CWE-466 - Return of Pointer Value Outside of Expected Range
- Abstraction:Base
- Structure:Simple
- Status:Draft
- Release Date:2006-07-19
- Latest Modification Date:2023-06-29
Weakness Name
Return of Pointer Value Outside of Expected Range
Description
A function can return a pointer to memory that is outside of the buffer that the pointer is expected to reference.
Common Consequences
Scope: Confidentiality, Integrity
Impact: Read Memory, Modify Memory
Related Weaknesses
CWE-20Improper Input ValidationHigh
CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferHigh
Police shuts down KidFlix child sexual exploitation platform
The Reality Behind Security Control Failures—And How to Prevent Them
Counterfeit Android devices found preloaded With Triada malware
Google Fixed Cloud Run Vulnerability Allowing Unauthorized Image Access via IAM Misuse
Helping Your Clients Achieve NIST Compliance: A Step by Step Guide for Service Providers
Outlaw Group Uses SSH Brute-Force to Deploy Cryptojacking Malware on Linux Servers
FIN7 Deploys Anubis Backdoor to Hijack Windows Systems via Compromised SharePoint Sites
CVE-2025-22224 VMware ESXi and Workstation TOCTOU Race Condition Vulnerability
CVE-2020-29574 CyberoamOS (CROS) SQL Injection Vulnerability
CVE-2025-2783 Google Chromium Mojo Sandbox Escape Vulnerability
CVE-2022-43939 Hitachi Vantara Pentaho BA Server Authorization Bypass Vulnerability
CVE-2024-49035 Microsoft Partner Center Improper Access Control Vulnerability
CVE-2022-43769 Hitachi Vantara Pentaho BA Server Special Element Injection Vulnerability
CVE-2024-40890 Zyxel DSL CPE OS Command Injection Vulnerability
CVE-2025-24983 Microsoft Windows Win32k Use-After-Free Vulnerability
CVE-2017-0148 Microsoft SMBv1 Server Remote Code Execution Vulnerability
CVE-2024-20953 Oracle Agile Product Lifecycle Management (PLM) Deserialization Vulnerability
InformationalInformation Disclosure - Suspicious Comments
InformationalRe-examine Cache-control Directives
CWE-1320 Improper Protection for Outbound Error Messages and Alert Signals
CWE-403 Exposure of File Descriptor to Unintended Control Sphere ('File Descriptor Leak')
CWE-1070 Serializable Data Element Containing non-Serializable Item Elements
MediumCWE-1275 Sensitive Cookie with Improper SameSite Attribute
HighCWE-640 Weak Password Recovery Mechanism for Forgotten Password