CWE-476

Medium likelihood

NULL Pointer Dereference

Parent: CWE-710 - Improper Adherence to Coding Standards

The product dereferences a pointer that it expects to be valid but is NULL.

5,271 vulnerabilities with CWE-476
CVE-2026-21288 MEDIUM
Adobe Illustrator <= 30.0 - Denial of Service via NULL Pointer Dereference
CVSS 5.5
CVE-2026-20875 HIGH
Windows 10 1607-22H2 and Windows 11 23H2-25H2 - Unauthenticated Denial of Service via LSASS Null Pointer Dereference
CVSS 7.5
CVE-2026-22693 MEDIUM
HarfBuzz <12.3.0 - Memory Corruption
CVSS 5.3
CVE-2026-0731 MEDIUM
TOTOLINK WA1200 5.9c.2914 - Null Pointer Dereference in HTTP Request Handler
CVSS 5.3
CVE-2026-21691 MEDIUM
iccdev < 2.3.1.2 - Type Confusion in CIccTag:IsTypeCompressed()
CVSS 5.4
CVE-2026-21689 MEDIUM
iccDEV < 2.3.1.2 - Type Confusion in CIccProfileXml::ParseBasic()
CVSS 6.5
CVE-2026-21688 HIGH
iccDEV < 2.3.1.2 - Type Confusion in SIccCalcOp::ArgsPushed()
CVSS 8.8
CVE-2026-21680 MEDIUM
iccDEV < 2.3.1.2 - NULL Pointer Dereference
CVSS 6.5
CVE-2026-21506 MEDIUM
iccDEV < 2.3.1.2 - Denial of Service via Null Pointer Dereference in CIccProfileXml::ParseBasic()
CVSS 5.5
CVE-2026-21503 MEDIUM
iccDEV < 2.3.1.2 - Denial of Service via Null Pointer in CIccTagSparseMatrixArray
CVSS 6.1
CVE-2026-21502 MEDIUM
iccdev < 2.3.1.2 - Denial of Service via XML Tag Parser
CVSS 5.5
CVE-2026-21499 MEDIUM
iccdev < 2.3.1.2 - NULL Pointer Dereference in XML Parser
CVSS 5.5
CVE-2026-21498 MEDIUM
iccdev < 2.3.1.2 - Denial of Service via XML Calculator Parser
CVSS 5.5
CVE-2026-21497 MEDIUM
Color Iccdev < 2.3.1.2 - NULL Pointer Dereference
CVSS 5.5
CVE-2026-21496 MEDIUM
iccDEV < 2.3.1.2 - Denial of Service via Signature Parser NULL Pointer Dereference
CVSS 5.5
CVE-2026-21492 MEDIUM
iccDEV < 2.3.1.2 - NULL Pointer Dereference
CVSS 5.5
CVE-2026-21485 HIGH
iccdev < 2.3.1.2 - Out-of-bounds Read
CVSS 8.8
CVE-2025-70102 MEDIUM
dhcpcd 10.3.0 - NULL Pointer Dereference in parse_option
CVSS 6.3
CVE-2025-55663 MEDIUM
GPAC MP4Box 2.4 - Denial of Service via Crafted MP4 File
CVSS 5.5
CVE-2025-55649 MEDIUM
GPAC MP4Box 2.4 - Denial of Service via Crafted MP4 File
CVSS 5.5
CVE-2025-55643 MEDIUM
GPAC MP4Box 2.4 - Denial of Service via NULL Pointer Dereference in TrackWriter
CVSS 5.5
CVE-2025-55641 MEDIUM
GPAC MP4Box 2.4 - Denial of Service via Crafted MP4 File
CVSS 5.5
CVE-2025-7018 MEDIUM
Avira antivirus engine null pointer dereference when scanning a malformed PE file
CVSS 5.5
CVE-2025-66281 HIGH
QNAP Systems - QTS, QuTS Hero
CVSS 7.2
CVE-2025-62850 HIGH
Qnap Systems Inc. QuTS Hero - Denial of Service
CVSS 7.2
Details
Vulnerabilities 5,271
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits