Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-690 (未检查返回值导致空指针解引用) — Vulnerability Class 20

20 vulnerabilities classified as CWE-690 (未检查返回值导致空指针解引用). AI Chinese analysis included.

CWE-690 represents a critical logic flaw where software fails to verify the return value of a function that may yield a NULL pointer upon failure. This weakness typically manifests when developers assume successful execution without validating the output, leading directly to a NULL pointer dereference if the underlying operation encounters an error. Attackers exploit this vulnerability by triggering the specific error condition that causes the function to return NULL, thereby forcing the application to access invalid memory. This results in immediate program crashes, denial of service, or potentially arbitrary code execution if the NULL dereference can be manipulated to overwrite critical control structures. To mitigate this risk, developers must rigorously implement defensive programming practices by explicitly checking every function return value against NULL before proceeding with any pointer operations.

MITRE CWE Description
The product does not check for an error after calling a function that can return with a NULL pointer if the function fails, which leads to a resultant NULL pointer dereference. While unchecked return value weaknesses are not limited to returns of NULL pointers (see the examples in CWE-252), functions often return NULL to indicate an error status. When this error condition is not checked, a NULL pointer dereference can occur.
Common Consequences (2)
AvailabilityDoS: Crash, Exit, or Restart
Integrity, Confidentiality, AvailabilityExecute Unauthorized Code or Commands, Read Memory, Modify Memory
In rare circumstances, when NULL is equivalent to the 0x0 memory address and privileged code can access it, then writing or reading memory is possible, which may lead to code execution.
Examples (2)
The code below makes a call to the getUserName() function but doesn't check the return value before dereferencing (which may cause a NullPointerException).
String username = getUserName(); if (username.equals(ADMIN_USER)) { ... }
Bad · Java
This example takes an IP address from a user, verifies that it is well formed and then looks up the hostname and copies it into a buffer.
void host_lookup(char *user_supplied_addr){ struct hostent *hp; in_addr_t *addr; char hostname[64]; in_addr_t inet_addr(const char *cp); /*routine that ensures user_supplied_addr is in the right format for conversion */ validate_addr_form(user_supplied_addr); addr = inet_addr(user_supplied_addr); hp = gethostbyaddr( addr, sizeof(struct in_addr), AF_INET); strcpy(hostname, hp->h_name); }
Bad · C
CVE IDTitleCVSSSeverityPublished
CVE-2025-33192 NVIDIA DGX Spark 安全漏洞 — DGX Spark 5.7 Medium2025-11-25
CVE-2024-42329 JS - Crash on unexpected HTTP server response — Zabbix 3.3 Low2024-11-27
CVE-2024-42328 JS - Crash on empty HTTP server response — Zabbix 3.3 Low2024-11-27
CVE-2024-31196 NULL Pointer Dereference in libfluid_msg library — libfluid 5.3 Medium2024-09-18
CVE-2024-31185 NULL Pointer Dereference in libfluid_msg library — libfluid 5.3 Medium2024-09-18
CVE-2024-31182 NULL Pointer Dereference in libfluid_msg library — libfluid 5.3 Medium2024-09-18
CVE-2024-31175 NULL Pointer Dereference in libfluid_msg library — libfluid 5.3 Medium2024-09-18
CVE-2024-31167 NULL Pointer Dereference in libfluid_msg library — libfluid 5.3 Medium2024-09-18
CVE-2024-31165 NULL Pointer Dereference in libfluid_msg library — libfluid 5.3 Medium2024-09-18
CVE-2024-31164 NULL Pointer Dereference in libfluid_msg library — libfluid 5.3 Medium2024-09-18
CVE-2024-23916 NULL Pointer Dereference in libfluid_msg library — libfluid 5.3 Medium2024-09-18
CVE-2024-23915 NULL Pointer Dereference in libfluid_msg library — libfluid 5.3 Medium2024-09-18
CVE-2020-36646 MediaArea ZenLib Ztring.cpp Date_From_Seconds_1970_Local unknown vulnerability — ZenLib 3.5 Low2023-01-07
CVE-2022-41957 muhammara vulnerable to Unchecked Return Value to NULL Pointer Dereference — MuhammaraJS 7.5 High2022-11-28
CVE-2022-39381 Unchecked Return Value to NULL Pointer Dereference in PDFDocumentHandler.cpp — MuhammaraJS 7.5 High2022-11-02
CVE-2022-22233 Junos OS and Junos OS Evolved: In an SR to LDP interworking scenario, with SRMS, when a specific low privileged command is issued on an ABR rpd will crash — Junos OS 5.5 Medium2022-10-18
CVE-2022-22231 SRX Series: If UTM Enhanced Content Filtering and AntiVirus are enabled, and specific traffic is processed the PFE will crash — Junos OS 7.5 High2022-10-18
CVE-2022-20682 Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family CAPWAP Denial of Service Vulnerability — Cisco IOS XE Software 8.6 High2022-04-15
CVE-2020-13582 Micrium uC-HTTP 代码问题漏洞 — Micrium 7.5 -2021-01-26
CVE-2020-6095 GStreamer/gst-rtsp-server 代码问题漏洞 — GStreamer 7.5 -2020-03-27

Vulnerabilities classified as CWE-690 (未检查返回值导致空指针解引用) represent 20 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.