CWE-909 - Missing initialization of resource

Description

Many resources require initialization before they can be properly used. If a resource is not initialized, it could contain unpredictable or expired data, or it could be initialized to defaults that are invalid. This can have security implications when the resource is expected to have certain properties or values.

Latest vulnerabilities for CWE-909

Multiple vulnerabilities in OpenSC 2024-10-14
Low Yes

Multiple vulnerabilities in IBM Cognos Analytics 2024-02-26
High Yes Public exploit

Multiple vulnerabilities in IBM Operations Analytics Predictive Insights 2023-10-16
Medium Yes

Missing initialization of resource in IBM Cloud Application Performance Management 2023-07-13
Medium Yes

Multiple vulnerabilities in IBM Spectrum Protect Plus 2023-03-20
Medium Yes

Missing initialization of resource in IBM Security Verify Access 2023-02-08
Medium Yes

Missing initialization of resource in IBM Tivoli System Automation Application Manager 2023-01-25
Medium Yes

Missing initialization of resource in IBM Tivoli System Automation for Multiplatforms 2023-01-25
Medium Yes

Missing initialization of resource in IBM Tivoli Netcool Configuration Manager 2023-01-18
Medium Yes

Missing initialization of resource in IBM SPSS Collaboration and Deployment Services 2023-01-17
Medium Yes

References

Description of CWE-909 on Mitre website