CWE-466— Return of Pointer Value Outside of Expected Range
A function can return a pointer to memory that is outside of the buffer that the pointer is expected to reference.— MITRE CWE catalog
7 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-466page 1 of 1
- CVE-2018-25227MEDIUMCVSS 6.2EG 6.22026-03-30
Valentina Studio 9.0.4 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Host field. Attackers can trigger the crash by pasting a 256-byte buffer …
- CVE-2018-25234MEDIUMCVSS 6.2EG 6.22026-03-30
SmartFTP Client 9.0.2615.0 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Host field. Attackers can paste a buffer of 300 repeated characters i…
- CVE-2019-25548MEDIUMCVSS 6.2EG 6.22026-03-21
BlueStacks 4.80.0.1060 contains a denial of service vulnerability that allows local attackers to crash the application by submitting oversized input to the search field. Attackers can paste a buffer of 100,000 'A' characters into the searc…
- CVE-2019-25599MEDIUMCVSS 6.2EG 6.22026-03-22
Backup Key Recovery 2.2.4 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Name field. Attackers can paste a buffer of 300 or more characters int…
- CVE-2024-21849HIGHCVSS 7.5EG 7.52024-02-14
When an Advanced WAF/ASM security policy and a Websockets profile are configured on a virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) process to terminate. Note: Software versions which have rea…
- CVE-2024-33602HIGHCVSS 7.4EG 8.62024-05-06
nscd: netgroup cache assumes NSS callback uses in-buffer strings The Name Service Cache Daemon's (nscd) netgroup cache can corrupt memory when the NSS callback does not store all strings in the provided buffer. The flaw was introduced in …
- CVE-2026-57025MEDIUMCVSS 5.5EG 5.52026-07-09
A Return of Pointer Value Outside of Expected Range vulnerability in the fileio library of Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privilged attacker to cause a Denial-of-Service (DoS). On EX Series, QFX Series …
Map vulnerabilities like CWE-466 to your infrastructure
EchelonGraph correlates every CVE — across CWE-466 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →