CWE-908 - Use of Uninitialized Resource

Description

The software uses a resource that has not been properly initialized. When reusing a resource such as memory or a program variable, the original contents of that resource may not be cleared before it is sent to an untrusted party. The uninitialized resource may contain values that cause program flow to change in ways that the programmer did not intend. The weakness is introduced during Implementation stage.

Latest vulnerabilities for CWE-908

Multiple vulnerabilities in IBM Db2 2024-04-24
High Yes

Information disclosure in Microsoft Local Security Authority Subsystem Service 2024-04-10
Low Yes

Information disclosure in Microsoft Windows Mobile Hotspot 2024-04-10
Low Yes

Multiple vulnerabilities in IBM Operations Analytics Predictive Insights 2024-04-08
High Yes

Multiple vulnerabilities in IBM Tivoli Business Service Manager 2024-04-08
High Yes

Multiple vulnerabilities in IBM OpenPages with Watson 2024-04-08
High Yes

Multiple vulnerabilities in IBM Application Performance Management 2024-04-08
High Yes

Multiple vulnerabilities in IBM Storage Protect Server 2024-03-28
High Yes

Multiple vulnerabilities in IBM Cloud Pak for Security (CP4S) 2023-09-21
High Yes

Multiple vulnerabilities in Intel NUC BIOS firmware 2023-08-11
Low Yes

References

Description of CWE-908 on Mitre website