BaseIncomplete
CWE-823Use of Out-of-range Pointer Offset
Category: memory
Description
The product performs pointer arithmetic on a valid pointer, but it uses an offset that can point outside of the intended range of valid memory locations for the resulting pointer.
Common consequences· 3
- Confidentiality — Read MemoryIf the untrusted pointer is used in a read operation, an attacker might be able to read sensitive portions of memory.
- Availability — DoS: Crash, Exit, or RestartIf the untrusted pointer references a memory location that is not accessible to the program, or points to a location that is "malformed" or larger than expected by a read or write operation, the application may terminate unexpectedly.
- Integrity / Confidentiality / Availability — Execute Unauthorized Code or Commands, Modify MemoryIf the untrusted pointer is used in a function call, or points to unexpected data in a write operation, then code execution may be possible.
Related CAPEC attack patterns· 1
References
Exploits (incoming)1
| Type | Target | Confidence | Tier |
|---|---|---|---|
| AttackPattern | Pointer Manipulationcapec-129 | 100% | live |
(incoming)5
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Vulnerability | CVE-2025-0467cve-2025-0467 | 0% | live |
| Vulnerability | CVE-2025-27059cve-2025-27059 | 0% | live |
| Vulnerability | CVE-2026-21732cve-2026-21732 | 0% | live |
| KEVEntry | Microsoft Windows MSHTML Platform Remote Code Execution Vulnerabilitykev-cve-2021-33742 | 0% | live |
| KEVEntry | Qualcomm Multiple Chipsets Use of Out-of-Range Pointer Offset Vulnerabilitykev-cve-2023-33106 | 0% | live |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.