VYPR

CWE-456

Missing Initialization of a Variable

VariantDraft

Description

The product does not initialize critical variables, which causes the execution environment to use unexpected values.

Hierarchy (View 1000)

Parents

Children

none

CVEs mapped to this weakness (2)

  • CVE-2024-54131HigDec 3, 2024
    risk 0.40cvss epss 0.00

    The Kolide Agent (aka: Launcher) is the lightweight agent designed to work with Kolide's service. An implementation bug in the Kolide Agent (known as `launcher`) allows for local privilege escalation to the SYSTEM user on Windows 10 and 11. The bug was introduced in version…

  • CVE-2018-14641MedSep 18, 2018
    risk 0.00cvss 6.5epss 0.03

    A security flaw was found in the ip_frag_reasm() function in net/ipv4/ip_fragment.c in the Linux kernel from 4.19-rc1 to 4.19-rc3 inclusive, which can cause a later system crash in ip_do_fragment(). With certain non-default, but non-rare, configuration of a victim host, an…