CWE-476

Medium likelihood

NULL Pointer Dereference

Parent: CWE-710 - Improper Adherence to Coding Standards

The product dereferences a pointer that it expects to be valid but is NULL.

5,277 vulnerabilities with CWE-476
CVE-2025-61102 HIGH
FRRouting 4.0-10.4.1 - Denial of Service via OSPF Packet in show_vty_ext_link_adj_sid
CVSS 7.5
CVE-2025-61101 HIGH
FRRouting 4.0-10.4.1 - Denial of Service via OSPF Packet Handling in show_vty_ext_link_rmt_itf_addr
CVSS 7.5
CVE-2025-61100 HIGH
FRRouting 2.0-10.4.1 - Denial of Service via OSPF Opaque LSA Dump Function
CVSS 7.5
CVE-2025-61099 HIGH
FRRouting 2.0-10.4.1 - Denial of Service via OSPF Opaque LSA Update Packet
CVSS 7.5
CVE-2025-12207 LOW
Kamailio 5.5 - Null Pointer Dereference in Grammar Rule Handler
CVSS 3.3
CVE-2025-12206 LOW
Kamailio 5.5 - Denial of Service via Null Pointer Dereference in rve_is_constant
CVSS 3.3
CVE-2025-23332 MEDIUM
NVIDIA Display Driver - Use After Free
CVSS 5.0
CVE-2025-23330 MEDIUM
NVIDIA Display Driver - Memory Corruption
CVSS 5.5
CVE-2025-23300 MEDIUM
NVIDIA Display Driver - Use After Free
CVSS 5.5
CVE-2025-50950 HIGH
Audiofile <0.3.7 - Memory Corruption
CVSS 7.5
CVE-2025-60336 HIGH
TOTOLINK N600R <4.3.0cu.7866_B20220506 - DoS
CVSS 7.5
CVE-2025-60335 HIGH
TOTOLINK N600R <4.3.0cu.7866_B20220506 - DoS
CVSS 7.5
CVE-2025-60332 HIGH
D-Link DIR-823G A1 v1.0.2B05 - Denial of Service via SetWLanRadioSettings NULL Pointer Dereference
CVSS 7.5
CVE-2025-62409 HIGH
Envoy < 1.36.1, 1.35.5, 1.34.9, 1.33.10 - Denial of Service via TCP Connection Pool Flow Control
CVSS 7.5
CVE-2025-61908 MEDIUM
Icinga 2.10.0-2.13.12 - Denial of Service via Invalid Reference Dereference
CVSS 6.5
CVE-2025-9548 MEDIUM
Lenovo Power Management Driver - Memory Corruption
CVSS 5.5
CVE-2025-61960 HIGH
BIG-IP APM 16.1.0-16.1.6.1 - Denial of Service via Per-Request Policy
CVSS 7.5
CVE-2025-58120 HIGH
F5 BIG-IP Next 1.1.0-1.4.1 & Service Proxy for Kubernetes 1.7.0-1.7.14 - DoS via HTTP/2 Ingress
CVSS 7.5
CVE-2025-54270 MEDIUM
Adobe Animate < 23.0.15 - NULL Pointer Dereference via Malicious File
CVSS 5.5
CVE-2025-55698 HIGH
Windows 11 24H2/25H2 & Server 2025 < 10.0.26200.6899 DoS via DirectX Null Pointer Dereference
CVSS 7.7
CVE-2025-42902 MEDIUM
SAP NetWeaver AS ABAP/ABAP Platform - Memory Corruption
CVSS 5.3
CVE-2025-59836 MEDIUM
siderolabs/omni <1.0.2 and >=1.1.0-beta.0 <1.1.5 - Unauthenticated Denial of Service via Empty Resource Request
CVSS 5.3
CVE-2025-9337 MEDIUM
AsIO3.sys - Null Pointer Dereference
CVE-2025-11618 MEDIUM
FreeRTOS-Plus-TCP 4.0.0-4.3.3 - Null Pointer Dereference in UDP/IPv6 Packet Processing
CVSS 4.3
CVE-2025-11550 MEDIUM
Tenda W12 3.0.0.6(3948) - Null Pointer Dereference via wifiScheduledSet Argument
CVSS 6.5
Details
Vulnerabilities 5,277
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits