CWE-416
7,674 CVEs • Abstraction: Variant • Likelihood of Exploit: High
Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.
CVEs (7,674)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Microsoft 4365 Apps OfficeOffice Long Term Servicing Channel+1 moreJun 17, 2026 Sep 9, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally. |
1Microsoft 4365 Apps OfficeOffice Long Term Servicing Channel+1 moreJun 17, 2026 Sep 9, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Free of memory not on the heap in Microsoft Office allows an unauthorized attacker to execute code locally. |
1Microsoft 5365 Apps ExcelOffice+2 moreJun 17, 2026 Sep 9, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. |
1Microsoft 5365 Apps ExcelOffice+2 moreJun 17, 2026 Sep 9, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. |
1Microsoft 5365 Apps ExcelOffice+2 moreJun 17, 2026 Sep 9, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally. |
1Microsoft 5365 Apps ExcelOffice+2 moreJun 17, 2026 Sep 9, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. |
1Microsoft 13Windows 10 1507 Windows 10 1607Windows 10 1809+10 moreJun 17, 2026 Sep 9, 2025 N/A· v4 7.0 HIGH· v3 N/A· v2 Use after free in Microsoft Virtual Hard Drive allows an authorized attacker to elevate privileges locally. |
1Microsoft 13Windows 10 1507 Windows 10 1607Windows 10 1809+10 moreJun 17, 2026 Sep 9, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free in Windows UI XAML Phone DatePickerFlyout allows an authorized attacker to elevate privileges locally. |
1Microsoft 2Windows 11 24h2 Windows Server 2025Jun 17, 2026 Sep 9, 2025 N/A· v4 7.0 HIGH· v3 N/A· v2 Concurrent execution using shared resource with improper synchronization ('race condition') in Capability Access Management Service (camsvc) allows an authorized attacker to elevate privileges locally. |
1Microsoft 3Windows 11 24h2 Windows Server 2022 23h2Windows Server 2025Jun 17, 2026 Sep 9, 2025 N/A· v4 7.0 HIGH· v3 N/A· v2 Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally. |
1Microsoft 7Windows 10 21h2 Windows 10 22h2Windows 11 22h2+4 moreJun 17, 2026 Sep 9, 2025 N/A· v4 7.4 HIGH· v3 N/A· v2 Use after free in Windows Management Services allows an unauthorized attacker to elevate privileges locally. |
1Microsoft 12Windows 10 1607 Windows 10 1809Windows 10 21h2+9 moreJun 17, 2026 Sep 9, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free in Windows Connected Devices Platform Service allows an authorized attacker to elevate privileges locally. |
1Microsoft 12Windows 10 1507 Windows 10 1607Windows 10 1809+9 moreJun 17, 2026 Sep 9, 2025 N/A· v4 4.8 MEDIUM· v3 N/A· v2 Use after free in Windows SMBv3 Client allows an authorized attacker to execute code over a network. |
1Microsoft 10Windows 10 1809 Windows 10 21h2Windows 10 22h2+7 moreJun 17, 2026 Sep 9, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Concurrent execution using shared resource with improper synchronization ('race condition') in Windows Hyper-V allows an authorized attacker to elevate privileges locally. |
1Microsoft 10Windows 10 1809 Windows 10 21h2Windows 10 22h2+7 moreJun 17, 2026 Sep 9, 2025 N/A· v4 7.0 HIGH· v3 N/A· v2 Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Graphics Component allows an authorized attacker to elevate privileges locally. |
1Microsoft 8Windows 10 21h2 Windows 10 22h2Windows 11 22h2+5 moreJun 17, 2026 Sep 9, 2025 N/A· v4 7.0 HIGH· v3 N/A· v2 Use after free in Windows Bluetooth Service allows an authorized attacker to elevate privileges locally. |
A vulnerability ( CVE-2024-38229 https://www.cve.org/CVERecord ) exists in EOL ASP.NET when closing an HTTP/3 stream while application code is writing to the response body, a race condition may lead to use-after-free, re...Show more |
1Arm 35th Gen Gpu Architecture Kernel Driver Bifrost Gpu Kernel DriverValhall Gpu Kernel DriverJun 17, 2026 Sep 8, 2025 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user process to perform valid GPU mem...Show more |
In the Linux kernel, the following vulnerability has been resolved: crypto: qat - flush misc workqueue during device shutdown Repeated loading and unloading of a device specific QAT driver, for example qat_4xxx, in a t...Show more |
In the Linux kernel, the following vulnerability has been resolved: open_tree_attr: do not allow id-mapping changes without OPEN_TREE_CLONE As described in commit 7a54947e727b ('Merge patch series "fs: allow changing i...Show more |