CVE-2015-9124

CRITICAL Year: 2015
CVSS v3 Score
9.1
Critical
CVSS v2 Score
8.5
High
Weakness Type
CWE-476
View all →

Vulnerability Description

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile MDM9625, MDM9635M, MDM9640, MDM9645, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 615/16/SD 415, SD 800, SD 808, and SD 810, the device may crash while accessing an invalid pointer or expose otherwise inaccessible memory contents.

Related Vulnerabilities

CVE-2017-10917

CRITICAL
CVSS:9.1(Critical)

Xen through 4.8.x does not validate the port numbers of polled event channel ports, which allows guest OS users to cause a denial of service (NULL pointer dereference and host OS crash) or possibly ob...

CWE-4762017

CVE-2021-45079

CRITICAL
CVSS:9.1(Critical)

In strongSwan before 5.9.5, a malicious responder can send an EAP-Success message too early without actually authenticating the client and (in the case of EAP methods with mutual authentication and EA...

CWE-4762021

CVE-2022-26099

CRITICAL
CVSS:9.1(Critical)

Null pointer dereference vulnerability in parser_infe function of libsimba library prior to SMR Apr-2022 Release 1 allows out of bounds read by remote attackers.

CWE-4762022

CVE-2024-11705

CRITICAL
CVSS:9.1(Critical)

`NSC_DeriveKey` inadvertently assumed that the `phKey` parameter is always non-NULL. When it was passed as NULL, a segmentation fault (SEGV) occurred, leading to crashes. This behavior conflicted with...

CWE-4762024

CVE-2024-23078

CRITICAL
CVSS:9.1(Critical)

JGraphT Core v1.5.2 was discovered to contain a NullPointerException via the component org.jgrapht.alg.util.ToleranceDoubleComparator::compare(Double, Double). NOTE: this is disputed by multiple third...

CWE-4762024