CWE•Base•Incomplete•5 recent CVEs

CWE-823Use of Out-of-range Pointer Offset

Description

The product performs pointer arithmetic on a valid pointer, but it uses an offset that can point outside of the intended range of valid memory locations for the resulting pointer.

[object Object]

Common consequences

Confidentiality→Read Memory
If the untrusted pointer is used in a read operation, an attacker might be able to read sensitive portions of memory.
Availability→DoS: Crash, Exit, or Restart
If the untrusted pointer references a memory location that is not accessible to the program, or points to a location that is "malformed" or larger than expected by a read or write operation, the application may terminate unexpectedly.
Integrity,Confidentiality,Availability→Execute Unauthorized Code or Commands,Modify Memory
If the untrusted pointer is used in a function call, or points to unexpected data in a write operation, then code execution may be possible.

Recent CVEs classified under this CWE

CVE-2026-341934.32026-06-01 CVE-2026-287647.82026-05-21 CVE-2026-429466.52026-05-13 CVE-2026-419077.52026-04-24 CVE-2026-200226.12026-03-04

Description

Common consequences

Related CWEs

Recent CVEs classified under this CWE