Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

CVEs (7,549)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-20519 1Amd 2Genoapi Firmware Milanpi Firmware Jun 17, 2026 Nov 14, 2023 N/A· v4 3.3 LOW· v3 N/A· v2 A Use-After-Free vulnerability in the management of an SNP guest context page may allow a malicious hypervisor to masquerade as the guest's migration agent resulting in a potential loss of guest integrity.
CVE-2023-36041 1Microsoft 4365 Apps ExcelOffice+1 more Jun 17, 2026 Nov 14, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Microsoft Excel Remote Code Execution Vulnerability
CVE-2023-6111 1Linux 1Linux Kernel Jun 17, 2026 Nov 14, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The function nft_trans_gc_catchall did not remove the catchall set element from...Show more A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. The function nft_trans_gc_catchall did not remove the catchall set element from the catchall_list when the argument sync is true, making it possible to free a catchall set element many times. We recommend upgrading past commit 93995bf4af2c5a99e2a87f0cd5ce547d31eb7630.Show less
CVE-2023-46850 3Debian FedoraprojectOpenvpn 4Debian Linux FedoraOpenvpn+1 more Jun 23, 2026 Nov 11, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Use after free in OpenVPN version 2.6.0 to 2.6.6 may lead to undefined behavoir, leaking memory buffers or remote execution when sending network buffers to a remote peer.
CVE-2023-39198 3Fedoraproject LinuxRedhat 3Enterprise Linux FedoraLinux Kernel Jun 17, 2026 Nov 9, 2023 N/A· v4 6.4 MEDIUM· v3 N/A· v2 A race condition was found in the QXL driver in the Linux kernel. The qxl_mode_dumb_create() function dereferences the qobj returned by the qxl_gem_object_create_with_handle(), but the handle is the only one holding a re...Show more A race condition was found in the QXL driver in the Linux kernel. The qxl_mode_dumb_create() function dereferences the qobj returned by the qxl_gem_object_create_with_handle(), but the handle is the only one holding a reference to it. This flaw allows an attacker to guess the returned handle value and trigger a use-after-free issue, potentially leading to a denial of service or privilege escalation.Show less
CVE-2023-6039 1Linux 1Linux Kernel Jun 17, 2026 Nov 9, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A use-after-free flaw was found in lan78xx_disconnect in drivers/net/usb/lan78xx.c in the network sub-component, net/usb/lan78xx in the Linux Kernel. This flaw allows a local attacker to crash the system when the LAN78XX...Show more A use-after-free flaw was found in lan78xx_disconnect in drivers/net/usb/lan78xx.c in the network sub-component, net/usb/lan78xx in the Linux Kernel. This flaw allows a local attacker to crash the system when the LAN78XX USB device detaches.Show less
CVE-2023-4891 1Lenovo 1View Driver Jun 17, 2026 Nov 8, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A potential use-after-free vulnerability was reported in the Lenovo View driver that could result in denial of service.
CVE-2023-46362 1Jbig2enc Project 1Jbig2enc Jun 17, 2026 Nov 8, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 jbig2enc v0.28 was discovered to contain a heap-use-after-free via jbig2enc_auto_threshold_using_hash in src/jbig2enc.cc.
CVE-2023-5996 3Debian FedoraprojectGoogle 3Chrome Debian LinuxFedora Jun 17, 2026 Nov 8, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Use after free in WebAudio in Google Chrome prior to 119.0.6045.123 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2023-46769 1Huawei 2Emui Harmonyos Jun 17, 2026 Nov 8, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Use-After-Free (UAF) vulnerability in the dubai module. Successful exploitation of this vulnerability will affect availability.
CVE-2023-46768 1Huawei 2Emui Harmonyos Jun 17, 2026 Nov 8, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Multi-thread vulnerability in the idmap module. Successful exploitation of this vulnerability may cause features to perform abnormally.
CVE-2023-4295 1Arm 2Mali Gpu Kernel Driver Valhall Gpu Kernel Driver Jun 17, 2026 Nov 7, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A local non-privileged user can make improper GPU memory processing operations to gain access to already freed memory.
CVE-2023-33074 1Qualcomm 59Qam8255p Firmware Qam8295p FirmwareQam8650p Firmware+56 more Jun 17, 2026 Nov 7, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption in Audio when SSR event is triggered after music playback is stopped.
CVE-2023-47233 1Linux 1Linux Kernel Jun 17, 2026 Nov 3, 2023 N/A· v4 4.3 MEDIUM· v3 N/A· v2 The brcm80211 component in the Linux kernel through 6.5.10 has a brcmf_cfg80211_detach use-after-free in the device unplugging (disconnect the USB by hotplug) code. For physically proximate attackers with local access, t...Show more The brcm80211 component in the Linux kernel through 6.5.10 has a brcmf_cfg80211_detach use-after-free in the device unplugging (disconnect the USB by hotplug) code. For physically proximate attackers with local access, this "could be exploited in a real world scenario." This is related to brcmf_cfg80211_escan_timeout_worker in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c.Show less
CVE-2023-1476 2Linux Redhat 6Enterprise Linux Enterprise Linux EusEnterprise Linux For Power Little Endian+3 more Jun 17, 2026 Nov 3, 2023 N/A· v4 7.0 HIGH· v3 N/A· v2 A use-after-free flaw was found in the Linux kernel’s mm/mremap memory address space accounting source code. This issue occurs due to a race condition between rmap walk and mremap, allowing a local user to crash the syst...Show more A use-after-free flaw was found in the Linux kernel’s mm/mremap memory address space accounting source code. This issue occurs due to a race condition between rmap walk and mremap, allowing a local user to crash the system or potentially escalate their privileges on the system.Show less
CVE-2023-1194 2Fedoraproject Linux 2Fedora Linux Kernel Jun 17, 2026 Nov 3, 2023 N/A· v4 8.1 HIGH· v3 N/A· v2 An out-of-bounds (OOB) memory read flaw was found in parse_lease_state in the KSMBD implementation of the in-kernel samba server and CIFS in the Linux kernel. When an attacker sends the CREATE command with a malformed pa...Show more An out-of-bounds (OOB) memory read flaw was found in parse_lease_state in the KSMBD implementation of the in-kernel samba server and CIFS in the Linux kernel. When an attacker sends the CREATE command with a malformed payload to KSMBD, due to a missing check of `NameOffset` in the `parse_lease_state()` function, the `create_context` object can access invalid memory.Show less
CVE-2023-36034 1Microsoft 1Edge Chromium Jun 17, 2026 Nov 3, 2023 N/A· v4 7.3 HIGH· v3 N/A· v2 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
CVE-2023-3397 1Linux 1Linux Kernel Jun 17, 2026 Nov 1, 2023 N/A· v4 6.3 MEDIUM· v3 N/A· v2 A race condition occurred between the functions lmLogClose and txEnd in JFS, in the Linux Kernel, executed in different threads. This flaw allows a local attacker with normal user privileges to crash the system or leak i...Show more A race condition occurred between the functions lmLogClose and txEnd in JFS, in the Linux Kernel, executed in different threads. This flaw allows a local attacker with normal user privileges to crash the system or leak internal kernel information.Show less
CVE-2023-1193 1Linux 1Linux Kernel Jun 17, 2026 Nov 1, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A use-after-free flaw was found in setup_async_work in the KSMBD implementation of the in-kernel samba server and CIFS in the Linux kernel. This issue could allow an attacker to crash the system by accessing freed work.
CVE-2023-1192 2Linux Redhat 2Enterprise Linux Linux Kernel Jun 17, 2026 Nov 1, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A use-after-free flaw was found in smb2_is_status_io_timeout() in CIFS in the Linux Kernel. After CIFS transfers response data to a system call, there are still local variable points to the memory region, and if the syst...Show more A use-after-free flaw was found in smb2_is_status_io_timeout() in CIFS in the Linux Kernel. After CIFS transfers response data to a system call, there are still local variable points to the memory region, and if the system call frees it faster than CIFS uses it, CIFS will access a free memory region, leading to a denial of service.Show less

Previous 1...177178179...378 Next