CWE-825 - Expired pointer dereference

Description

The program dereferences a pointer that contains a location for memory that was previously valid, but is no longer valid. If the original pointer is accessed to read or write data, then this could cause the program to read or modify data that is in use by a different function or process. Depending on how the newly-allocated memory is used, this could lead to a denial of service, information exposure, or code execution.

Latest vulnerabilities for CWE-825

Denial of service in Squid 2024-01-23
Medium Yes

Splunk Enterprise update for third-party packages 2023-09-04
High Yes

Remote code execution in strongSwan 2023-08-18
High Yes

Multiple vulnerabilities in ClamAV 2023-08-16
Medium Yes

Splunk Universal Forwarder update for third-party packages 2023-06-05
High Yes

ClevOS update for IBM Cloud Object Storage Systems 2022-09-20
High Yes

Multiple vulnerabilities in IBM Cloud Pak for Security 2022-08-18
Critical Yes

Multiple vulnerabilities in Siemens SINEC INS 2022-03-11
High Yes

Multiple vulnerabilities in OpenShift Serverless 2021-07-15
Medium Yes

Multiple vulnerabilities in Red Hat OpenShift Jaeger 2021-06-27
High Yes

References

Description of CWE-825 on Mitre website