Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

CVEs (7,521)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-1213 1Google 1Chrome Jun 17, 2026 Mar 7, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Use after free in Swiftshader in Google Chrome prior to 111.0.5563.64 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
CVE-2022-3424 2Linux Redhat 2Enterprise Linux Linux Kernel Jun 17, 2026 Mar 6, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A use-after-free flaw was found in the Linux kernel’s SGI GRU driver in the way the first gru_file_unlocked_ioctl function is called by the user, where a fail pass occurs in the gru_check_chiplet_assignment function. Thi...Show more A use-after-free flaw was found in the Linux kernel’s SGI GRU driver in the way the first gru_file_unlocked_ioctl function is called by the user, where a fail pass occurs in the gru_check_chiplet_assignment function. This flaw allows a local user to crash or potentially escalate their privileges on the system.Show less
CVE-2023-24734 1Sigb 1Pmb Jun 17, 2026 Mar 6, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An arbitrary file upload vulnerability in the camera_upload.php component of PMB v7.4.6 allows attackers to execute arbitrary code via a crafted image file.
CVE-2022-46395 1Arm 4Avalon Gpu Kernel Driver Bifrost Gpu Kernel DriverMidgard Gpu Kernel Driver+1 more Jun 17, 2026 Mar 6, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r0p0 through r32p0, Bifrost r0p0 t...Show more An issue was discovered in the Arm Mali GPU Kernel Driver. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r0p0 through r32p0, Bifrost r0p0 through r41p0 before r42p0, Valhall r19p0 through r41p0 before r42p0, and Avalon r41p0 before r42p0.Show less
CVE-2023-22424 1Jtekt 1Kostac Plc Programming Software Jun 17, 2026 Mar 6, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Use-after-free vulnerability exists in Kostac PLC Programming Software (Former name: Koyo PLC Programming Software) Version 1.6.9.0 and earlier. With the abnormal value given as the maximum number of columns for the PLC...Show more Use-after-free vulnerability exists in Kostac PLC Programming Software (Former name: Koyo PLC Programming Software) Version 1.6.9.0 and earlier. With the abnormal value given as the maximum number of columns for the PLC program, the process accesses the freed memory. As a result, opening a specially crafted project file may lead to information disclosure and/or arbitrary code execution.Show less
CVE-2023-1118 1Linux 1Linux Kernel Jun 17, 2026 Mar 2, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A flaw use after free in the Linux kernel integrated infrared receiver/transceiver driver was found in the way user detaching rc device. A local user could use this flaw to crash the system or potentially escalate their...Show more A flaw use after free in the Linux kernel integrated infrared receiver/transceiver driver was found in the way user detaching rc device. A local user could use this flaw to crash the system or potentially escalate their privileges on the system.Show less
CVE-2023-25363 1Webkitgtk 1Webkitgtk Jun 17, 2026 Mar 2, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A use-after-free vulnerability in WebCore::RenderLayer::updateDescendantDependentFlags in WebKitGTK before 2.36.8 allows attackers to execute code remotely.
CVE-2023-25362 1Webkitgtk 1Webkitgtk Jun 17, 2026 Mar 2, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A use-after-free vulnerability in WebCore::RenderLayer::repaintBlockSelectionGaps in WebKitGTK before 2.36.8 allows attackers to execute code remotely.
CVE-2023-25361 1Webkitgtk 1Webkitgtk Jun 17, 2026 Mar 2, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A use-after-free vulnerability in WebCore::RenderLayer::setNextSibling in WebKitGTK before 2.36.8 allows attackers to execute code remotely.
CVE-2023-25360 1Webkitgtk 1Webkitgtk Jun 17, 2026 Mar 2, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A use-after-free vulnerability in WebCore::RenderLayer::renderer in WebKitGTK before 2.36.8 allows attackers to execute code remotely.
CVE-2023-25358 2Fedoraproject Webkitgtk 2Fedora Webkitgtk Jun 17, 2026 Mar 2, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A use-after-free vulnerability in WebCore::RenderLayer::addChild in WebKitGTK before 2.36.8 allows attackers to execute code remotely.
CVE-2023-20938 1Google 1Android Jun 17, 2026 Feb 28, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 In binder_transaction_buffer_release of binder.c, there is a possible use after free due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User...Show more In binder_transaction_buffer_release of binder.c, there is a possible use after free due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-257685302References: Upstream kernelShow less
CVE-2023-20937 1Google 1Android Jun 17, 2026 Feb 28, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 In several functions of the Android Linux kernel, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User i...Show more In several functions of the Android Linux kernel, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-257443051References: Upstream kernelShow less
CVE-2023-20933 1Google 1Android Jun 17, 2026 Feb 28, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 In several functions of MediaCodec.cpp, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction...Show more In several functions of MediaCodec.cpp, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12 Android-12L Android-13Android ID: A-245860753Show less
CVE-2023-0461 1Linux 1Linux Kernel Jun 17, 2026 Feb 28, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 There is a use-after-free vulnerability in the Linux Kernel which can be exploited to achieve local privilege escalation. To reach the vulnerability kernel configuration flag CONFIG_TLS or CONFIG_XFRM_ESPINTCP has to be...Show more There is a use-after-free vulnerability in the Linux Kernel which can be exploited to achieve local privilege escalation. To reach the vulnerability kernel configuration flag CONFIG_TLS or CONFIG_XFRM_ESPINTCP has to be configured, but the operation does not require any privilege. There is a use-after-free bug of icsk_ulp_data of a struct inet_connection_sock. When CONFIG_TLS is enabled, user can install a tls context (struct tls_context) on a connected tcp socket. The context is not cleared if this socket is disconnected and reused as a listener. If a new socket is created from the listener, the context is inherited and vulnerable. The setsockopt TCP_ULP operation does not require any privilege. We recommend upgrading past commit 2c02d41d71f90a5168391b6a5f2954112ba2307cShow less
CVE-2023-23514 1Apple 3Ipados Iphone OsMacos Jun 17, 2026 Feb 27, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, iOS 16.3.1 and iPadOS 16.3.1, macOS Ventura 13.2.1, macOS Big Sur 11.7.5. An app may...Show more A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13.3, macOS Monterey 12.6.4, iOS 16.3.1 and iPadOS 16.3.1, macOS Ventura 13.2.1, macOS Big Sur 11.7.5. An app may be able to execute arbitrary code with kernel privileges.Show less
CVE-2022-46712 1Apple 1Macos Jun 17, 2026 Feb 27, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13. An app may be able to cause unexpected system termination or potentially execute code with kernel privileges.
CVE-2022-42826 2Apple Webkitgtk 5Ipados Iphone OsMacos+2 more Jun 17, 2026 Feb 27, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13, iOS 16.1 and iPadOS 16, Safari 16.1. Processing maliciously crafted web content may lead to arbitrary code ex...Show more A use after free issue was addressed with improved memory management. This issue is fixed in macOS Ventura 13, iOS 16.1 and iPadOS 16, Safari 16.1. Processing maliciously crafted web content may lead to arbitrary code execution.Show less
CVE-2023-26606 1Linux 1Linux Kernel Jun 17, 2026 Feb 26, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 In the Linux kernel 6.0.8, there is a use-after-free in ntfs_trim_fs in fs/ntfs3/bitmap.c.
CVE-2023-26605 1Linux 1Linux Kernel Jun 17, 2026 Feb 26, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 In the Linux kernel 6.0.8, there is a use-after-free in inode_cgwb_move_to_attached in fs/fs-writeback.c, related to __list_del_entry_valid.

Previous 1...200201202...377 Next