CWE-1187
DEPRECATED: Use of Uninitialized Resource
BaseDeprecated
Description
This entry has been deprecated because it was a duplicate of CWE-908. All content has been transferred to CWE-908.
CVEs mapped to this weakness (2)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-8891 | Med | 0.36 | 5.5 | 0.01 | May 10, 2017 | Dropbox Lepton 1.2.1 allows DoS (SEGV and application crash) via a malformed lepton file because the code does not ensure setup of a correct number of threads. | ||
| CVE-2017-5405 | Med | 0.35 | 5.3 | 0.03 | Jun 11, 2018 | Certain response codes in FTP connections can result in the use of uninitialized values for ports in FTP operations. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and Thunderbird < 45.8. |
- risk 0.36cvss 5.5epss 0.01
Dropbox Lepton 1.2.1 allows DoS (SEGV and application crash) via a malformed lepton file because the code does not ensure setup of a correct number of threads.
- risk 0.35cvss 5.3epss 0.03
Certain response codes in FTP connections can result in the use of uninitialized values for ports in FTP operations. This vulnerability affects Firefox < 52, Firefox ESR < 45.8, Thunderbird < 52, and Thunderbird < 45.8.