CWE-822— Untrusted Pointer Dereference
The product obtains a value from an untrusted source, converts this value to a pointer, and dereferences the resulting pointer.— MITRE CWE catalog
201 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-822page 4 of 5
- CVE-2025-54331MEDIUMCVSS 5.3EG 5.32025-11-04
An issue was discovered in NPU in Samsung Mobile Processor Exynos 1380 through July 2025. There is an Untrusted Pointer Dereference of src_hdr in the copy_ncp_header function.
- CVE-2025-54905HIGHCVSS 7.1EG 7.12025-09-09
Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to disclose information locally.
- CVE-2025-55230HIGHCVSS 7.8EG 7.82025-08-21
Untrusted pointer dereference in Windows MBT Transport driver allows an authorized attacker to elevate privileges locally.
- CVE-2025-55677HIGHCVSS 7.8EG 7.82025-10-14
Untrusted pointer dereference in Windows Device Association Broker service allows an authorized attacker to elevate privileges locally.
- CVE-2025-55681HIGHCVSS 7.0EG 7.02025-10-14
Out-of-bounds read in Windows DWM allows an authorized attacker to elevate privileges locally.
- CVE-2025-55696HIGHCVSS 7.8EG 7.82025-10-14
Time-of-check time-of-use (toctou) race condition in NtQueryInformation Token function (ntifs.h) allows an authorized attacker to elevate privileges locally.
- CVE-2025-58749MEDIUMCVSS 5.3EG 5.32025-09-16
WebAssembly Micro Runtime (WAMR) is a lightweight standalone WebAssembly (Wasm) runtime. In WAMR versions prior to 2.4.2, when running in LLVM-JIT mode, the runtime cannot exit normally when executing WebAssembly programs containing a memo…
- CVE-2025-59187HIGHCVSS 7.8EG 7.82025-10-14
Improper input validation in Windows Kernel allows an authorized attacker to elevate privileges locally.
- CVE-2025-59207HIGHCVSS 7.8EG 7.82025-10-14
Untrusted pointer dereference in Windows Kernel allows an authorized attacker to elevate privileges locally.
- CVE-2025-59959MEDIUMCVSS 5.5EG 5.52026-01-15
An Untrusted Pointer Dereference vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a local, authenticated attacker with low privileges to cause a Denial-of-Service (DoS). When the …
- CVE-2025-60703HIGHCVSS 7.8EG 7.82025-11-11
Untrusted pointer dereference in Windows Remote Desktop allows an authorized attacker to elevate privileges locally.
- CVE-2025-60708MEDIUMCVSS 6.5EG 6.52025-11-11
Untrusted pointer dereference in Storvsp.sys Driver allows an authorized attacker to deny service locally.
- CVE-2025-60713HIGHCVSS 7.8EG 7.82025-11-11
Untrusted pointer dereference in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to elevate privileges locally.
- CVE-2025-60719HIGHCVSS 7.0EG 7.02025-11-11
Untrusted pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally.
- CVE-2025-60728MEDIUMCVSS 4.3EG 4.32025-11-11
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to disclose information over a network.
- CVE-2025-62200HIGHCVSS 7.8EG 7.82025-11-11
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-62549HIGHCVSS 8.8EG 8.82025-12-09
Untrusted pointer dereference in Windows Routing and Remote Access Service (RRAS) allows an unauthorized attacker to execute code over a network.
- CVE-2025-62556HIGHCVSS 7.8EG 7.82025-12-09
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-62560HIGHCVSS 7.8EG 7.82025-12-09
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-62561HIGHCVSS 7.8EG 7.82025-12-09
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-62627HIGHCVSS 7.2EG 7.22026-05-13
An untrusted pointer dereference in the ionic cloud driver for VMWare ESXi could allow an attacker with an unprivileged VM to read kernel memory or co-located guest VM memory, potentially resulting in loss of confidentiality or availabilit…
- CVE-2026-20738HIGHCVSS 8.5EG 8.52026-05-12
Untrusted pointer dereference for some Intel(R) QuickAssist Adapter 8960 software before version 1.13 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combine…
- CVE-2026-20811HIGHCVSS 7.8EG 7.82026-01-13
Access of resource using incompatible type ('type confusion') in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.
- CVE-2026-20819MEDIUMCVSS 5.5EG 5.52026-01-13
Untrusted pointer dereference in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to disclose information locally.
- CVE-2026-20857HIGHCVSS 7.8EG 7.82026-01-13
Untrusted pointer dereference in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.
- CVE-2026-20935MEDIUMCVSS 6.2EG 6.22026-01-13
Untrusted pointer dereference in Windows Virtualization-Based Security (VBS) Enclave allows an unauthorized attacker to disclose information locally.
- CVE-2026-20938HIGHCVSS 7.8EG 7.82026-01-13
Untrusted pointer dereference in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to elevate privileges locally.
- CVE-2026-20940HIGHCVSS 7.8EG 7.82026-01-13
Heap-based buffer overflow in Windows Cloud Files Mini Filter Driver allows an authorized attacker to elevate privileges locally.
- CVE-2026-20948HIGHCVSS 7.8EG 7.82026-01-13
Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.
- CVE-2026-20955HIGHCVSS 7.8EG 7.82026-01-13
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2026-20956HIGHCVSS 7.8EG 7.82026-01-13
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2026-21232HIGHCVSS 7.8EG 7.82026-02-10
Untrusted pointer dereference in Windows HTTP.sys allows an authorized attacker to elevate privileges locally.
- CVE-2026-21250HIGHCVSS 7.8EG 7.82026-02-10
Untrusted pointer dereference in Windows HTTP.sys allows an authorized attacker to elevate privileges locally.
- CVE-2026-23670MEDIUMCVSS 5.7EG 5.72026-04-14
Untrusted pointer dereference in Windows Virtualization-Based Security (VBS) Enclave allows an authorized attacker to bypass a security feature locally.
- CVE-2026-26112HIGHCVSS 7.8EG 7.82026-03-10
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2026-26113HIGHCVSS 8.4EG 8.42026-03-10
Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally.
- CVE-2026-26161HIGHCVSS 7.8EG 7.82026-04-14
Untrusted pointer dereference in Windows Sensor Data Service allows an authorized attacker to elevate privileges locally.
- CVE-2026-27919HIGHCVSS 7.8EG 7.82026-04-14
Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.
- CVE-2026-27920HIGHCVSS 7.8EG 7.82026-04-14
Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.
- CVE-2026-32077HIGHCVSS 7.8EG 7.82026-04-14
Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker to elevate privileges locally.
- CVE-2026-32222HIGHCVSS 7.8EG 7.82026-04-14
Untrusted pointer dereference in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally.
- CVE-2026-33114HIGHCVSS 8.4EG 8.42026-04-14
Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.
- CVE-2026-33120HIGHCVSS 8.8EG 8.82026-04-14
Untrusted pointer dereference in SQL Server allows an authorized attacker to execute code over a network.
- CVE-2026-40367HIGHCVSS 8.4EG 8.42026-05-12
Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally.
- CVE-2026-40369HIGHCVSS 7.8EG 7.82026-05-12
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally.
- CVE-2026-44805MEDIUMCVSS 5.5EG 5.52026-06-09
Use after free in Windows Network Controller (NC) Host Agent allows an authorized attacker to deny service locally.
- CVE-2026-45471HIGHCVSS 7.8EG 7.82026-06-09
Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.
- CVE-2026-45643HIGHCVSS 7.8EG 7.82026-06-09
Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.
- CVE-2026-45645HIGHCVSS 7.8EG 7.82026-06-09
Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally.
- CVE-2026-48137CRITICALCVSS 9.8EG 9.82026-06-19
There is an untrusted pointer dereference vulnerability in the NI grpc-device sideband streaming API that may allow an attacker to cause an arbitrary memory dereference, potentially resulting in remote code execution. Successful exploita…
Map vulnerabilities like CWE-822 to your infrastructure
EchelonGraph correlates every CVE — across CWE-822 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →