VYPR

CWE-908

Use of Uninitialized Resource

BaseIncompleteLikelihood: Medium

Description

The product uses or accesses a resource that has not been initialized.

When a resource has not been properly initialized, the product may behave unexpectedly. This may lead to a crash or invalid memory access, but the consequences vary depending on the type of resource and how it is used within the product.

Hierarchy (View 1000)

Parents

Children

CVEs mapped to this weakness (209)

page 9 of 11
  • CVE-2020-36511Dec 26, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the bite crate through 2020-12-31 for Rust. read::BiteReadExpandedExt::read_framed_max may read from uninitialized memory locations.

  • CVE-2020-36512Dec 26, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the buffoon crate through 2020-12-31 for Rust. InputStream::read_exact may read from uninitialized memory locations.

  • CVE-2020-36513Dec 26, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the acc_reader crate through 2020-12-27 for Rust. read_up_to may read from uninitialized memory locations.

  • CVE-2020-36514Dec 26, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the acc_reader crate through 2020-12-27 for Rust. fill_buf may read from uninitialized memory locations.

  • CVE-2021-45682Dec 26, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the bronzedb-protocol crate through 2021-01-03 for Rust. ReadKVExt may read from uninitialized memory locations.

  • CVE-2021-45683Dec 26, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the binjs_io crate through 2021-01-03 for Rust. The Read method may read from uninitialized memory locations.

  • CVE-2021-45684Dec 26, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the flumedb crate through 2021-01-07 for Rust. read_entry may read from uninitialized memory locations.

  • CVE-2021-45685Dec 26, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the columnar crate through 2021-01-07 for Rust. ColumnarReadExt::read_typed_vec may read from uninitialized memory locations.

  • CVE-2021-45688Dec 26, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the ash crate before 0.33.1 for Rust. util::read_spv may read from uninitialized memory locations.

  • CVE-2021-45689Dec 26, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the gfx-auxil crate through 2021-01-07 for Rust. gfx_auxil::read_spirv may read from uninitialized memory locations.

  • CVE-2021-45690Dec 26, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the messagepack-rs crate through 2021-01-26 for Rust. deserialize_binary may read from uninitialized memory locations.

  • CVE-2021-45691Dec 26, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the messagepack-rs crate through 2021-01-26 for Rust. deserialize_string may read from uninitialized memory locations.

  • CVE-2021-45692Dec 26, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the messagepack-rs crate through 2021-01-26 for Rust. deserialize_extension_others may read from uninitialized memory locations.

  • CVE-2021-45693Dec 26, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the messagepack-rs crate through 2021-01-26 for Rust. deserialize_string_primitive may read from uninitialized memory locations.

  • CVE-2021-45694Dec 26, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the rdiff crate through 2021-02-03 for Rust. Window may read from uninitialized memory locations.

  • CVE-2021-45703Dec 26, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the tectonic_xdv crate before 0.1.12 for Rust. XdvParser::::process may read from uninitialized memory locations.

  • CVE-2021-45686Dec 26, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the csv-sniffer crate through 2021-01-05 for Rust. preamble_skipcount may read from uninitialized memory locations.

  • CVE-2018-25023Dec 26, 2021
    risk 0.00cvss epss 0.01

    An issue was discovered in the smallvec crate before 0.6.13 for Rust. It can create an uninitialized value of any type, including a reference type.

  • CVE-2021-41225Nov 5, 2021
    risk 0.00cvss epss 0.00

    TensorFlow is an open source platform for machine learning. In affected versions TensorFlow's Grappler optimizer has a use of unitialized variable. If the `train_nodes` vector (obtained from the saved model that gets optimized) does not contain a `Dequeue` node, then…

  • CVE-2021-37682Aug 12, 2021
    risk 0.00cvss epss 0.00

    TensorFlow is an end-to-end open source platform for machine learning. In affected versions all TFLite operations that use quantization can be made to use unitialized values. [For example](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tens…