CWE-476— NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.— MITRE CWE catalog
4,960 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-476page 61 of 100
- CVE-2024-36478MEDIUMCVSS 5.5EG 5.52024-06-21
In the Linux kernel, the following vulnerability has been resolved: null_blk: fix null-ptr-dereference while configuring 'power' and 'submit_queues' Writing 'power' and 'submit_queues' concurrently will trigger kernel panic: Test script…
- CVE-2024-36479MEDIUMCVSS 5.5EG 5.52024-06-24
In the Linux kernel, the following vulnerability has been resolved: fpga: bridge: add owner module and take its refcount The current implementation of the fpga bridge assumes that the low-level module registers a driver for the parent de…
- CVE-2024-36489MEDIUMCVSS 5.5EG 5.52024-06-21
In the Linux kernel, the following vulnerability has been resolved: tls: fix missing memory barrier in tls_init In tls_init(), a write memory barrier is missing, and store-store reordering may cause NULL dereference in tls_{setsockopt,ge…
- CVE-2024-36620MEDIUMCVSS 6.5EG 6.52024-11-29
moby v25.0.0 - v26.0.2 is vulnerable to NULL Pointer Dereference via daemon/images/image_history.go.
- CVE-2024-36626MEDIUMCVSS 5.3EG 5.32024-11-29
In prestashop 8.1.4, a NULL pointer dereference was identified in the math_round function within Tools.php.
- CVE-2024-36831MEDIUMCVSS 5.3EG 5.32024-12-17
A NULL pointer dereference in the plugins_call_handle_uri_clean function of D-Link DAP-1520 REVA_FIRMWARE_1.10B04_BETA02_HOTFIX allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request without authentication.
- CVE-2024-36832HIGHCVSS 7.5EG 7.52024-12-17
A NULL pointer dereference in D-Link DAP-1513 REVA_FIRMWARE_1.01 allows attackers to cause a Denial of Service (DoS) via a crafted web request without authentication. The vulnerability occurs in the /bin/webs binary of the firmware. When /…
- CVE-2024-36884MEDIUMCVSS 5.5EG 5.52024-05-30
In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu: Use the correct type in nvidia_smmu_context_fault() This was missed because of the function pointer indirection. nvidia_smmu_context_fault() is also ins…
- CVE-2024-36888MEDIUMCVSS 6.2EG 6.22024-05-30
In the Linux kernel, the following vulnerability has been resolved: workqueue: Fix selection of wake_cpu in kick_pool() With cpu_possible_mask=0-63 and cpu_online_mask=0-7 the following kernel oops was observed: smp: Bringing up seconda…
- CVE-2024-36891MEDIUMCVSS 5.5EG 5.52024-05-30
In the Linux kernel, the following vulnerability has been resolved: maple_tree: fix mas_empty_area_rev() null pointer dereference Currently the code calls mas_start() followed by mas_data_end() if the maple state is MA_START, but mas_sta…
- CVE-2024-36892MEDIUMCVSS 5.5EG 5.52024-05-30
In the Linux kernel, the following vulnerability has been resolved: mm/slub: avoid zeroing outside-object freepointer for single free Commit 284f17ac13fe ("mm/slub: handle bulk and single object freeing separately") splits single and bul…
- CVE-2024-36893MEDIUMCVSS 5.5EG 5.52024-05-30
In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: Check for port partner validity before consuming it typec_register_partner() does not guarantee partner registration to always succeed. In the event of…
- CVE-2024-36896CRITICALCVSS 9.1EG 9.12024-05-30
In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix access violation during port device removal Testing with KASAN and syzkaller revealed a bug in port.c:disable_store(): usb_hub_to_struct_hub() can return …
- CVE-2024-36897MEDIUMCVSS 5.5EG 5.52024-05-30
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Atom Integrated System Info v2_2 for DCN35 New request from KMD/VBIOS in order to support new UMA carveout model. This fixes a null dereference from acc…
- CVE-2024-36901MEDIUMCVSS 5.5EG 5.52024-05-30
In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent NULL dereference in ip6_output() According to syzbot, there is a chance that ip6_dst_idev() returns NULL in ip6_output(). Most places in IPv6 stack deal wi…
- CVE-2024-36902MEDIUMCVSS 5.5EG 5.52024-05-30
In the Linux kernel, the following vulnerability has been resolved: ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action() syzbot is able to trigger the following crash [1], caused by unsafe ip6_dst_idev() use. Indeed i…
- CVE-2024-36925MEDIUMCVSS 5.5EG 5.52024-05-30
In the Linux kernel, the following vulnerability has been resolved: swiotlb: initialise restricted pool list_head when SWIOTLB_DYNAMIC=y Using restricted DMA pools (CONFIG_DMA_RESTRICTED_POOL=y) in conjunction with dynamic SWIOTLB (CONFI…
- CVE-2024-36926MEDIUMCVSS 5.5EG 5.52024-05-30
In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/iommu: LPAR panics during boot up with a frozen PE At the time of LPAR boot up, partition firmware provides Open Firmware property ibm,dma-window for the…
- CVE-2024-36928MEDIUMCVSS 4.4EG 4.42024-05-30
In the Linux kernel, the following vulnerability has been resolved: s390/qeth: Fix kernel panic after setting hsuid Symptom: When the hsuid attribute is set for the first time on an IQD Layer3 device while the corresponding network inter…
- CVE-2024-36929MEDIUMCVSS 5.5EG 5.52024-05-30
In the Linux kernel, the following vulnerability has been resolved: net: core: reject skb_copy(_expand) for fraglist GSO skbs SKB_GSO_FRAGLIST skbs must not be linearized, otherwise they become invalid. Return NULL if such an skb is pass…
- CVE-2024-36930MEDIUMCVSS 5.5EG 5.52024-05-30
In the Linux kernel, the following vulnerability has been resolved: spi: fix null pointer dereference within spi_sync If spi_sync() is called with the non-empty queue and the same spi_message is then reused, the complete callback for the…
- CVE-2024-36937MEDIUMCVSS 5.5EG 5.52024-05-30
In the Linux kernel, the following vulnerability has been resolved: xdp: use flags field to disambiguate broadcast redirect When redirecting a packet using XDP, the bpf_redirect_map() helper will set up the redirect destination informati…
- CVE-2024-36938MEDIUMCVSS 5.5EG 5.52024-05-30
In the Linux kernel, the following vulnerability has been resolved: bpf, skmsg: Fix NULL pointer dereference in sk_psock_skb_ingress_enqueue Fix NULL pointer data-races in sk_psock_skb_ingress_enqueue() which syzbot reported [1]. [1] BU…
- CVE-2024-36941MEDIUMCVSS 5.5EG 5.52024-05-30
In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: don't free NULL coalescing rule If the parsing fails, we can dereference a NULL pointer here.
- CVE-2024-36953MEDIUMCVSS 5.5EG 5.52024-05-30
In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() vgic_v2_parse_attr() is responsible for finding the vCPU that matches the user-provided CPUID, which…
- CVE-2024-36972HIGHCVSS 7.5EG 7.52024-06-10
In the Linux kernel, the following vulnerability has been resolved: af_unix: Update unix_sk(sk)->oob_skb under sk_receive_queue lock. Billy Jheng Bing-Jhong reported a race between __unix_gc() and queue_oob(). __unix_gc() tries to garba…
- CVE-2024-36982HIGHCVSS 7.5EG 7.52024-07-01
In Splunk Enterprise versions below 9.2.2, 9.1.5, and 9.0.10 and Splunk Cloud Platform versions below 9.1.2312.109 and 9.1.2308.207, an attacker could trigger a null pointer reference on the cluster/config REST endpoint, which could result…
- CVE-2024-37021MEDIUMCVSS 5.5EG 5.52024-06-24
In the Linux kernel, the following vulnerability has been resolved: fpga: manager: add owner module and take its refcount The current implementation of the fpga manager assumes that the low-level module registers a driver for the parent …
- CVE-2024-37042MEDIUMCVSS 4.9EG 4.92024-11-22
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to launch a denial-of-service (D…
- CVE-2024-37045MEDIUMCVSS 4.9EG 4.92024-11-22
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to launch a denial-of-service (D…
- CVE-2024-37048MEDIUMCVSS 4.9EG 4.92024-11-22
A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to launch a denial-of-service (D…
- CVE-2024-37399HIGHCVSS 7.5EG 7.52024-08-14
A NULL pointer dereference in WLAvalancheService in Ivanti Avalanche 6.3.1 allows a remote unauthenticated attacker to crash the service, resulting in a DoS.
- CVE-2024-37602MEDIUMCVSS 4.6EG 4.62025-02-13
An issue was discovered in Mercedes Benz NTG (New Telematics Generation) 6 through 2021. A possible NULL pointer dereference in the Apple Car Play function affects NTG 6 head units. To perform this attack, physical access to Ethernet pins …
- CVE-2024-37605MEDIUMCVSS 6.5EG 6.52024-12-17
A NULL pointer dereference in D-Link DIR-860L REVB_FIRMWARE_2.04.B04_ic5b allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
- CVE-2024-37820MEDIUMCVSS 5.4EG 5.42024-06-25
A nil pointer dereference in PingCAP TiDB v8.2.0-alpha-216-gfe5858b allows attackers to crash the application via expression.inferCollation.
- CVE-2024-37826HIGHCVSS 7.5EG 7.52024-08-12
A NULL pointer dereference in vercot Serva v4.6.0 allows attackers to cause a Denial of Service (DoS) via a crafted HTTP request.
- CVE-2024-37890HIGHCVSS 7.5EG 7.52024-06-17
ws is an open source WebSocket client and server for Node.js. A request with a number of headers exceeding theserver.maxHeadersCount threshold could be used to crash a ws server. The vulnerability was fixed in [email protected] (e55e510) and backp…
- CVE-2024-37996LOWCVSS 3.3EG 3.32024-07-09
A vulnerability has been identified in JT Open (All versions < V11.5), JT2Go (All versions < V2406.0003), PLM XML SDK (All versions < V7.1.0.014), Teamcenter Visualization V14.2 (All versions < V14.2.0.13), Teamcenter Visualization V14.3 (…
- CVE-2024-38072HIGHCVSS 7.5EG 7.52024-07-09
Windows Remote Desktop Licensing Service Denial of Service Vulnerability
- CVE-2024-38126HIGHCVSS 7.5EG 7.52024-08-13
Windows Network Address Translation (NAT) Denial of Service Vulnerability
- CVE-2024-38145HIGHCVSS 7.5EG 7.52024-08-13
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability
- CVE-2024-38146HIGHCVSS 7.5EG 7.52024-08-13
Windows Layer-2 Bridge Network Driver Denial of Service Vulnerability
- CVE-2024-38232HIGHCVSS 7.5EG 7.52024-09-10
Windows Networking Denial of Service Vulnerability
- CVE-2024-38233HIGHCVSS 7.5EG 7.52024-09-10
Windows Networking Denial of Service Vulnerability
- CVE-2024-38390MEDIUMCVSS 5.5EG 5.52024-06-21
In the Linux kernel, the following vulnerability has been resolved: drm/msm/a6xx: Avoid a nullptr dereference when speedbin setting fails Calling a6xx_destroy() before adreno_gpu_init() leads to a null pointer dereference on: msm_gpu_cl…
- CVE-2024-38477HIGHCVSS 7.5EG 7.52024-07-01
null pointer dereference in mod_proxy in Apache HTTP Server 2.4.59 and earlier allows an attacker to crash the server via a malicious request. Users are recommended to upgrade to version 2.4.60, which fixes this issue.
- CVE-2024-38536HIGHCVSS 7.5EG 7.52024-07-11
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A memory allocation failure due to `http.memcap` being reached leads to a NULL-ptr reference leading to a crash. Upgrade …
- CVE-2024-38543MEDIUMCVSS 5.5EG 5.52024-06-19
In the Linux kernel, the following vulnerability has been resolved: lib/test_hmm.c: handle src_pfns and dst_pfns allocation failure The kcalloc() in dmirror_device_evict_chunk() will return null if the physical memory has run out. As a …
- CVE-2024-38546MEDIUMCVSS 5.5EG 5.52024-06-19
In the Linux kernel, the following vulnerability has been resolved: drm: vc4: Fix possible null pointer dereference In vc4_hdmi_audio_init() of_get_address() may return NULL which is later dereferenced. Fix this bug by adding NULL check.…
- CVE-2024-38547MEDIUMCVSS 5.5EG 5.52024-06-19
In the Linux kernel, the following vulnerability has been resolved: media: atomisp: ssh_css: Fix a null-pointer dereference in load_video_binaries The allocation failure of mycs->yuv_scaler_binary in load_video_binaries() is followed wit…
Map vulnerabilities like CWE-476 to your infrastructure
EchelonGraph correlates every CVE — across CWE-476 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →