Cyber Resilience

CWE · MITRE source

CWE-395Use of NullPointerException Catch to Detect NULL Pointer Dereference

Abstraction: Base · CVEs in our corpus: 17

Catching NullPointerException should not be used as an alternative to programmatic checks to prevent dereferencing a null pointer.

Programmers typically catch NullPointerException under three circumstances: Of these three circumstances, only the last is acceptable.

Last updated: 04 July 2026 00:28 UTC

NIST 800-53 r5 controls that address this weakness (0)AI

Control Title Family Why it addresses this CWE
No NIST controls proposed yet.

Top CVEs of this weakness type, ranked by Risk Priority

CVE Risk CVSS EPSS Published
CVE-2025-274667.09.80.00432025-09-11
CVE-2025-581427.09.80.00432025-09-11
CVE-2022-28325.57.50.01452022-08-16
CVE-2025-15514 UPD5.57.50.00702026-01-12
CVE-2022-295083.56.30.00172023-05-10
CVE-2022-428793.56.10.00212023-11-14
CVE-2023-250713.55.60.00182023-11-14
CVE-2024-27658 UPD3.56.50.00642024-02-29
CVE-2024-27659 UPD3.56.50.00642024-02-29
CVE-2024-27661 UPD3.56.50.00432024-02-29
CVE-2024-27662 UPD3.56.50.00432024-02-29
CVE-2023-410823.54.40.00222024-05-16
CVE-2023-239043.56.10.00142024-09-16
CVE-2024-362753.56.10.00212024-11-13
CVE-2022-428781.52.80.00192023-05-10
CVE-2023-487271.53.30.00242024-05-16
CVE-2024-280301.52.20.00182024-11-13