Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

CVEs (7,529)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-28307 1Microsoft 5Windows Server 2008 Windows Server 2012Windows Server 2016+2 more Jun 17, 2026 Apr 11, 2023 N/A· v4 6.6 MEDIUM· v3 N/A· v2 Windows DNS Server Remote Code Execution Vulnerability
CVE-2023-28306 1Microsoft 5Windows Server 2008 Windows Server 2012Windows Server 2016+2 more Jun 17, 2026 Apr 11, 2023 N/A· v4 6.6 MEDIUM· v3 N/A· v2 Windows DNS Server Remote Code Execution Vulnerability
CVE-2023-28305 1Microsoft 5Windows Server 2008 Windows Server 2012Windows Server 2016+2 more Jun 17, 2026 Apr 11, 2023 N/A· v4 6.6 MEDIUM· v3 N/A· v2 Windows DNS Server Remote Code Execution Vulnerability
CVE-2023-28297 1Microsoft 10Windows 10 1607 Windows 10 1809Windows 10 20h2+7 more Jun 17, 2026 Apr 11, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Windows Remote Procedure Call Service (RPCSS) Elevation of Privilege Vulnerability
CVE-2023-28285 1Microsoft 3365 Apps OfficeOffice Long Term Servicing Channel Jun 17, 2026 Apr 11, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Microsoft Office Remote Code Execution Vulnerability
CVE-2023-28223 1Microsoft 4Windows Server 2008 Windows Server 2012Windows Server 2016+1 more Jun 17, 2026 Apr 11, 2023 N/A· v4 6.6 MEDIUM· v3 N/A· v2 Windows Domain Name Service Remote Code Execution Vulnerability
CVE-2023-24925 1Microsoft 12Windows 10 1507 Windows 10 1607Windows 10 1809+9 more Jun 17, 2026 Apr 11, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability
CVE-2023-24914 1Microsoft 1Windows 11 22h2 Jun 17, 2026 Apr 11, 2023 N/A· v4 7.0 HIGH· v3 N/A· v2 Win32k Elevation of Privilege Vulnerability
CVE-2023-1989 3Debian LinuxNetapp 7Debian Linux H300sH410c+4 more Jun 17, 2026 Apr 11, 2023 N/A· v4 7.0 HIGH· v3 N/A· v2 A use-after-free flaw was found in btsdio_remove in drivers\bluetooth\btsdio.c in the Linux Kernel. In this flaw, a call to btsdio_remove with an unfinished job, may cause a race problem leading to a UAF on hdev devices.
CVE-2022-43716 1Siemens 24Simatic Cp 1242 7 V2 Firmware Simatic Cp 1243 1 Dnp3 FirmwareSimatic Cp 1243 1 Firmware+21 more Jun 17, 2026 Apr 11, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 A vulnerability has been identified in SIMATIC CP 1242-7 V2 (6GK7242-7KX31-0XE0) (All versions < V3.4.29), SIMATIC CP 1243-1 (6GK7243-1BX30-0XE0) (All versions < V3.4.29), SIMATIC CP 1243-1 DNP3 (incl. SIPLUS variants) (...Show more A vulnerability has been identified in SIMATIC CP 1242-7 V2 (6GK7242-7KX31-0XE0) (All versions < V3.4.29), SIMATIC CP 1243-1 (6GK7243-1BX30-0XE0) (All versions < V3.4.29), SIMATIC CP 1243-1 DNP3 (incl. SIPLUS variants) (All versions < V3.4.29), SIMATIC CP 1243-1 IEC (incl. SIPLUS variants) (All versions < V3.4.29), SIMATIC CP 1243-7 LTE EU (6GK7243-7KX30-0XE0) (All versions < V3.4.29), SIMATIC CP 1243-7 LTE US (6GK7243-7SX30-0XE0) (All versions < V3.4.29), SIMATIC CP 1243-8 IRC (6GK7243-8RX30-0XE0) (All versions < V3.4.29), SIMATIC CP 1542SP-1 (6GK7542-6UX00-0XE0) (All versions < V2.3), SIMATIC CP 1542SP-1 IRC (6GK7542-6VX00-0XE0) (All versions < V2.3), SIMATIC CP 1543SP-1 (6GK7543-6WX00-0XE0) (All versions < V2.3), SIMATIC CP 443-1 (6GK7443-1EX30-0XE0) (All versions < V3.3), SIMATIC CP 443-1 (6GK7443-1EX30-0XE1) (All versions < V3.3), SIMATIC CP 443-1 Advanced (6GK7443-1GX30-0XE0) (All versions < V3.3), SIPLUS ET 200SP CP 1542SP-1 IRC TX RAIL (6AG2542-6VX00-4XE0) (All versions < V2.3), SIPLUS ET 200SP CP 1543SP-1 ISEC (6AG1543-6WX00-7XE0) (All versions < V2.3), SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL (6AG2543-6WX00-4XE0) (All versions < V2.3), SIPLUS NET CP 1242-7 V2 (6AG1242-7KX31-7XE0) (All versions < V3.4.29), SIPLUS NET CP 443-1 (6AG1443-1EX30-4XE0) (All versions < V3.3), SIPLUS NET CP 443-1 Advanced (6AG1443-1GX30-4XE0) (All versions < V3.3), SIPLUS S7-1200 CP 1243-1 (6AG1243-1BX30-2AX0) (All versions < V3.4.29), SIPLUS S7-1200 CP 1243-1 RAIL (6AG2243-1BX30-1XE0) (All versions < V3.4.29), SIPLUS TIM 1531 IRC (6AG1543-1MX00-7XE0) (All versions < V2.3.6), TIM 1531 IRC (6GK7543-1MX00-0XE0) (All versions < V2.3.6). The webserver of the affected products contains a vulnerability that may lead to a denial of service condition. An attacker may cause a denial of service situation which leads to a restart of the webserver of the affected product.Show less
CVE-2023-26495 1Opendesign 1Drawings Sdk Jun 17, 2026 Apr 10, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 An issue was discovered in Open Design Alliance Drawings SDK before 2024.1. A crafted DWG file can force the SDK to reuse an object that has been freed. An attacker can leverage this in conjunction with other vulnerabili...Show more An issue was discovered in Open Design Alliance Drawings SDK before 2024.1. A crafted DWG file can force the SDK to reuse an object that has been freed. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code.Show less
CVE-2023-28205 1Apple 4Ipados Iphone OsMacos+1 more Jun 17, 2026 Apr 10, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1. Processing maliciously crafted...Show more A use after free issue was addressed with improved memory management. This issue is fixed in Safari 16.4.1, iOS 15.7.5 and iPadOS 15.7.5, iOS 16.4.1 and iPadOS 16.4.1, macOS Ventura 13.3.1. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited.Show less
CVE-2023-20664 1Google 1Android Jun 17, 2026 Apr 6, 2023 N/A· v4 6.7 MEDIUM· v3 N/A· v2 In gz, there is a possible double free due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS075...Show more In gz, there is a possible double free due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07505952; Issue ID: ALPS07505952.Show less
CVE-2023-1855 2Debian Linux 2Debian Linux Linux Kernel Jun 17, 2026 Apr 5, 2023 N/A· v4 6.3 MEDIUM· v3 N/A· v2 A use-after-free flaw was found in xgene_hwmon_remove in drivers/hwmon/xgene-hwmon.c in the Hardware Monitoring Linux Kernel Driver (xgene-hwmon). This flaw could allow a local attacker to crash the system due to a race...Show more A use-after-free flaw was found in xgene_hwmon_remove in drivers/hwmon/xgene-hwmon.c in the Hardware Monitoring Linux Kernel Driver (xgene-hwmon). This flaw could allow a local attacker to crash the system due to a race problem. This vulnerability could even lead to a kernel information leak problem.Show less
CVE-2023-1838 2Linux Netapp 6H300s H410cH410s+3 more Jun 17, 2026 Apr 5, 2023 N/A· v4 7.1 HIGH· v3 N/A· v2 A use-after-free flaw was found in vhost_net_set_backend in drivers/vhost/net.c in virtio network subcomponent in the Linux kernel due to a double fget. This flaw could allow a local attacker to crash the system, and cou...Show more A use-after-free flaw was found in vhost_net_set_backend in drivers/vhost/net.c in virtio network subcomponent in the Linux kernel due to a double fget. This flaw could allow a local attacker to crash the system, and could even lead to a kernel information leak problem.Show less
CVE-2022-43664 1Justsystems 1Ichitaro 2022 Jun 17, 2026 Apr 5, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A use-after-free vulnerability exists within the way Ichitaro Word Processor 2022, version 1.0.1.57600, processes protected documents. A specially crafted document can trigger reuse of freed memory, which can lead to fur...Show more A use-after-free vulnerability exists within the way Ichitaro Word Processor 2022, version 1.0.1.57600, processes protected documents. A specially crafted document can trigger reuse of freed memory, which can lead to further memory corruption and potentially result in arbitrary code execution. An attacker can provide a malicious document to trigger this vulnerability.Show less
CVE-2023-1818 3Debian FedoraprojectGoogle 3Chrome Debian LinuxFedora Jun 17, 2026 Apr 4, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Use after free in Vulkan in Google Chrome prior to 112.0.5615.49 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)
CVE-2023-1815 3Debian FedoraprojectGoogle 3Chrome Debian LinuxFedora Jun 17, 2026 Apr 4, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Use after free in Networking APIs in Google Chrome prior to 112.0.5615.49 allowed a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via a crafted HTML page...Show more Use after free in Networking APIs in Google Chrome prior to 112.0.5615.49 allowed a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Medium)Show less
CVE-2023-1811 3Debian FedoraprojectGoogle 3Chrome Debian LinuxFedora Jun 17, 2026 Apr 4, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Use after free in Frames in Google Chrome prior to 112.0.5615.49 allowed a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via a crafted HTML page. (Chromi...Show more Use after free in Frames in Google Chrome prior to 112.0.5615.49 allowed a remote attacker who convinced a user to engage in specific UI interaction to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)Show less
CVE-2023-26991 1Swftools 1Swftools Jun 17, 2026 Apr 4, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 SWFTools v0.9.2 was discovered to contain a stack-use-after-scope in the swf_ReadSWF2 function in lib/rfxswf.c.

Previous 1...196197198...377 Next