目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1000

100.0%
请我们喝杯咖啡

CWE-476 空指针解引用 类漏洞列表 1133

CWE-476 空指针解引用 类弱点 1133 条 CVE 漏洞汇总,含 AI 中文分析。

CWE-476空指针解引用属于内存安全类漏洞,指程序在指针为NULL时仍尝试访问其指向的内存。攻击者通常通过构造特定输入触发空指针,导致程序崩溃引发拒绝服务,或在特定架构下利用该异常改变执行流以执行恶意代码。开发者应避免在解引用前未验证指针有效性,通过添加空值检查、使用静态分析工具检测潜在风险,并确保代码逻辑能妥善处理无效指针情况,从而从根本上消除隐患。

MITRE CWE 官方描述
CWE:CWE-476 NULL Pointer Dereference(空指针解引用) 英文:The product dereferences a pointer that it expects to be valid but is NULL. 译文:产品解引用了一个它预期为有效但实际上为 NULL 的指针。
常见影响 (2)
AvailabilityDoS: Crash, Exit, or Restart
NULL pointer dereferences usually result in the failure of the process unless exception handling (on some platforms) is available and implemented. Even when exception handling is being used, it can still be very difficult to return the software to a safe state of operation.
Integrity, ConfidentialityExecute Unauthorized Code or Commands, Read Memory, Modify Memory
In rare circumstances, when NULL is equivalent to the 0x0 memory address and privileged code can access it, then writing or reading memory is possible, which may lead to code execution.
缓解措施 (5)
ImplementationFor any pointers that could have been modified or provided from a function that can return NULL, check the pointer for NULL before use. When working with a multithreaded or otherwise asynchronous environment, ensure that proper locking APIs are used to lock before the check, and unlock when it has finished [REF-1484].
RequirementsSelect a programming language that is not susceptible to these issues.
ImplementationCheck the results of all functions that return a value and verify that the value is non-null before acting upon it.
Effectiveness: Moderate
Architecture and DesignIdentify all variables and data stores that receive information from external sources, and apply input validation to make sure that they are only initialized to expected values.
ImplementationExplicitly initialize all variables and other data stores, either during declaration or just before the first usage.
代码示例 (2)
This example takes an IP address from a user, verifies that it is well formed and then looks up the hostname and copies it into a buffer.
void host_lookup(char *user_supplied_addr){ struct hostent *hp; in_addr_t *addr; char hostname[64]; in_addr_t inet_addr(const char *cp); /*routine that ensures user_supplied_addr is in the right format for conversion */ validate_addr_form(user_supplied_addr); addr = inet_addr(user_supplied_addr); hp = gethostbyaddr( addr, sizeof(struct in_addr), AF_INET); strcpy(hostname, hp->h_name); }
Bad · C
In the following code, the programmer assumes that the system always has a property named "cmd" defined. If an attacker can control the program's environment so that "cmd" is not defined, the program throws a NULL pointer exception when it attempts to call the trim() method.
String cmd = System.getProperty("cmd"); cmd = cmd.trim();
Bad · Java
CVE ID标题CVSS风险等级Published
CVE-2026-41684 Incus YAML恢复过程空指针引用漏洞 — incus 6.5 Medium2026-05-07
CVE-2026-41647 Incus S3导入桶空指针解引用漏洞 — incus 6.5 Medium2026-05-07
CVE-2026-42285 GoBGP 因畸形BGP更新消息导致空指针解引用崩溃漏洞 — gobgp 7.5 High2026-05-07
CVE-2026-41642 GoBGP 远程拒绝服务漏洞 — gobgp 7.5 High2026-05-07
CVE-2026-8063 聚合视图空搜索管道导致空指针解引用漏洞 — MongoDB Server 6.5 Medium2026-05-07
CVE-2026-44602 Tor<=0.4.9.6 CERT无序处理空指针解引用 — Tor 3.7 Low2026-05-07
CVE-2026-40197 Incus 自定义卷导入空指针解引用导致拒绝服务漏洞 — incus--2026-05-06
CVE-2026-40195 Incus存储桶导入空指针解引用导致拒绝服务漏洞 — incus--2026-05-06
CVE-2026-29169 Apache HTTP Server mod_dav_lock 间接锁定崩溃漏洞 — Apache HTTP Server 7.5AIHighAI2026-05-04
CVE-2026-33007 Apache HTTP Server mod_authn_socache 崩溃漏洞 — Apache HTTP Server 7.5AIHighAI2026-05-04
CVE-2026-43864 Mutt 2.3.2前空指针解引用漏洞 — mutt 2.5 Low2026-05-04
CVE-2026-7701 Telegram Desktop Bot API url_auth_box.cpp 空指针解引用漏洞 — Desktop 4.3 Medium2026-05-03
CVE-2026-6525 Wireshark空指针解引用漏洞 — Wireshark 5.5 Medium2026-05-02
CVE-2026-42800 ims_client sip空值后解引用漏洞 — Lapwing_Linux 7.4 High2026-04-30
CVE-2026-6526 Wireshark 空指针解引用漏洞 — Wireshark 5.5 Medium2026-04-30
CVE-2026-7376 Wireshark空指针解引用漏洞 — Wireshark 5.5 Medium2026-04-30
CVE-2026-40355 MIT Kerberos 代码问题漏洞 — Kerberos 5 5.9 Medium2026-04-28
CVE-2026-6845 Red Hat Enterprise Linux 代码问题漏洞 — Red Hat Enterprise Linux 10 5.0 Medium2026-04-22
CVE-2026-28224 Firebird 安全漏洞 — firebird 8.2 High2026-04-17
CVE-2026-28212 Firebird 安全漏洞 — firebird 7.5 High2026-04-17
CVE-2026-32216 Microsoft Windows Redirected Drive Buffering 代码问题漏洞 — Windows 11 version 26H1 5.5 Medium2026-04-14
CVE-2026-32071 Microsoft Windows Local Security Authority Subsystem Service 代码问题漏洞 — Windows 10 Version 1607 7.5 High2026-04-14
CVE-2026-32894 Chamilo LMS 安全漏洞 — chamilo-lms 7.1 High2026-04-10
CVE-2026-1584 GnuTLS 安全漏洞 — Red Hat Hardened Images 7.5 High2026-04-09
CVE-2026-28390 OpenSSL 安全漏洞 — OpenSSL 7.5AIHighAI2026-04-07
CVE-2026-28389 OpenSSL 安全漏洞 — OpenSSL 7.5AIHighAI2026-04-07
CVE-2026-28388 OpenSSL 安全漏洞 — OpenSSL 7.5AIHighAI2026-04-07
CVE-2026-34781 Electron 代码问题漏洞 — electron 2.8 Low2026-04-07
CVE-2026-5745 libarchive 代码问题漏洞 — Red Hat Hardened Images 5.5 Medium2026-04-07
CVE-2026-5590 Zephyr 安全漏洞 — Zephyr 6.4 Medium2026-04-05

CWE-476(空指针解引用) 是常见的弱点类别,本平台收录该类弱点关联的 1133 条 CVE 漏洞。