CWE-908: CWE-908

This CVE describes an information disclosure vulnerability in the Linux kernel's ARM64 ptrace subsystem. When a zero-length SETREGSET call is made to ...

This vulnerability in Windows Routing and Remote Access Service (RRAS) involves uninitialized resource usage that could allow authenticated attackers ...

CVE-2024-11991 is an uninitialized memory access vulnerability in Motoko's incremental garbage collector that could allow unauthorized read or write a...

This CVE describes an uninitialized memory vulnerability in the Linux kernel's NTFS3 filesystem driver. When reading NTFS headers, the driver uses mem...

This CVE describes a memory leak vulnerability in the Linux kernel's Intel VT-d (Virtualization Technology for Directed I/O) subsystem. When the init_...

A use-after-free vulnerability in the Linux kernel's cryptographic subsystem (af_alg) could cause kernel crashes or potential privilege escalation. Th...

This CVE-2023-53525 is a kernel memory initialization vulnerability in the Linux kernel's RDMA/CMA subsystem. It allows uninitialized memory access wh...

A logic error in the Linux kernel's ath11k WiFi driver causes a NULL pointer dereference during system shutdown or module removal on certain Qualcomm ...

This CVE describes an uninitialized value access vulnerability in the Linux kernel's HSR (High-availability Seamless Redundancy) protocol implementati...

This CVE describes an uninitialized memory vulnerability in the Linux kernel's kexec functionality on arm64 and riscv architectures. The uninitialized...

A race condition vulnerability in the Linux kernel's DRM scheduler component can cause a NULL pointer dereference during GPU fault handling, leading t...

This CVE-2023-53344 is a Linux kernel vulnerability in the CAN (Controller Area Network) subsystem's bcm_tx_setup function where uninitialized memory ...

A race condition vulnerability in the Linux kernel's Bluetooth subsystem where failure to initialize synchronization primitives can lead to NULL point...

A race condition vulnerability in the Linux kernel's ext4 filesystem during rename operations can trigger a kernel warning and potential denial of ser...

This CVE describes a kernel timer initialization bug in the Linux kernel's mISDN hfcpci driver that causes a warning/panic when unloading the module w...

This CVE describes an uninitialized memory vulnerability in the Linux kernel's SCTP IPv6 implementation. When sin6_scope_id and sin6_flowinfo fields a...

This CVE-2022-50335 is a use-after-free vulnerability in the Linux kernel's 9p filesystem client. It allows attackers to cause kernel memory corruptio...

A race condition vulnerability in the Linux kernel's cdev_device_add() function can cause a kernel panic when device registration fails. This affects ...

A memory access vulnerability in the Linux kernel's UDF filesystem driver allows reading uninitialized memory when processing certain filenames. This ...

This CVE describes a race condition vulnerability in the MediaTek IOMMU driver in the Linux kernel where an interrupt service routine (ISR) can be tri...

CVE-2025-53799 is an information disclosure vulnerability in Windows Imaging Component where uninitialized memory resources can be accessed by a local...

This CVE describes an information leak vulnerability in the Linux kernel's comedi subsystem, where uninitialized kernel memory can be exposed to users...

This CVE involves an uninitialized memory vulnerability in the Linux kernel's SCA3300 accelerometer driver. It could allow attackers to read uninitial...

This CVE describes a use-after-free vulnerability in the Linux kernel's pNFS block/scsi layout code where uninitialized pointers in the 'layoutupdate_...

A double completion vulnerability in the Linux kernel's NVMe over Fabrics target subsystem can cause kernel crashes when processing invalid NVMe comma...

This CVE describes a vulnerability in the Linux kernel's WiFi subsystem where TDLS (Tunneled Direct Link Setup) operations could be triggered before a...

This CVE describes a data corruption vulnerability in the Linux kernel's BPF subsystem when used with kTLS (Kernel TLS). When bpf_msg_pop_data() reduc...

This CVE involves an information disclosure vulnerability in the Linux kernel's GPIB (General Purpose Interface Bus) staging driver. Uninitialized pad...

This CVE describes a use-after-initialization vulnerability in the Linux kernel's IIO subsystem for STMicroelectronics sensors. When device probe func...

A kernel memory initialization vulnerability in Linux Comedi subsystem allows reading uninitialized kernel memory when handling certain device instruc...

A Linux kernel vulnerability in the netfilter flowtable component where the nf_flow_pppoe_proto() function fails to account for Ethernet header length...

This vulnerability in the Linux kernel's ch9200 network driver allows uninitialized memory access during MII (Media Independent Interface) operations....

This CVE-2022-50165 is an uninitialized variable vulnerability in the Linux kernel's wil6210 WiFi driver debugfs interface. It could allow local attac...

This vulnerability in the Linux kernel's RDMA over Converged Ethernet (RoCE) implementation causes a kernel panic (system crash) when error handling o...

A divide-by-zero vulnerability in the Linux kernel's libnvdimm driver occurs when a faulty CXL memory device reports a zero LSA size, causing a kernel...

A Linux kernel vulnerability in the MCTP (Management Component Transport Protocol) subsystem allows reading uninitialized memory when dumping network ...

A memory management vulnerability in the Linux kernel's KVM (Kernel-based Virtual Machine) for ARM64 systems allows uninitialized memory pointer usage...

This CVE describes an uninitialized memory vulnerability in the Linux kernel's IPVS (IP Virtual Server) subsystem. The flaw occurs when the do_output_...

This CVE describes a resource leak vulnerability in the Linux kernel's Elastic Network Adapter (ENA) driver. When pci_register_driver() fails during i...

This CVE describes an uninitialized memory access vulnerability in the JFS filesystem implementation in the Linux kernel. When mounting a JFS filesyst...

A race condition vulnerability in the Linux kernel's cfg80211 WiFi subsystem where wiphy_work_lock is accessed before proper initialization when rfkil...

A use-after-free vulnerability in the Linux kernel's F2FS filesystem allows attackers to cause a kernel panic (denial of service) by accessing uniniti...

A memory initialization vulnerability in the Linux kernel's PPP driver allows uninitialized data to be read by carefully crafted BPF programs. This co...

A Linux kernel vulnerability in the team networking driver allows uninitialized memory disclosure when processing TEAM_OPTION_TYPE_STRING options. Thi...

A vulnerability in the Linux kernel's VXLAN virtual network filtering function allows reading uninitialized memory when processing malformed netlink m...

This CVE describes an uninitialized variable vulnerability in the Linux kernel's MPTCP (Multipath TCP) implementation. Attackers could potentially exp...

This CVE describes a Linux kernel vulnerability where an incorrectly exported initialization function could cause kernel panic if accessed after syste...

This CVE describes an uninitialized memory access vulnerability in the Linux kernel's memory policy subsystem. When a memory policy is set to MPOL_LOC...

This vulnerability in the Linux kernel's RDMA hfi1 driver allows a use-after-initialization condition where a lock is accessed before being properly i...

This CVE describes a Linux kernel vulnerability where the mdio_bus_init() function was incorrectly marked with both EXPORT_SYMBOL and __init annotatio...