CWE-416
7,674 CVEs • Abstraction: Variant • Likelihood of Exploit: High
Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.
CVEs (7,674)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Microsoft 6365 Apps OfficeOffice Long Term Servicing Channel+3 moreJun 17, 2026 Jun 10, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. |
1Microsoft 5365 Apps ExcelOffice+2 moreJun 17, 2026 Jun 10, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. |
1Microsoft 4365 Apps 365 CopilotOffice+1 moreJun 17, 2026 Jun 10, 2025 N/A· v4 8.4 HIGH· v3 N/A· v2 Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. |
InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations...Show more |
InDesign Desktop versions ID20.2, ID19.5.3 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires...Show more |
1Microsoft 6Windows Server 2012 Windows Server 2016Windows Server 2019+3 moreJun 17, 2026 Jun 10, 2025 N/A· v4 8.1 HIGH· v3 N/A· v2 Use after free in Windows KDC Proxy Service (KPSSVC) allows an unauthorized attacker to execute code over a network. |
1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 moreJun 17, 2026 Jun 10, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally. |
1Microsoft 7Windows Server 2008 Windows Server 2012Windows Server 2016+4 moreJun 17, 2026 Jun 10, 2025 N/A· v4 8.1 HIGH· v3 N/A· v2 Use after free in Windows Remote Desktop Services allows an unauthorized attacker to execute code over a network. |
2Debian Linux2Debian Linux Linux KernelJun 17, 2026 Jun 6, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 In the Linux kernel, the following vulnerability has been resolved: sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() When enqueuing the first packet to an HFSC class, hfsc_enqueue() calls the child q...Show more |
A vulnerability, which was classified as problematic, has been found in Radare2 5.9.9. Affected by this issue is the function r_cons_flush in the library /libr/cons/cons.c of the component radiff2. The manipulation of th...Show more |
1Samsung 3Exynos 1480 Firmware Exynos 2200 FirmwareExynos 2400 FirmwareJun 17, 2026 Jun 4, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 An issue was discovered in Samsung Mobile Processor Exynos 2200, 1480, and 2400. A Use-After-Free in the mobile processor leads to privilege escalation. |
An issue was discovered in Samsung Mobile Processor Exynos 1380. A Use-After-Free in the mobile processor leads to privilege escalation. |
1Samsung 7Exynos 1080 Firmware Exynos 1280 FirmwareExynos 1380 Firmware+4 moreJun 17, 2026 Jun 3, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 An issue was discovered in Samsung Mobile Processor Exynos 980, 990, 1080, 2100, 1280, 2200, 1380. A Use-After-Free in the mobile processor leads to privilege escalation. |
1Qualcomm 44Ar8031 Firmware Csra6620 FirmwareCsra6640 Firmware+41 moreJun 17, 2026 Jun 3, 2025 N/A· v4 7.5 HIGH· v3 N/A· v2 Memory corruption while rendering graphics using Adreno GPU drivers in Chrome. |
1Qualcomm 21Fastconnect 6700 Firmware Fastconnect 6900 FirmwareFastconnect 7800 Firmware+18 moreJun 17, 2026 Jun 3, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 memory corruption while processing IOCTL commands, when the buffer in write loopback mode is accessed after being freed. |
1Qualcomm 90Aqt1000 Firmware Fastconnect 6200 FirmwareFastconnect 6700 Firmware+87 moreJun 17, 2026 Jun 3, 2025 N/A· v4 6.6 MEDIUM· v3 N/A· v2 Memory corruption while processing IOCTL command to handle buffers associated with a session. |
Use after free in Blink in Google Chrome prior to 137.0.7151.68 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium) |
An issue was discovered in Samsung Mobile Processor Exynos 2200. A Use-After-Free in the mobile processor leads to privilege escalation. |
A maliciously crafted RFA file, when linked or imported into Autodesk Revit, can force a Use-After-Free vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute a...Show more |
1Arm 35th Gen Gpu Architecture Kernel Driver Bifrost Gpu Kernel DriverValhall Gpu Kernel DriverJun 17, 2026 Jun 2, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Use After Free vulnerability in Arm Ltd Bifrost GPU Kernel Driver, Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user process to perform valid GPU mem...Show more |