CWE•Base•Incomplete•20 recent CVEs
CWE-824Access of Uninitialized Pointer
Description
The product accesses or uses a pointer that has not been initialized.
[object Object]
Common consequences
- Confidentiality→Read MemoryIf the uninitialized pointer is used in a read operation, an attacker might be able to read sensitive portions of memory.
- Availability→DoS: Crash, Exit, or RestartIf the uninitialized pointer references a memory location that is not accessible to the product, or points to a location that is "malformed" (such as NULL) or larger than expected by a read or write operation, then a crash may occur.
- Integrity,Confidentiality,Availability→Execute Unauthorized Code or CommandsIf the uninitialized pointer is used in a function call, or points to unexpected data in a write operation, then code execution may be possible.
Related CWEs
CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-125Out-of-bounds ReadCWE-787Out-of-bounds Write
Recent CVEs classified under this CWE
CVE-2026-473206.12026-06-04CVE-2026-429597.52026-05-20CVE-2026-394587.52026-05-13CVE-2026-444117.82026-05-12CVE-2026-68705.52026-04-30CVE-2026-65245.52026-04-30CVE-2026-273005.52026-04-14CVE-2026-21005.32026-03-26CVE-2026-28059.82026-02-24CVE-2026-27859.82026-02-24CVE-2025-147392025-12-18CVE-2025-665887.82025-12-11CVE-2025-265997.82025-02-25CVE-2024-499385.52024-10-21CVE-2020-117216.52020-04-12CVE-2014-15642014-09-03CVE-2007-46822007-11-15CVE-2007-40002007-09-05CVE-2007-46392007-08-31CVE-2007-24422007-06-26