Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

CVEs (7,571)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-38150 1Microsoft 8Windows 10 21h2 Windows 10 22h2Windows 11 21h2+5 more Jun 17, 2026 Aug 13, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows DWM Core Library Elevation of Privilege Vulnerability
CVE-2024-38147 1Microsoft 8Windows 10 21h2 Windows 10 22h2Windows 11 21h2+5 more Jun 17, 2026 Aug 13, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Microsoft DWM Core Library Elevation of Privilege Vulnerability
CVE-2024-38141 1Microsoft 14Windows 10 1507 Windows 10 1607Windows 10 1809+11 more Jun 17, 2026 Aug 13, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
CVE-2024-38140 1Microsoft 15Windows 10 1507 Windows 10 1607Windows 10 1809+12 more Jun 17, 2026 Aug 13, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability
CVE-2024-38138 1Microsoft 4Windows Server 2016 Windows Server 2019Windows Server 2022+1 more Jun 17, 2026 Aug 13, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 Windows Deployment Services Remote Code Execution Vulnerability
CVE-2024-38137 1Microsoft 8Windows 10 21h2 Windows 10 22h2Windows 11 21h2+5 more Jun 17, 2026 Aug 13, 2024 N/A· v4 7.0 HIGH· v3 N/A· v2 Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability
CVE-2024-38136 1Microsoft 10Windows 10 1809 Windows 10 21h2Windows 10 22h2+7 more Jun 17, 2026 Aug 13, 2024 N/A· v4 7.0 HIGH· v3 N/A· v2 Windows Resource Manager PSM Service Extension Elevation of Privilege Vulnerability
CVE-2024-38107 1Microsoft 14Windows 10 1507 Windows 10 1607Windows 10 1809+11 more Jun 17, 2026 Aug 13, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Power Dependency Coordinator Elevation of Privilege Vulnerability
CVE-2024-42232 1Linux 1Linux Kernel Jun 17, 2026 Aug 7, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 In the Linux kernel, the following vulnerability has been resolved: libceph: fix race between delayed_work() and ceph_monc_stop() The way the delayed work is handled in ceph_monc_stop() is prone to races with mon_fault...Show more In the Linux kernel, the following vulnerability has been resolved: libceph: fix race between delayed_work() and ceph_monc_stop() The way the delayed work is handled in ceph_monc_stop() is prone to races with mon_fault() and possibly also finish_hunting(). Both of these can requeue the delayed work which wouldn't be canceled by any of the following code in case that happens after cancel_delayed_work_sync() runs -- __close_session() doesn't mess with the delayed work in order to avoid interfering with the hunting interval logic. This part was missed in commit b5d91704f53e ("libceph: behave in mon_fault() if cur_mon < 0") and use-after-free can still ensue on monc and objects that hang off of it, with monc->auth and monc->monmap being particularly susceptible to quickly being reused. To fix this: - clear monc->cur_mon and monc->hunting as part of closing the session in ceph_monc_stop() - bail from delayed_work() if monc->cur_mon is cleared, similar to how it's done in mon_fault() and finish_hunting() (based on monc->hunting) - call cancel_delayed_work_sync() after the session is closedShow less
CVE-2024-7536 1Google 1Chrome Jun 17, 2026 Aug 6, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Use after free in WebAudio in Google Chrome prior to 127.0.6533.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-7533 1Google 1Chrome Jun 17, 2026 Aug 6, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Use after free in Sharing in Google Chrome on iOS prior to 127.0.6533.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-7000 1Google 1Chrome Jun 17, 2026 Aug 6, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Use after free in CSS in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium sec...Show more Use after free in CSS in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)Show less
CVE-2024-6998 1Google 1Chrome Jun 17, 2026 Aug 6, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Use after free in User Education in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (C...Show more Use after free in User Education in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)Show less
CVE-2024-6997 1Google 1Chrome Jun 17, 2026 Aug 6, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Use after free in Tabs in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium se...Show more Use after free in Tabs in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)Show less
CVE-2024-6991 1Google 1Chrome Jun 17, 2026 Aug 6, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Use after free in Dawn in Google Chrome prior to 127.0.6533.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6989 1Google 1Chrome Jun 17, 2026 Aug 6, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Use after free in Loader in Google Chrome prior to 127.0.6533.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-6988 1Google 1Chrome Jun 17, 2026 Aug 6, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Use after free in Downloads in Google Chrome on iOS prior to 127.0.6533.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2024-7530 1Mozilla 1Firefox Jun 17, 2026 Aug 6, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Incorrect garbage collection interaction could have led to a use-after-free. This vulnerability affects Firefox < 129.
CVE-2024-7528 1Mozilla 3Firefox Firefox EsrThunderbird Jun 17, 2026 Aug 6, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Incorrect garbage collection interaction in IndexedDB could have led to a use-after-free. This vulnerability affects Firefox < 129, Firefox ESR < 128.1, and Thunderbird < 128.1.
CVE-2024-7527 1Mozilla 3Firefox Firefox EsrThunderbird Jun 17, 2026 Aug 6, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Unexpected marking work at the start of sweeping could have led to a use-after-free. This vulnerability affects Firefox < 129, Firefox ESR < 115.14, Firefox ESR < 128.1, Thunderbird < 128.1, and Thunderbird < 115.14.

Previous 1...134135136...379 Next