Use of Uninitialized Variable
CVE-2022-33716
Summary
An absence of variable initialization in ICCC TA prior to SMR Aug-2022 Release 1 allows local attacker to read uninitialized memory.
- LOW
- LOCAL
- NONE
- UNCHANGED
- NONE
- HIGH
- LOW
- NONE
CWE-457 - Use of Uninitialized Variable
The code uses a variable that has not been initialized, leading to unpredictable or unintended results.
References
Advisory Timeline
- Published
