CWE-908: CWE-908

This vulnerability in HyperKit allows a malicious guest virtual machine to crash the host system, causing denial of service. Under certain conditions,...

This vulnerability in TensorFlow's AssignOp implementation allows copying uninitialized data to new tensors, leading to undefined behavior. It affects...

This vulnerability allows attackers to read uninitialized memory in Firefox and Firefox Focus for Android, potentially exposing sensitive information....

A memory corruption vulnerability in GNU C Library's wordexp function when using WRDE_REUSE with WRDE_APPEND flags can return uninitialized memory. Th...

This vulnerability in GNU C Library (glibc) allows stack memory contents to be leaked to DNS resolvers when getnetbyaddr functions query for a zero-va...

An uninitialized resource vulnerability in Juniper SRX4700 devices with forwarding-options sampling enabled allows unauthenticated network attackers t...

This vulnerability in SQL Server involves improper initialization of resources, allowing unauthorized attackers to read uninitialized memory contents ...

This CVE describes memory corruption vulnerabilities in Fortinet VPN products that could allow authenticated VPN users to execute arbitrary code or co...

Microsoft Message Queuing (MSMQ) contains an information disclosure vulnerability that allows authenticated attackers to read sensitive data from memo...

This vulnerability in rsync allows attackers to leak uninitialized stack memory one byte at a time by manipulating checksum length during file compari...

This vulnerability in Android's Bluetooth GATT server allows remote attackers to read uninitialized memory from affected devices without user interact...

This vulnerability in Microsoft's AllJoyn API allows attackers to read sensitive information from memory without proper authorization. It affects syst...

This CVE addresses an information disclosure vulnerability in the Linux kernel's MediaTek MT76 WiFi driver. The vulnerability could allow attackers to...

CVE-2024-38064 is a Windows TCP/IP information disclosure vulnerability that allows attackers to read sensitive memory contents from affected systems....

A vulnerability in the Linux kernel's bio_truncate() function could allow reading uninitialized data from block devices. This occurs when both a corru...

This vulnerability affects F5 BIG-IP and BIG-IP Next SPK systems with HTTP/2 configured. Undisclosed HTTP/2 responses can cause the Traffic Management...

This vulnerability in Android's AVRCP (Audio/Video Remote Control Profile) implementation allows uninitialized heap memory to be leaked to remote Blue...

This vulnerability in Windows Print Spooler allows attackers to read sensitive information from memory without authentication. It affects Windows syst...

CVE-2023-35847 is a vulnerability in VirtualSquare picoTCP (PicoTCP-NG) where the TCP implementation lacks a minimum MSS (Maximum Segment Size) value,...

This vulnerability in the rdiff crate for Rust allows reading from uninitialized memory locations, potentially exposing sensitive data or causing cras...

This vulnerability in Synchronet BBS allows attackers to view sensitive information due to an uninitialized value in the scanallsubs function. Attacke...

This vulnerability in the toodee Rust crate allows attackers to read uninitialized memory contents through the row-insertion feature. This affects any...

This vulnerability in h2o HTTP server allows attackers to read uninitialized memory when HTTP/3 is enabled, potentially exposing internal server state...

This CVE-2024-57909 is an information leak vulnerability in the Linux kernel's BH1745 light sensor driver. It allows uninitialized kernel memory to be...

This CVE describes an information leak vulnerability in the Linux kernel's vcnl4035 light sensor driver. When triggered buffer data is sent to userspa...

This CVE describes an information leak vulnerability in the Linux kernel's IIO (Industrial I/O) dummy driver. When triggered buffer data is pushed to ...

This CVE-2024-57912 is an information leak vulnerability in the Linux kernel's zpa2326 pressure sensor driver. When triggered buffer data is sent to u...

This CVE describes an information leak vulnerability in the Linux kernel's TI ADS1119 ADC driver. When triggered buffer data is sent to userspace, uni...

This CVE-2024-57906 is an information leak vulnerability in the Linux kernel's TI ADS8688 ADC driver. When triggered buffer data is sent to userspace,...

This CVE-2024-57907 is an information leak vulnerability in the Linux kernel's Rockchip SARADC driver. It allows uninitialized kernel memory to be exp...

This CVE describes an information leak vulnerability in the Linux kernel's kmx61 IMU driver. When triggered buffer data is sent to userspace, uninitia...

This CVE-2024-53155 is an uninitialized variable vulnerability in the Linux kernel's OCFS2 filesystem driver. It allows attackers to potentially read ...

This vulnerability in the Linux kernel's SLIP (Serial Line Internet Protocol) compression handler allows attackers to trigger uninitialized memory acc...

A vulnerability in the Linux kernel's PPP (Point-to-Point Protocol) implementation allows illegal memory access when processing empty network packets....

This vulnerability in the Linux kernel's JFS filesystem allows attackers to read uninitialized memory from the kernel stack, potentially leaking sensi...

This CVE addresses an uninitialized variable vulnerability in the Linux kernel's FOU (Foo over UDP) module. If exploited, it could lead to kernel memo...

This CVE describes a kernel memory corruption vulnerability in the Linux kernel's GTP (GPRS Tunneling Protocol) implementation. Attackers could exploi...

A vulnerability in the Linux kernel's netfilter flowtable component allows uninitialized memory access when processing VLAN headers. This could lead t...

This vulnerability in the Linux kernel's NFC (Near Field Communication) subsystem allows uninitialized memory access when processing received packets....

This CVE describes an uninitialized memory vulnerability in the Linux kernel's virtio/vsock subsystem. An attacker could exploit this to read uninitia...

This vulnerability in the Linux kernel's btrfs filesystem allows uninitialized kernel memory to be leaked to user-space via the btrfs_ioctl_logical_to...

This vulnerability in the Linux kernel's ASIX USB Ethernet driver allows reading uninitialized memory when the asix_mdio_read() function receives less...

This CVE involves an uninitialized variable vulnerability in the AMD GPU driver within the Linux kernel. Attackers could exploit this to cause kernel ...

Microsoft Outlook contains a remote code execution vulnerability that allows attackers to execute arbitrary code on a victim's system by sending a spe...

This vulnerability in Windows Routing and Remote Access Service (RRAS) allows attackers to read uninitialized memory contents, potentially exposing se...

CVE-2025-29830 is an information disclosure vulnerability in Windows Routing and Remote Access Service (RRAS) where uninitialized memory resources can...

This vulnerability in Windows COM Server allows attackers to read sensitive information from memory without proper authorization. It affects Windows s...

This vulnerability in Windows COM Server allows attackers to read sensitive information from memory without proper authorization. It affects Windows s...

This CVE addresses an uninitialized variable vulnerability in the Linux kernel's BPF subsystem. The BPF_CORE_READ_BITFIELD macro could use uninitializ...

This vulnerability allows local attackers to read uninitialized memory from the Android audio policy service, potentially exposing sensitive informati...