BDAT comm...

This vulnerability allows remote attackers to leak uninitialized heap memory from Android devices via Bluetooth AVRCP protocol without user interactio...

This vulnerability in TensorFlow's tf.io.decode_raw function allows out-of-bounds memory writes when combining fixed_length with wider datatypes, pote...

This vulnerability allows attackers to cause a denial of service on Juniper Junos OS Evolved devices by sending a specific IPv6 packet that terminates...

This vulnerability in Diebold Nixdorf Vynamic Security Suite allows physical attackers to bypass disk encryption by manipulating hard disk contents du...

An uninitialized variable vulnerability in Rockwell Automation Arena allows attackers to craft malicious DOE files that, when opened by a legitimate u...

This AMD processor vulnerability allows improper IOMMU re-initialization during DRTM events, enabling attackers to potentially read or modify hypervis...

A Power10-specific optimization bug in GNU C Library's strncmp function corrupts non-volatile vector registers, potentially altering program control f...

This vulnerability in GNU C Library's Power10-optimized strcmp function corrupts non-volatile vector registers, potentially altering program control f...

This vulnerability in Bento4 v1.6.0-641 allows attackers to cause a segmentation fault (crash) by providing a specially crafted MP4 file to the mp4enc...

A race condition in the Linux kernel's NFS server (nfsd) allows dereferencing an uninitialized mutex when creating new network namespaces, potentially...

This CVE describes a use-after-free vulnerability in the Linux kernel's V4L (Video for Linux) async subsystem. When a notifier is unregistered, dangli...

This CVE describes an uninitialized value vulnerability in the Linux kernel's 9p filesystem client. When p9_check_errors() fails early in p9_client_rp...

This vulnerability in Intel Power Gadget software for Windows allows authenticated local users to potentially cause denial of service through improper...

This vulnerability in UEFI firmware's OutOfBandXML module on certain Intel processors allows privileged users to potentially disclose sensitive inform...

An improper resource management vulnerability in Solidigm DC Products firmware allows attackers with local or physical access to bypass storage device...

This CVE describes an improper initialization vulnerability in AMI APTIOV BIOS that allows local attackers to leave system resources in unexpected sta...