Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

CVEs (7,541)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-35382 1Microsoft 7Windows 10 1809 Windows 10 21h2Windows 10 22h2+4 more Jun 17, 2026 Aug 8, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-35380 1Microsoft 12Windows 10 1507 Windows 10 1607Windows 10 1809+9 more Jun 17, 2026 Aug 8, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-29330 1Microsoft 1Teams Jun 17, 2026 Aug 8, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Microsoft Teams Remote Code Execution Vulnerability
CVE-2023-29328 1Microsoft 1Teams Jun 17, 2026 Aug 8, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Microsoft Teams Remote Code Execution Vulnerability
CVE-2023-39549 1Siemens 1Solid Edge Jun 17, 2026 Aug 8, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 2). The affected application contains a use-after-free vulnerability that could be triggered while parsing specially crafted DWG file...Show more A vulnerability has been identified in Solid Edge SE2023 (All versions < V223.0 Update 2). The affected application contains a use-after-free vulnerability that could be triggered while parsing specially crafted DWG file. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-19562)Show less
CVE-2023-28830 1Siemens 4Jt2go Solid Edge Se2022Solid Edge Se2023+1 more Jun 17, 2026 Aug 8, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A vulnerability has been identified in JT2Go (All versions < V14.2.0.5), Solid Edge SE2022 (All versions < V222.0 Update 13), Solid Edge SE2023 (All versions < V223.0 Update 4), Teamcenter Visualization V13.2 (All versio...Show more A vulnerability has been identified in JT2Go (All versions < V14.2.0.5), Solid Edge SE2022 (All versions < V222.0 Update 13), Solid Edge SE2023 (All versions < V223.0 Update 4), Teamcenter Visualization V13.2 (All versions < V13.2.0.15), Teamcenter Visualization V13.3 (All versions < V13.3.0.11), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.5). The affected application contains a use-after-free vulnerability that could be triggered while parsing specially crafted ASM file. An attacker could leverage this vulnerability to execute code in the context of the current process.Show less
CVE-2023-28577 1Qualcomm 30Fastconnect 6800 Firmware Fastconnect 6900 FirmwareFastconnect 7800 Firmware+27 more Jun 17, 2026 Aug 8, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 In the function call related to CAM_REQ_MGR_RELEASE_BUF there is no check if the buffer is being used. So when a function called cam_mem_get_cpu_buf to get the kernel va to use, another thread can call CAM_REQ_MGR_RELEAS...Show more In the function call related to CAM_REQ_MGR_RELEASE_BUF there is no check if the buffer is being used. So when a function called cam_mem_get_cpu_buf to get the kernel va to use, another thread can call CAM_REQ_MGR_RELEASE_BUF to unmap the kernel va which cause UAF of the kernel address.Show less
CVE-2023-4147 4Debian FedoraprojectLinux+1 more 8Debian Linux Enterprise LinuxEnterprise Linux Eus+5 more Jun 17, 2026 Aug 7, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A use-after-free flaw was found in the Linux kernel’s Netfilter functionality when adding a rule with NFTA_RULE_CHAIN_ID. This flaw allows a local user to crash or escalate their privileges on the system.
CVE-2023-20801 2Google Linuxfoundation 2Android Yocto Jun 17, 2026 Aug 7, 2023 N/A· v4 6.4 MEDIUM· v3 N/A· v2 In imgsys, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID:...Show more In imgsys, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07420968; Issue ID: ALPS07420968.Show less
CVE-2023-20788 1Google 1Android Jun 17, 2026 Aug 7, 2023 N/A· v4 6.4 MEDIUM· v3 N/A· v2 In thermal, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID:...Show more In thermal, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07648734; Issue ID: ALPS07648735.Show less
CVE-2023-20787 1Google 1Android Jun 17, 2026 Aug 7, 2023 N/A· v4 6.4 MEDIUM· v3 N/A· v2 In thermal, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID:...Show more In thermal, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07648734; Issue ID: ALPS07648734.Show less
CVE-2023-4133 3Fedoraproject LinuxRedhat 3Enterprise Linux FedoraLinux Kernel Jun 17, 2026 Aug 3, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A use-after-free vulnerability was found in the cxgb4 driver in the Linux kernel. The bug occurs when the cxgb4 device is detaching due to a possible rearming of the flower_stats_timer from the work queue. This flaw allo...Show more A use-after-free vulnerability was found in the cxgb4 driver in the Linux kernel. The bug occurs when the cxgb4 device is detaching due to a possible rearming of the flower_stats_timer from the work queue. This flaw allows a local user to crash the system, causing a denial of service condition.Show less
CVE-2023-4132 4Debian FedoraprojectLinux+1 more 6Debian Linux Enterprise LinuxEnterprise Linux For Real Time+3 more Jun 17, 2026 Aug 3, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A use-after-free vulnerability was found in the siano smsusb module in the Linux kernel. The bug occurs during device initialization when the siano device is plugged in. This flaw allows a local user to crash the system,...Show more A use-after-free vulnerability was found in the siano smsusb module in the Linux kernel. The bug occurs during device initialization when the siano device is plugged in. This flaw allows a local user to crash the system, causing a denial of service condition.Show less
CVE-2023-22277 1Omron 1Cx Programmer Jun 17, 2026 Aug 3, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free vulnerability exists in CX-Programmer Ver.9.79 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is diffe...Show more Use after free vulnerability exists in CX-Programmer Ver.9.79 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is different from CVE-2023-22317 and CVE-2023-22314.Show less
CVE-2023-22317 1Omron 1Cx Programmer Jun 17, 2026 Aug 3, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free vulnerability exists in CX-Programmer Ver.9.79 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is diffe...Show more Use after free vulnerability exists in CX-Programmer Ver.9.79 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is different from CVE-2023-22277 and CVE-2023-22314.Show less
CVE-2023-22314 1Omron 1Cx Programmer Jun 17, 2026 Aug 3, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free vulnerability exists in CX-Programmer Ver.9.79 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is diffe...Show more Use after free vulnerability exists in CX-Programmer Ver.9.79 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur. This vulnerability is different from CVE-2023-22277 and CVE-2023-22317.Show less
CVE-2023-38748 1Omron 1Cx Programmer Jun 17, 2026 Aug 3, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free vulnerability exists in CX-Programmer Included in CX-One CXONE-AL[][]D-V4 V9.80 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may o...Show more Use after free vulnerability exists in CX-Programmer Included in CX-One CXONE-AL[][]D-V4 V9.80 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur.Show less
CVE-2023-4076 1Google 1Chrome Jun 17, 2026 Aug 3, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Use after free in WebRTC in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted WebRTC session. (Chromium security severity: High)
CVE-2023-4075 1Google 1Chrome Jun 17, 2026 Aug 3, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Use after free in Cast in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2023-4074 1Google 1Chrome Jun 17, 2026 Aug 3, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Use after free in Blink Task Scheduling in Google Chrome prior to 115.0.5790.170 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)

Previous 1...186187188...378 Next