CWE•Base•Incomplete•19 recent CVEs
CWE-822Untrusted Pointer Dereference
Description
The product obtains a value from an untrusted source, converts this value to a pointer, and dereferences the resulting pointer.
[object Object]
Common consequences
- Confidentiality→Read MemoryIf the untrusted pointer is used in a read operation, an attacker might be able to read sensitive portions of memory.
- Availability→DoS: Crash, Exit, or RestartIf the untrusted pointer references a memory location that is not accessible to the product, or points to a location that is "malformed" or larger than expected by a read or write operation, the application may terminate unexpectedly.
- Integrity,Confidentiality,Availability→Execute Unauthorized Code or Commands,Modify MemoryIf the untrusted pointer is used in a function call, or points to unexpected data in a write operation, then code execution may be possible.
Related CWEs
Recent CVEs classified under this CWE
CVE-2026-456457.82026-06-09CVE-2026-456437.82026-06-09CVE-2026-454717.82026-06-09CVE-2026-448055.52026-06-09CVE-2026-88357.32026-05-26CVE-2025-626272026-05-13CVE-2026-403697.82026-05-12CVE-2026-403678.42026-05-12CVE-2026-207382026-05-12CVE-2025-474087.82026-05-04CVE-2025-474057.82026-05-04CVE-2026-331208.82026-04-14CVE-2026-331148.42026-04-14CVE-2026-322227.82026-04-14CVE-2026-320777.82026-04-14CVE-2026-279207.82026-04-14CVE-2026-279197.82026-04-14CVE-2026-261617.82026-04-14CVE-2026-236705.72026-04-14