Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

CVEs (7,551)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-23310 2Fedoraproject Libbiosig Project 2Fedora Libbiosig Jun 17, 2026 Feb 20, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A use-after-free vulnerability exists in the sopen_FAMOS_read functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111). A specially crafted .famos file can lead to arbitrary code execution. An att...Show more A use-after-free vulnerability exists in the sopen_FAMOS_read functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111). A specially crafted .famos file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.Show less
CVE-2024-25199 2Opennav Openrobotics 2Nav2 Robot Operating System Jun 17, 2026 Feb 20, 2024 N/A· v4 8.1 HIGH· v3 N/A· v2 Inappropriate pointer order of map_sub_ and map_free(map_) (amcl_node.cpp) in Open Robotics Robotic Operating Sytstem 2 (ROS2) and Nav2 humble versions leads to a use-after-free.
CVE-2024-25198 2Opennav Openrobotics 2Nav2 Robot Operating System Jun 17, 2026 Feb 20, 2024 N/A· v4 9.1 CRITICAL· v3 N/A· v2 Inappropriate pointer order of laser_scan_filter_.reset() and tf_listener_.reset() (amcl_node.cpp) in Open Robotics Robotic Operating Sytstem 2 (ROS2) and Nav2 humble versions leads to a use-after-free.
CVE-2024-24794 1Nih 1Libdicom Jun 17, 2026 Feb 20, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A use-after-free vulnerability exists in the DICOM Element Parsing as implemented in Imaging Data Commons libdicom 1.0.5. A specially crafted DICOM file can cause premature freeing of memory that is used later. To trigge...Show more A use-after-free vulnerability exists in the DICOM Element Parsing as implemented in Imaging Data Commons libdicom 1.0.5. A specially crafted DICOM file can cause premature freeing of memory that is used later. To trigger this vulnerability, an attacker would need to induce the vulnerable application to process a malicious DICOM image.The Use-After-Free happens in the `parse_meta_sequence_end()` parsing the Sequence Value Represenations.Show less
CVE-2024-24793 1Nih 1Libdicom Jun 17, 2026 Feb 20, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A use-after-free vulnerability exists in the DICOM Element Parsing as implemented in Imaging Data Commons libdicom 1.0.5. A specially crafted DICOM file can cause premature freeing of memory that is used later. To trigge...Show more A use-after-free vulnerability exists in the DICOM Element Parsing as implemented in Imaging Data Commons libdicom 1.0.5. A specially crafted DICOM file can cause premature freeing of memory that is used later. To trigger this vulnerability, an attacker would need to induce the vulnerable application to process a malicious DICOM image.The Use-After-Free happens in the `parse_meta_element_create()` parsing the elements in the File Meta Information header.Show less
CVE-2023-21165 1Google 1Android Jun 17, 2026 Feb 16, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 In DevmemIntUnmapPMR of devicemem_server.c, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege in the kernel with no additional execution privileges nee...Show more In DevmemIntUnmapPMR of devicemem_server.c, there is a possible arbitrary code execution due to a use after free. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation.Show less
CVE-2023-40115 1Google 1Android Jun 17, 2026 Feb 15, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 In readLogs of StatsService.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not nee...Show more In readLogs of StatsService.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Show less
CVE-2023-40114 1Google 1Android Jun 17, 2026 Feb 15, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 In multiple functions of MtpFfsHandle.cpp , there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interacti...Show more In multiple functions of MtpFfsHandle.cpp , there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Show less
CVE-2023-40107 1Google 1Android Jun 17, 2026 Feb 15, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 In ARTPWriter of ARTPWriter.cpp, there is a possible use after free due to uninitialized data. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not need...Show more In ARTPWriter of ARTPWriter.cpp, there is a possible use after free due to uninitialized data. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Show less
CVE-2023-40100 1Google 1Android Jun 17, 2026 Feb 15, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 In discovery_thread of Dns64Configuration.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interact...Show more In discovery_thread of Dns64Configuration.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Show less
CVE-2024-20734 1Adobe 4Acrobat Acrobat DcAcrobat Reader+1 more Jun 17, 2026 Feb 15, 2024 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Acrobat Reader versions 20.005.30539, 23.008.20470 and earlier are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mit...Show more Acrobat Reader versions 20.005.30539, 23.008.20470 and earlier are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2024-20731 1Adobe 4Acrobat Acrobat DcAcrobat Reader+1 more Jun 17, 2026 Feb 15, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Acrobat Reader versions 20.005.30539, 23.008.20470 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue r...Show more Acrobat Reader versions 20.005.30539, 23.008.20470 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2024-20729 1Adobe 4Acrobat Acrobat DcAcrobat Reader+1 more Jun 17, 2026 Feb 15, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Acrobat Reader versions 20.005.30539, 23.008.20470 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue r...Show more Acrobat Reader versions 20.005.30539, 23.008.20470 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2022-23090 1Freebsd 1Freebsd Jun 17, 2026 Feb 15, 2024 N/A· v4 7.7 HIGH· v3 N/A· v2 The aio_aqueue function, used by the lio_listio system call, fails to release a reference to a credential in an error case. An attacker may cause the reference count to overflow, leading to a use after free (UAF).
CVE-2024-24990 1F5 2Nginx Open Source Nginx Plus Jun 17, 2026 Feb 14, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed requests can cause NGINX worker processes to terminate. Note: The HTTP/3 QUIC module is not enabled by default and is considered exp...Show more When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed requests can cause NGINX worker processes to terminate. Note: The HTTP/3 QUIC module is not enabled by default and is considered experimental. For more information, refer to Support for QUIC and HTTP/3 https://nginx.org/en/docs/quic.html . Note: Software versions which have reached End of Technical Support (EoTS) are not evaluatedShow less
CVE-2024-21384 1Microsoft 2365 Apps Office Long Term Servicing Channel Jun 17, 2026 Feb 13, 2024 N/A· v4 7.8 HIGH· v3 N/A· v2 Microsoft Office OneNote Remote Code Execution Vulnerability
CVE-2024-21375 1Microsoft 14Windows 10 1507 Windows 10 1607Windows 10 1809+11 more Jun 17, 2026 Feb 13, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
CVE-2024-21339 1Microsoft 9Windows 10 1809 Windows 10 21h2Windows 10 22h2+6 more Jun 17, 2026 Feb 13, 2024 N/A· v4 6.4 MEDIUM· v3 N/A· v2 Windows USB Generic Parent Driver Remote Code Execution Vulnerability
CVE-2024-1454 3Fedoraproject Opensc ProjectRedhat 3Enterprise Linux FedoraOpensc Jun 17, 2026 Feb 12, 2024 N/A· v4 3.4 LOW· v3 N/A· v2 The use-after-free vulnerability was found in the AuthentIC driver in OpenSC packages, occuring in the card enrolment process using pkcs15-init when a user or administrator enrols or modifies cards. An attacker must have...Show more The use-after-free vulnerability was found in the AuthentIC driver in OpenSC packages, occuring in the card enrolment process using pkcs15-init when a user or administrator enrols or modifies cards. An attacker must have physical access to the computer system and requires a crafted USB device or smart card to present the system with specially crafted responses to the APDUs, which are considered high complexity and low severity. This manipulation can allow for compromised card management operations during enrolment.Show less
CVE-2024-25110 1Microsoft 1Azure Uamqp Jun 17, 2026 Feb 12, 2024 N/A· v4 8.1 HIGH· v3 N/A· v2 The UAMQP is a general purpose C library for AMQP 1.0. During a call to open_get_offered_capabilities, a memory allocation may fail causing a use-after-free issue and if a client called it during connection communication...Show more The UAMQP is a general purpose C library for AMQP 1.0. During a call to open_get_offered_capabilities, a memory allocation may fail causing a use-after-free issue and if a client called it during connection communication it may cause a remote code execution. Users are advised to update the submodule with commit `30865c9c`. There are no known workarounds for this vulnerability.Show less

Previous 1...169170171...378 Next