CWE-822 · Untrusted Pointer Dereference
201 CVEs classified under CWE-822 (Untrusted Pointer Dereference). Browse by severity and year.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-50165 | Critical | 9.8 | 2025-08-12 | Untrusted pointer dereference in Microsoft Graphics Component allows an unauthorized attacker to execute code over a network. |
CVE-2023-1437 | Critical | 9.8 | 2023-08-02 | All versions prior to 9.1.4 of Advantech WebAccess/SCADA are vulnerable to use of untrusted pointers. The RPC arguments the client sent could contain raw memor… |
CVE-2018-12548 | Critical | 9.8 | 2019-01-31 | In OpenJDK + Eclipse OpenJ9 version 0.11.0 builds, the public jdk.crypto.jniprovider.NativeCrypto class contains public static natives which accept pointer val… |
CVE-2018-17893 | Critical | 9.8 | 2018-10-17 | LAquis SCADA Versions 4.1.0.3870 and prior has an untrusted pointer dereference vulnerability, which may allow remote code execution. |
CVE-2018-14811 | Critical | 9.8 | 2018-09-26 | Fuji Electric V-Server 4.0.3.0 and prior, Multiple untrusted pointer dereference vulnerabilities have been identified, which may allow remote code execution. |
CVE-2018-7497 | Critical | 9.8 | 2018-05-15 | In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prior, WebAccess Scada… |
CVE-2026-48137 | Critical | 9.1 | 2026-06-19 | There is an untrusted pointer dereference vulnerability in the NI grpc-device sideband streaming API that may allow an attacker to cause an arbitrary memory de… |
CVE-2025-4993 | Critical | 9.1 | 2025-09-23 | Untrusted Pointer Dereference vulnerability in RTI Connext Professional (Core Libraries) allows Pointer Manipulation.This issue affects Connext Professional: f… |
CVE-2025-1255 | Critical | 9.1 | 2025-09-23 | Untrusted Pointer Dereference vulnerability in RTI Connext Professional (Core Libraries) allows Pointer Manipulation.This issue affects Connext Professional: f… |
CVE-2024-36461 | Critical | 9.1 | 2024-08-12 | Within Zabbix, users have the ability to directly modify memory pointers in the JavaScript engine. |
CVE-2023-21643 | Critical | 9.1 | 2023-08-08 | Memory corruption due to untrusted pointer dereference in automotive during system call. |
CVE-2026-33120 | High | 8.8 | 2026-04-14 | Untrusted pointer dereference in SQL Server allows an authorized attacker to execute code over a network. |
CVE-2025-62549 | High | 8.8 | 2025-12-09 | Untrusted pointer dereference in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network. |
CVE-2025-27060 | High | 8.8 | 2025-10-09 | Memory corruption while performing SCM call with malformed inputs. |
CVE-2024-43624 | High | 8.8 | 2024-11-12 | Windows Hyper-V Shared Virtual Disk Elevation of Privilege Vulnerability |
CVE-2024-37340 | High | 8.8 | 2024-09-10 | Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability |
CVE-2024-37339 | High | 8.8 | 2024-09-10 | Microsoft SQL Server Native Scoring Remote Code Execution Vulnerability |
CVE-2024-38104 | High | 8.8 | 2024-07-09 | Windows Fax Service Remote Code Execution Vulnerability |
CVE-2023-0184 | High | 8.8 | 2023-04-22 | NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer handler which may lead to denial of service, escalation of pr… |
CVE-2023-0189 | High | 8.8 | 2023-04-01 | NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler which may lead to code execution, denial of service, escalation o… |