CWE-466 – Return of Pointer Value Outside of Expected Range

Read Time:15 Second

Description

A function can return a pointer to memory that is outside of the buffer that the pointer is expected to reference.

Modes of Introduction:

– Architecture and Design

 

 

Related Weaknesses

CWE-119
CWE-20

 

Consequences

Confidentiality, Integrity: Read Memory, Modify Memory

 

Potential Mitigations

CVE References