CWE · MITRE source
CWE-476NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.
Last updated: 09 May 2026 03:25 UTC
NIST 800-53 r5 controls that address this weakness (0)AI
| Control | Title | Family | Why it addresses this CWE |
|---|---|---|---|
| No NIST controls proposed yet. | |||
Top CVEs of this weakness type, ranked by Risk Priority
| CVE | Risk | CVSS | EPSS | Published |
|---|---|---|---|---|
CVE-2018-8011 | 6.4 | 7.5 | 0.8201 | 2018-07-18 |
CVE-2016-0742 | 6.2 | 7.5 | 0.7908 | 2016-02-15 |
CVE-2014-3470 | 5.5 | 0.0 | 0.9140 | 2014-06-05 |
CVE-2018-1000027 | 5.5 | 7.5 | 0.6600 | 2018-02-09 |
CVE-2018-0833 | 5.5 | 5.3 | 0.7453 | 2018-02-15 |
CVE-2021-26690 | 5.5 | 7.5 | 0.6742 | 2021-06-10 |
CVE-2020-1967 | 5.1 | 7.5 | 0.6077 | 2020-04-21 |
CVE-2016-4957 | 5.0 | 7.5 | 0.5907 | 2016-07-05 |
CVE-2017-3730 | 4.7 | 7.5 | 0.5305 | 2017-05-04 |
CVE-2018-10548 | 4.7 | 7.5 | 0.5270 | 2018-04-29 |
CVE-2015-3194 | 4.6 | 7.5 | 0.5190 | 2015-12-06 |
CVE-2023-21758 | 4.5 | 7.5 | 0.4968 | 2023-01-10 |
CVE-2006-6565 | 4.3 | 0.0 | 0.7154 | 2006-12-15 |
CVE-2018-15937 | 4.2 | 7.8 | 0.4336 | 2018-10-12 |
CVE-2024-37399 | 4.2 | 7.5 | 0.4510 | 2024-08-14 |
CVE-2017-0016 | 4.1 | 5.9 | 0.4920 | 2017-03-17 |
CVE-2017-3169 | 3.8 | 9.8 | 0.3077 | 2017-06-20 |
CVE-2017-7659 | 3.8 | 7.5 | 0.3838 | 2017-07-26 |
CVE-2020-1069 | 3.8 | 8.8 | 0.3453 | 2020-05-21 |
CVE-2025-21285 | 3.8 | 7.5 | 0.3880 | 2025-01-14 |
CVE-2026-21525 KEV | 3.8 | 6.2 | 0.0939 | 2026-02-10 |
CVE-2017-3135 | 3.6 | 7.5 | 0.3441 | 2019-01-16 |
CVE-2023-21683 | 3.6 | 7.5 | 0.3428 | 2023-01-10 |
CVE-2004-0365 | 3.4 | 7.5 | 0.3086 | 2004-05-04 |
CVE-2022-32230 | 3.2 | 7.5 | 0.2890 | 2022-06-14 |