CWE-822

Untrusted Pointer Dereference

Parent: CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer

The product obtains a value from an untrusted source, converts this value to a pointer, and dereferences the resulting pointer.

189 vulnerabilities with CWE-822
CVE-2026-33120 HIGH
Microsoft SQL Server Remote Code Execution Vulnerability
CVSS 8.8
CVE-2026-33114 HIGH
Microsoft Word Remote Code Execution Vulnerability
CVSS 8.4
CVE-2026-32222 HIGH
Windows Win32k Elevation of Privilege Vulnerability
CVSS 7.8
CVE-2026-32077 HIGH
Windows UPnP Device Host Elevation of Privilege Vulnerability
CVSS 7.8
CVE-2026-27920 HIGH
Windows UPnP Device Host Elevation of Privilege Vulnerability
CVSS 7.8
CVE-2026-27919 HIGH
Windows UPnP Device Host Elevation of Privilege Vulnerability
CVSS 7.8
CVE-2026-26161 HIGH
Windows Sensor Data Service Elevation of Privilege Vulnerability
CVSS 7.8
CVE-2026-23670 MEDIUM
Windows Virtualization-Based Security (VBS) Security Feature Bypass Vulnerability
CVSS 5.7
CVE-2026-26113 HIGH
Microsoft Office - Memory Corruption
CVSS 8.4
CVE-2026-26112 HIGH
Microsoft Office Excel - Memory Corruption
CVSS 7.8
CVE-2026-21250 HIGH
Windows HTTP.sys - Privilege Escalation
CVSS 7.8
CVE-2026-21232 HIGH
Windows HTTP.sys - Privilege Escalation
CVSS 7.8
CVE-2026-20956 HIGH
Microsoft Office Excel - Code Injection
CVSS 7.8
CVE-2026-20955 HIGH
Microsoft Office Excel - Code Injection
CVSS 7.8
CVE-2026-20948 HIGH
Microsoft Office Word - RCE
CVSS 7.8
CVE-2026-20940 HIGH
Windows Cloud Files Mini Filter Driver - Buffer Overflow
CVSS 7.8
CVE-2026-20938 HIGH
Windows VBS Enclave - Privilege Escalation
CVSS 7.8
CVE-2026-20935 MEDIUM
Windows VBS Enclave - Info Disclosure
CVSS 6.2
CVE-2026-20857 HIGH
Windows Cloud Files Mini Filter Driver - Privilege Escalation
CVSS 7.8
CVE-2026-20819 MEDIUM
Windows VBS Enclave - Info Disclosure
CVSS 5.5
CVE-2026-20811 HIGH
Windows Win32K - ICOMP - Privilege Escalation
CVSS 7.8
CVE-2025-59959 MEDIUM
Juniper Junos < 22.4 - Denial of Service
CVSS 5.5
CVE-2025-47380 HIGH
Qualcomm Sensor IOCTL Preprocessing Firmware - Memory Corruption
CVSS 7.8
CVE-2025-47343 HIGH
Product <Version - Memory Corruption
CVSS 7.8
CVE-2025-52516 MEDIUM
Samsung Exynos 1330 Firmware - Denial of Service
CVSS 6.2
Details
Vulnerabilities 189
Links
MITRE CWE Entry Search this CWE With Exploits