Weaknesses of type CWE-476
2,116 resultsCVE-2024-25177HIGHLuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240314 have an unsinking of IR_FSTORE for NULL metatable, which leads to Denial of SeEPSS 0.5%CVE-2022-2874MEDIUMNULL Pointer Dereference in vim/vimEPSS 0.5%CVE-2023-3772MEDIUMKernel: xfrm: null pointer dereference in xfrm_update_ae_params()EPSS 0.5%CVE-2023-30756HIGHA vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl. SIPLUS variants) (All versions < V3.5.20), SIMATIC CP 1243-1 (incl. SIPLUEPSS 0.5%CVE-2023-28827HIGHA vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl. SIPLUS variants) (All versions < V3.5.20), SIMATIC CP 1243-1 (incl. SIPLUEPSS 0.5%CVE-2023-1355HIGHNULL Pointer Dereference in vim/vimEPSS 0.5%CVE-2024-12660MEDIUMIObit Advanced SystemCare Utimate IOCTL AscRegistryFilter.sys 0x8001E018 null pointer dereferenceEPSS 0.5%CVE-2024-12658MEDIUMIObit Advanced SystemCare Utimate IOCTL AscRegistryFilter.sys 0x8001E01C null pointer dereferenceEPSS 0.5%CVE-2024-12655MEDIUMFabulaTech USB over Network IOCT ftusbbus2.sys 0x220420 null pointer dereferenceEPSS 0.5%CVE-2024-12659MEDIUMIObit Advanced SystemCare Utimate IOCTL AscRegistryFilter.sys 0x8001E004 null pointer dereferenceEPSS 0.5%CVE-2026-26983MEDIUMImageMagick: Invalid MSL <map> can result in a use after freeEPSS 0.4%CVE-2026-7262LOWNULL pointer dereference in SOAP apache:Map decoder with missing <value>EPSS 0.4%CVE-2025-47210MEDIUMQsync CentralEPSS 0.4%CVE-2026-47204MEDIUMEnvoy: grpc_stats filter segfault on Connect protocol requests to direct_response routesEPSS 0.4%CVE-2024-41338HIGHA NULL pointer dereference in Draytek devices Vigor 165/166 prior to v4.2.6 , Vigor 2620/LTE200 prior to v3.9.8.8, Vigor 2860/2925 prior to EPSS 0.4%CVE-2026-24883LOWIn GnuPG before 2.5.17, a long signature packet length causes parse_signature to return success with sig->data[] set to a NULL value, leadinEPSS 0.4%CVE-2023-34164—Vulnerability of incomplete input parameter verification in the communication framework module. Successful exploitation of this vulnerabilitEPSS 0.4%CVE-2025-48705HIGHAn issue was discovered in COROS PACE 3 through 3.0808.0. Due to a NULL pointer dereference vulnerability, sending a crafted BLE message forEPSS 0.4%CVE-2024-57435MEDIUMIn macrozheng mall-tiny 1.0.1, an attacker can send null data through the resource creation interface resulting in a null pointer dereferencEPSS 0.4%CVE-2024-29947LOWThere is a NULL dereference pointer vulnerability in some Hikvision NVRs. Due to an insufficient validation of a parameter in a message, an EPSS 0.4%