CWE-416
7,545 CVEs • Abstraction: Variant • Likelihood of Exploit: High
Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.
CVEs (7,545)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Microsoft 7Windows 10 1809 Windows 10 21h2Windows 10 22h2+4 moreJun 17, 2026 Oct 10, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Named Pipe Filesystem Elevation of Privilege Vulnerability |
1Microsoft 12Windows 10 Windows 10 1607Windows 10 1809+9 moreJun 17, 2026 Oct 10, 2023 N/A· v4 7.3 HIGH· v3 N/A· v2 Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability |
1Microsoft 3365 Copilot OfficeOffice Long Term Servicing ChannelJun 17, 2026 Oct 10, 2023 N/A· v4 7.0 HIGH· v3 N/A· v2 Microsoft Office Graphics Elevation of Privilege Vulnerability |
A use after free vulnerability [CWE-416] in FortiOS version 7.2.0 through 7.2.4 and version 7.0.0 through 7.0.10 and FortiProxy version 7.2.0 through 7.2.2 and version 7.0.0 through 7.0.8 may allow an unauthenticated rem...Show more |
In jpg driver, there is a possible use after free due to a logic error. This could lead to remote information disclosure no additional execution privileges needed |
libxml2 through 2.11.5 has a use-after-free that can only occur after a certain memory allocation fails. This occurs in xmlUnlinkNode in tree.c. NOTE: the vendor's position is "I don't think these issues are critical eno...Show more |
3Debian FedoraprojectWebkitgtk3Debian Linux FedoraWebkitgtkJun 17, 2026 Oct 6, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A use-after-free vulnerability exists in the MediaRecorder API of Webkit WebKitGTK 2.40.5. A specially crafted web page can abuse this vulnerability to cause memory corruption and potentially arbitrary code execution. A...Show more |
PJSIP is a free and open source multimedia communication library written in C with high level API in C, C++, Java, C#, and Python languages. SRTP is a higher level media transport which is stacked upon a lower level medi...Show more |
1Arm 2Mali Gpu Kernel Driver Valhall Gpu Kernel DriverJun 17, 2026 Oct 3, 2023 N/A· v4 4.7 MEDIUM· v3 N/A· v2 A local non-privileged user can make improper GPU processing operations to access a limited amount outside of buffer bounds or to exploit a software race condition. If the system’s memory is carefully prepared by the use...Show more |
1Arm 3Bifrost Gpu Kernel Driver Mali Gpu Kernel DriverValhall Gpu Kernel DriverJun 17, 2026 Oct 3, 2023 N/A· v4 4.7 MEDIUM· v3 N/A· v2 A local non-privileged user can make improper GPU processing operations to exploit a software race condition. If the system’s memory is carefully prepared by the user, then this in turn could give them access to already...Show more |
1Qualcomm 21Qam8295p Firmware Qam8650p FirmwareQamsrv1h Firmware+18 moreJun 17, 2026 Oct 3, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption in Automotive Display while destroying the image handle created using connected display driver. |
1Qualcomm 131Apq8009 Firmware Ar8035 FirmwareCsra6620 Firmware+128 moreJun 17, 2026 Oct 3, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Memory corruption in DSP Service during a remote call from HLOS to DSP. |
2Fedoraproject Linux2Fedora Linux KernelJun 17, 2026 Oct 3, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A use-after-free vulnerability in the Linux kernel's fs/smb/client component can be exploited to achieve local privilege escalation. In case of an error in smb3_fs_context_parse_param, ctx->password was freed but the fi...Show more |
1Arm 45th Gen Gpu Architecture Kernel Driver Bifrost Gpu Kernel DriverMidgard Gpu Kernel Driver+1 moreJun 17, 2026 Oct 1, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A local non-privileged user can make improper GPU memory processing operations to gain access to already freed memory. |
3Debian FedoraprojectGoogle3Chrome Debian LinuxFedoraJun 17, 2026 Sep 28, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Use after free in Extensions in Google Chrome prior to 117.0.5938.132 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page. (Chromium se...Show more |
3Debian FedoraprojectGoogle3Chrome Debian LinuxFedoraJun 17, 2026 Sep 28, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Use after free in Passwords in Google Chrome prior to 117.0.5938.132 allowed a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via crafted UI interaction....Show more |
2Debian Linux2Debian Linux Linux KernelJun 17, 2026 Sep 27, 2023 N/A· v4 6.6 MEDIUM· v3 N/A· v2 A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. Addition and removal of rules from chain bindings within the same transaction c...Show more |
During process shutdown, it was possible that an `ImageBitmap` was created that would later be used after being freed from a different codepath, leading to a potentially exploitable crash. This vulnerability affects Fire...Show more |
1Mozilla 3Firefox Firefox EsrThunderbirdJun 17, 2026 Sep 27, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 If Windows failed to duplicate a handle during process creation, the sandbox code may have inadvertently freed a pointer twice, resulting in a use-after-free and a potentially exploitable crash. *This bug only affects Fi...Show more |
A hashtable in the Ion Engine could have been mutated while there was a live interior reference, leading to a potential use-after-free and exploitable crash. This vulnerability affects Firefox < 118. |