Base weakness

Incomplete

CWE-825: Expired Pointer Dereference

Also known as: Dangling pointer

The product dereferences a pointer that contains a location for memory that was previously valid, but is no longer valid.

Recorded CVEs

With this primary weakness

KEVs

In the CISA KEV catalog

Not rated

Likelihood of exploit

Per MITRE

Base

Abstraction

MITRE classification

Overview

When a product releases memory, but it maintains a pointer to that memory, then the memory might be re-allocated at a later time. If the original pointer is accessed to read or write data, then this could cause the product to read or modify data that is in use by a different function or process. Depending on how the newly-allocated memory is used, this could lead to a denial of service, information exposure, or code execution.

CWE-825: Expired Pointer Dereference

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

Applies to

How to prevent it

How to detect it

Automated Static Analysis

Automated Dynamic Analysis

Code examples

Illustrative examples

Terminology & mappings

Alternate terms

Frequently asked questions

What is CWE-825?

What CVEs are caused by CWE-825?

How do you prevent CWE-825?

How is CWE-825 detected?

What are the consequences of CWE-825?

Is CWE-825 actively exploited?

References

Stay ahead of CWE-825

Overview

Real-world CVEs

Common consequences

How it happens

When it is introduced

Applies to

How to prevent it

How to detect it

Automated Static Analysis

Automated Dynamic Analysis

Code examples

Illustrative examples

Related weaknesses

Parent

Child

Can precede

Related

Terminology & mappings

Alternate terms

Frequently asked questions

What is CWE-825?

What CVEs are caused by CWE-825?

How do you prevent CWE-825?

How is CWE-825 detected?

What are the consequences of CWE-825?

Is CWE-825 actively exploited?

References

Stay ahead of CWE-825