CVE-2024-52870

HIGH Year: 2024
CVSS v3 Score
7.1
High
Weakness Type
CWE-909
View all →

Vulnerability Description

Teradata Vantage Editor 1.0.1 is mostly intended for SQL database access and docs.teradata.com access, but provides unintended functionality (including Chromium Developer Tools) that can result in a client user accessing arbitrary remote websites.

Related Vulnerabilities

CVE-2020-24455

MEDIUM
CVSS:6.7(Medium)

Missing initialization of a variable in the TPM2 source may allow a privileged user to potentially enable an escalation of privilege via local access. This affects tpm2-tss before 3.0.1 and before 2.4...

CWE-9092020

CVE-2018-10811

HIGH
CVSS:7.5(High)

strongSwan 5.6.0 and older allows Remote Denial of Service because of Missing Initialization of a Variable.

CWE-9092018

CVE-2018-21247

HIGH
CVSS:7.5(High)

An issue was discovered in LibVNCServer before 0.9.13. There is an information leak (of uninitialized memory contents) in the libvncclient/rfbproto.c ConnectToRFBRepeater function.

CWE-9092018

CVE-2019-12408

HIGH
CVSS:7.5(High)

It was discovered that the C++ implementation (which underlies the R, Python and Ruby implementations) of Apache Arrow 0.14.0 to 0.14.1 had a uninitialized memory bug when building arrays with null va...

CWE-9092019

CVE-2019-12410

HIGH
CVSS:7.5(High)

While investigating UBSAN errors in https://github.com/apache/arrow/pull/5365 it was discovered Apache Arrow versions 0.12.0 to 0.14.1, left memory Array data uninitialized when reading RLE null data ...

CWE-9092019

CVE-2019-16714

HIGH
CVSS:7.5(High)

In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows attackers to obtain sensitive information from kernel stack memory because tos and flags fields are not initialized.

CWE-9092019