The product incorrectly checks a return value from a function, which prevents it from detecting errors or exceptional conditions.

What CVEs are caused by CWE-253?

15 recorded CVEs are attributed to CWE-253, including CVE-2023-52040, CVE-2023-49286, CVE-2026-35091.

How do you prevent CWE-253?

Use a language or compiler that uses exceptions and requires the catching of those exceptions.

How is CWE-253 detected?

Automated Static Analysis: Automated static analysis, commonly referred to as Static Application Security Testing (SAST), can find some instances of this weakness by analyzing source code (or binary/compiled code) without having to execute it. Typically, this is done by building a model of data flow and control flow, then searching for potentially-vulnerable patterns that connect "sources" (origins of input) with "sinks" (destinations where the data interacts with external components, a lower layer such as the OS, etc.)

What are the consequences of CWE-253?

Exploiting CWE-253 can lead to: Unexpected State, DoS: Crash, Exit, or Restart.

Is CWE-253 actively exploited?

15 recorded CVEs are caused by CWE-253; none are currently in CISA's KEV catalog of actively exploited flaws.

CWE-253: Incorrect Check of Function Return Value

CVE-2026-0648

Code examples

Illustrative examples from MITRE showing how the weakness appears in code.

This code attempts to allocate memory for 4 integers and checks if the allocation succeeds.

Vulnerable example

tmp = malloc(sizeof(int) * 4);

The code assumes that only a negative return value would indicate an error, but malloc() may return a null pointer when there is an error. The value of tmp could then be equal to 0, and the error would be missed.

CWE-253: Incorrect Check of Function Return Value

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

How to prevent it

How to detect it

Automated Static Analysis

Code examples

Illustrative examples

Terminology & mappings

Mapped taxonomies

Frequently asked questions

What is CWE-253?

What CVEs are caused by CWE-253?

How do you prevent CWE-253?

How is CWE-253 detected?

What are the consequences of CWE-253?

Is CWE-253 actively exploited?

References

Stay ahead of CWE-253

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

How to prevent it

How to detect it

Automated Static Analysis

Code examples

Illustrative examples

Related weaknesses

Parent

Terminology & mappings

Mapped taxonomies

Frequently asked questions

What is CWE-253?

What CVEs are caused by CWE-253?

How do you prevent CWE-253?

How is CWE-253 detected?

What are the consequences of CWE-253?

Is CWE-253 actively exploited?

References

Stay ahead of CWE-253