CWE-158Improper Neutralization of Null Byte or NUL Character

Abstraction: Variant · CVEs in our corpus: 23

The product receives input from an upstream component, but it does not neutralize or incorrectly neutralizes NUL characters or null bytes when they are sent to a downstream component.

As data is parsed, an injected NUL character or null byte may cause the product to believe the input is terminated earlier than it actually is, or otherwise cause the input to be misinterpreted. This could then be used to inject potentially dangerous input that occurs after the null byte or otherwise bypass validation routines and other protection mechanisms.

Last updated: 09 May 2026 03:25 UTC

NIST 800-53 r5 controls that address this weakness (0)AI

Control	Title	Family	Why it addresses this CWE
No NIST controls proposed yet.

Top CVEs of this weakness type, ranked by Risk Priority

CVE	Risk	CVSS	EPSS	Published
`CVE-2025-47812` KEV	9.6	10.0	0.9284	2025-07-10
`CVE-2020-14500`	2.0	10.0	0.0029	2020-08-25
`CVE-2025-14388`	2.0	9.8	0.0014	2025-12-23
`CVE-2022-20812`	1.9	9.0	0.0106	2022-07-06
`CVE-2022-20813`	1.8	9.0	0.0040	2022-07-06
`CVE-2023-5719`	1.8	8.8	0.0009	2023-11-06
`CVE-2025-55113`	1.8	9.0	0.0004	2025-09-16
`CVE-2020-5363`	1.7	8.6	0.0005	2020-06-10
`CVE-2026-33191`	1.7	8.6	0.0020	2026-03-20
`CVE-2025-1936`	1.5	7.3	0.0018	2025-03-04
`CVE-2025-66263`	1.5	7.5	0.0004	2025-11-26
`CVE-2024-10921`	1.4	6.8	0.0054	2024-11-14
`CVE-2020-7928`	1.3	6.5	0.0048	2020-11-23
`CVE-2026-23863`	1.3	6.5	0.0001	2026-05-01
`CVE-2024-0408`	1.1	5.5	0.0002	2024-01-18
`CVE-2026-28540`	0.8	4.0	0.0001	2026-03-05
`CVE-2024-9026`	0.7	3.3	0.0087	2024-10-08
`CVE-2025-61985`	0.7	3.6	0.0002	2025-10-06
`CVE-2026-43859`	0.7	3.7	0.0003	2026-05-04
`CVE-2026-43861`	0.7	3.7	0.0003	2026-05-04
`CVE-2022-31223`	0.5	2.3	0.0005	2022-09-12
`CVE-2026-4359`	0.4	2.0	0.0004	2026-03-17
`CVE-2025-9648`	0.1	0.0	0.0089	2025-09-29