CWE-416
7,665 CVEs • Abstraction: Variant • Likelihood of Exploit: High
Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.
CVEs (7,665)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
In the Linux kernel, the following vulnerability has been resolved: mm: zswap: properly synchronize freeing resources during CPU hotunplug In zswap_compress() and zswap_decompress(), the per-CPU acomp_ctx of the curren...Show more |
in OpenHarmony v4.1.2 and prior versions allow a local attacker cause the common permission is upgraded to root and sensitive information leak through use after free. |
Use-After-Free (UAF) vulnerability in the display module
Impact: Successful exploitation of this vulnerability may cause features to perform abnormally. |
Use after free in V8 in Google Chrome prior to 133.0.6943.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) |
Use after free in Skia in Google Chrome prior to 133.0.6943.53 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) |
A race during concurrent delazification could have led to a use-after-free. This vulnerability was fixed in Firefox 135, Firefox ESR 115.20, Firefox ESR 128.7, Thunderbird 128.7, and Thunderbird 135. |
An attacker could have caused a use-after-free via the Custom Highlight API, leading to a potentially exploitable crash. This vulnerability was fixed in Firefox 135, Firefox ESR 115.20, Firefox ESR 128.7, Thunderbird 128...Show more |
An attacker could have caused a use-after-free via crafted XSLT data, leading to a potentially exploitable crash. This vulnerability was fixed in Firefox 135, Firefox ESR 115.20, Firefox ESR 128.7, Thunderbird 128.7, and...Show more |
rust-openssl is a set of OpenSSL bindings for the Rust programming language. In affected versions `ssl::select_next_proto` can return a slice pointing into the `server` argument's buffer but with a lifetime bound to the...Show more |
1Qualcomm 150Ar8035 Firmware Csr8811 FirmwareFastconnect 6700 Firmware+147 moreJun 17, 2026 Feb 3, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption may occour occur when stopping the WLAN interface after processing a WMI command from the interface. |
1Qualcomm 32Aqt1000 Firmware Fastconnect 6200 FirmwareFastconnect 6700 Firmware+29 moreJun 17, 2026 Feb 3, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while handling IOCTL call from user-space to set latency level. |
1Qualcomm 7Fastconnect 7800 Firmware Snapdragon 8 Gen 3 Mobile FirmwareWcd9390 Firmware+4 moreJun 17, 2026 Feb 3, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while invoking IOCTL calls from user-space to kernel-space to handle session errors. |
1Qualcomm 17Fastconnect 6900 Firmware Fastconnect 7800 FirmwareQcm8550 Firmware+14 moreJun 17, 2026 Feb 3, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption while registering a buffer from user-space to kernel-space using IOCTL calls. |
1Arm 25th Gen Gpu Architecture Kernel Driver Valhall Gpu Kernel DriverJun 17, 2026 Feb 3, 2025 N/A· v4 7.8 HIGH· v3 N/A· v2 Use After Free vulnerability in Arm Ltd Valhall GPU Kernel Driver, Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver allows a local non-privileged user process to make improper GPU processing operations to gain access t...Show more |
In the Linux kernel, the following vulnerability has been resolved: zram: fix potential UAF of zram table If zram_meta_alloc failed early, it frees allocated zram->table without setting it NULL. Which will potentially...Show more |
Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger use-after-free kernel exceptions. |
Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger use-after-free kernel exceptions. |
Software installed and run as a non-privileged user may conduct improper GPU system calls to trigger use-after-free kernel exceptions. |
Use after free in DevTools in Google Chrome prior to 132.0.6834.159 allowed a remote attacker to potentially exploit heap corruption via a crafted Chrome Extension. (Chromium security severity: Medium) |
In TBD of TBD, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. |