CWE-476
Medium likelihoodNULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.
5,271 vulnerabilities with CWE-476
CVE-2026-23237
MEDIUM
Linux Kernel - NULL Pointer Dereference
CVSS 5.5
CVE-2026-3408
MEDIUM
Open Babel <=3.1.1 - Memory Corruption
CVSS 4.3
CVE-2026-3392
LOW
FascinatedBox lily <=2.3 - Memory Corruption
CVSS 3.3
CVE-2026-3389
LOW
Squirrel up to 3.2 - Memory Corruption
CVSS 3.3
CVE-2026-3387
LOW
wren-lang wren <=0.4.0 - Memory Corruption
CVSS 3.3
CVE-2026-27141
HIGH
golang.org/x/net/http2 0.50.0-0.50.9 - Denial of Service via Malformed HTTP/2 Frame
CVSS 7.5
CVE-2026-22722
MEDIUM
VMware Workstation >=17.0 <25H2u1 - Authenticated Denial of Service via Null Pointer Dereference
CVSS 6.1
CVE-2026-3202
MEDIUM
Wireshark 4.6.0-4.6.3 - Denial of Service via NTS-KE Protocol Dissector
CVSS 4.7
CVE-2026-3146
LOW
libvips <=8.18.0 - Memory Corruption
CVSS 3.3
CVE-2026-0401
MEDIUM
SonicOS < 7.3.2-7010 - Authenticated Denial of Service via NULL Pointer Dereference
CVSS 4.9
CVE-2026-26983
MEDIUM
ImageMagick <7.1.2-15/6.9.13-40 - Use After Free
CVSS 5.3
CVE-2026-26025
HIGH
free5gc/smf <= 1.4.1 - Denial of Service via Malformed PFCP SessionReportRequest
CVSS 7.5
CVE-2026-26024
HIGH
free5GC SMF <= 1.4.1 - Denial of Service via Malformed PFCP SessionReportRequest
CVSS 7.5
CVE-2026-25798
MEDIUM
ImageMagick <7.1.2-15/6.9.13-40 - DoS
CVSS 5.3
CVE-2026-25795
MEDIUM
ImageMagick <7.1.2-15/<6.9.13-40 - DoS
CVSS 5.3
CVE-2026-25501
HIGH
free5gc/smf <= 1.4.1 - Denial of Service via Malformed PFCP SessionReportRequest
CVSS 7.5
CVE-2026-2903
LOW
skvadrik re2c <=4.4 - Memory Corruption
CVSS 3.3
CVE-2026-2507
HIGH
F5 BIG-IP - Denial of Service via Undisclosed Traffic
CVSS 7.5
CVE-2026-23218
MEDIUM
Linux Kernel - NULL Pointer Dereference in GPIO Loongson-64bit IRQ Initialization
CVSS 5.5
CVE-2026-2642
LOW
the_silver_searcher <= 2.2.0 - Denial of Service via Null Pointer Dereference in search_stream
CVSS 3.3
CVE-2026-23210
MEDIUM
Linux Kernel - NULL Pointer Dereference in ice_ptp_update_cached_phctime
CVSS 4.7
CVE-2026-23206
MEDIUM
Linux Kernel 5.13.0-6.18.9 - NULL Pointer Dereference in dpaa2-switch Driver
CVSS 5.5
CVE-2026-23202
MEDIUM
Linux Kernel - Buffer Overflow
CVSS 5.5
CVE-2026-23201
MEDIUM
Linux Kernel < 6.12.70, 6.13.0-6.18.10, 6.17 - Null Pointer Dereference in Ceph Snapshot Directory Parsing
CVSS 5.5
CVE-2026-23200
MEDIUM
Linux Kernel - NULL Pointer Dereference in IPv6 Route Handling
CVSS 5.5
Details
Vulnerabilities
5,271
Exploit Likelihood
Medium