Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

CVEs (7,541)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-2763 13ds 13dexperience Solidworks Jun 17, 2026 Jul 12, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Use-After-Free, Out-of-bounds Write and Heap-based Buffer Overflow vulnerabilities exist in the DWG and DXF file reading procedure in SOLIDWORKS Desktop from Release SOLIDWORKS 2021 through Release SOLIDWORKS 2023. These...Show more Use-After-Free, Out-of-bounds Write and Heap-based Buffer Overflow vulnerabilities exist in the DWG and DXF file reading procedure in SOLIDWORKS Desktop from Release SOLIDWORKS 2021 through Release SOLIDWORKS 2023. These vulnerabilities could allow an attacker to execute arbitrary code while opening a specially crafted DWG or DXF file.Show less
CVE-2023-2762 13ds 13dexperience Solidworks Jun 17, 2026 Jul 12, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A Use-After-Free vulnerability in SLDPRT file reading procedure exists in SOLIDWORKS Desktop from Release SOLIDWORKS 2021 through Release SOLIDWORKS 2023. This vulnerability could allow an attacker to execute arbitrary c...Show more A Use-After-Free vulnerability in SLDPRT file reading procedure exists in SOLIDWORKS Desktop from Release SOLIDWORKS 2021 through Release SOLIDWORKS 2023. This vulnerability could allow an attacker to execute arbitrary code while opening a specially crafted SLDPRT file.Show less
CVE-2023-35351 1Microsoft 5Windows Server 2008 Windows Server 2012Windows Server 2016+2 more Jun 17, 2026 Jul 11, 2023 N/A· v4 6.6 MEDIUM· v3 N/A· v2 Windows Active Directory Certificate Services (AD CS) Remote Code Execution Vulnerability
CVE-2023-35323 1Microsoft 2Windows 11 21h2 Windows Server 2022 Jun 17, 2026 Jul 11, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows OLE Remote Code Execution Vulnerability
CVE-2023-35313 1Microsoft 10Windows 10 1507 Windows 10 1607Windows 10 1809+7 more Jun 17, 2026 Jul 11, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Online Certificate Status Protocol (OCSP) SnapIn Remote Code Execution Vulnerability
CVE-2023-35300 1Microsoft 12Windows 10 1507 Windows 10 1607Windows 10 1809+9 more Jun 17, 2026 Jul 11, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Remote Procedure Call Runtime Remote Code Execution Vulnerability
CVE-2023-33153 1Microsoft 3365 Apps OfficeOffice Long Term Servicing Channel Jun 17, 2026 Jul 11, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Microsoft Outlook Remote Code Execution Vulnerability
CVE-2023-33149 1Microsoft 3365 Apps OfficeOffice Long Term Servicing Channel Jun 17, 2026 Jul 11, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Microsoft Office Graphics Remote Code Execution Vulnerability
CVE-2023-32055 1Microsoft 12Windows 10 1507 Windows 10 1607Windows 10 1809+9 more Jun 17, 2026 Jul 11, 2023 N/A· v4 6.7 MEDIUM· v3 N/A· v2 Active Template Library Elevation of Privilege Vulnerability
CVE-2023-32038 1Microsoft 12Windows 10 1507 Windows 10 1607Windows 10 1809+9 more Jun 17, 2026 Jul 11, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Microsoft ODBC Driver Remote Code Execution Vulnerability
CVE-2023-32033 1Microsoft 5Windows Server 2008 Windows Server 2012Windows Server 2016+2 more Jun 17, 2026 Jul 11, 2023 N/A· v4 7.2 HIGH· v3 N/A· v2 Microsoft Failover Cluster Remote Code Execution Vulnerability
CVE-2023-21756 1Microsoft 11Windows 10 1507 Windows 10 1607Windows 10 1809+8 more Jun 17, 2026 Jul 11, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Win32k Elevation of Privilege Vulnerability
CVE-2023-3269 3Fedoraproject LinuxRedhat 3Enterprise Linux FedoraLinux Kernel Jun 17, 2026 Jul 11, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A vulnerability exists in the memory management subsystem of the Linux kernel. The lock handling for accessing and updating virtual memory areas (VMAs) is incorrect, leading to use-after-free problems. This issue can be...Show more A vulnerability exists in the memory management subsystem of the Linux kernel. The lock handling for accessing and updating virtual memory areas (VMAs) is incorrect, leading to use-after-free problems. This issue can be successfully exploited to execute arbitrary kernel code, escalate containers, and gain root privileges.Show less
CVE-2023-1902 1Zephyrproject 1Zephyr Jun 17, 2026 Jul 10, 2023 N/A· v4 8.0 HIGH· v3 N/A· v2 The bluetooth HCI host layer logic not clearing a global reference to a state pointer after handling connection events may allow a malicious HCI Controller to cause the use of a dangling reference in the host layer, lead...Show more The bluetooth HCI host layer logic not clearing a global reference to a state pointer after handling connection events may allow a malicious HCI Controller to cause the use of a dangling reference in the host layer, leading to a crash (DoS) or potential RCE on the Host layer.Show less
CVE-2021-32495 1Radare 1Radare2 Jun 17, 2026 Jul 7, 2023 N/A· v4 9.1 CRITICAL· v3 N/A· v2 Radare2 has a use-after-free vulnerability in pyc parser's get_none_object function. Attacker can read freed memory afterwards. This will allow attackers to cause denial of service.
CVE-2021-33796 1Artifex 1Mujs Jun 17, 2026 Jul 7, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 In MuJS before version 1.1.2, a use-after-free flaw in the regexp source property access may cause denial of service.
CVE-2023-29824 1Scipy 1Scipy Jun 17, 2026 Jul 6, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A use-after-free issue was discovered in Py_FindObjects() function in SciPy versions prior to 1.8.0. NOTE: the vendor and discoverer indicate that this is not a security issue.
CVE-2023-37454 1Linux 1Linux Kernel Jun 17, 2026 Jul 6, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 An issue was discovered in the Linux kernel through 6.4.2. A crafted UDF filesystem image causes a use-after-free write operation in the udf_put_super and udf_close_lvid functions in fs/udf/super.c. NOTE: the suse.com re...Show more An issue was discovered in the Linux kernel through 6.4.2. A crafted UDF filesystem image causes a use-after-free write operation in the udf_put_super and udf_close_lvid functions in fs/udf/super.c. NOTE: the suse.com reference has a different perspective about this.Show less
CVE-2022-48512 1Huawei 2Emui Harmonyos Jun 17, 2026 Jul 6, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Use After Free (UAF) vulnerability in the Vdecoderservice service. Successful exploitation of this vulnerability may cause the image decoding feature to perform abnormally.
CVE-2022-48511 1Huawei 2Emui Harmonyos Jun 17, 2026 Jul 6, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Use After Free (UAF) vulnerability in the audio PCM driver module under special conditions. Successful exploitation of this vulnerability may cause audio features to perform abnormally.

Previous 1...189190191...378 Next