Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

CVEs (7,521)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-42408 1Pdf Xchange 1Pdf Xchange Editor Jun 17, 2026 Jan 26, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a mal...Show more This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of EMF files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this in conjunction with other vulnerabilities to execute arbitrary code in the context of the current process. Was ZDI-CAN-18543.Show less
CVE-2022-42374 1Pdf Xchange 1Pdf Xchange Editor Jun 17, 2026 Jan 26, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious p...Show more This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of U3D files. The issue results from the lack of validating the existence of an object prior to performing operations on the object. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-18403.Show less
CVE-2023-21795 1Microsoft 1Edge Chromium Jun 17, 2026 Jan 24, 2023 N/A· v4 8.3 HIGH· v3 N/A· v2 Microsoft Edge (Chromium-based) Elevation of Privilege Vulnerability
CVE-2021-33641 1Openeuler 1Byacc Jun 17, 2026 Jan 20, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 When processing files, malloc stores the data of the current line. When processing comments, malloc incorrectly accesses the released memory (use after free).
CVE-2022-45748 1Assimp 1Assimp Jun 17, 2026 Jan 20, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 An issue was discovered with assimp 5.1.4, a use after free occurred in function ColladaParser::ExtractDataObjectFromChannel in file /code/AssetLib/Collada/ColladaParser.cpp.
CVE-2023-21608 1Adobe 4Acrobat Acrobat DcAcrobat Reader+1 more Jun 17, 2026 Jan 18, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the cont...Show more Adobe Acrobat Reader versions 22.003.20282 (and earlier), 22.003.20281 (and earlier) and 20.005.30418 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2023-21601 1Adobe 1Dimension Jun 17, 2026 Jan 18, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Adobe Dimension version 3.4.6 (and earlier) are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as AS...Show more Adobe Dimension version 3.4.6 (and earlier) are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2023-0358 1Gpac 1Gpac Jun 17, 2026 Jan 18, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Use After Free in GitHub repository gpac/gpac prior to 2.3.0-DEV.
CVE-2022-41858 2Linux Netapp 2Hci Baseboard Management Controller Linux Kernel Jun 17, 2026 Jan 17, 2023 N/A· v4 7.1 HIGH· v3 N/A· v2 A flaw was found in the Linux kernel. A NULL pointer dereference may occur while a slip driver is in progress to detach in sl_tx_timeout in drivers/net/slip/slip.c. This issue could allow an attacker to crash the system...Show more A flaw was found in the Linux kernel. A NULL pointer dereference may occur while a slip driver is in progress to detach in sl_tx_timeout in drivers/net/slip/slip.c. This issue could allow an attacker to crash the system or leak internal kernel information.Show less
CVE-2022-46891 1Arm 3Bifrost Gpu Kernel Driver Midgard Gpu Kernel DriverValhall Gpu Kernel Driver Jun 17, 2026 Jan 17, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 An issue was discovered in the Arm Mali GPU Kernel Driver. There is a use-after-free. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r13p0 t...Show more An issue was discovered in the Arm Mali GPU Kernel Driver. There is a use-after-free. A non-privileged user can make improper GPU processing operations to gain access to already freed memory. This affects Midgard r13p0 through r32p0, Bifrost r1p0 through r40p0, and Valhall r19p0 through r40p0.Show less
CVE-2023-21598 1Adobe 1Incopy Jun 17, 2026 Jan 13, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Adobe InCopy versions 18.0 (and earlier), 17.4 (and earlier) are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitig...Show more Adobe InCopy versions 18.0 (and earlier), 17.4 (and earlier) are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.Show less
CVE-2023-22402 1Juniper 1Junos Os Evolved Jun 17, 2026 Jan 13, 2023 N/A· v4 5.9 MEDIUM· v3 N/A· v2 A Use After Free vulnerability in the kernel of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS). In a Non Stop Routing (NSR) scenario, an unexpected...Show more A Use After Free vulnerability in the kernel of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS). In a Non Stop Routing (NSR) scenario, an unexpected kernel restart might be observed if "bgp auto-discovery" is enabled and if there is a BGP neighbor flap of auto-discovery sessions for any reason. This is a race condition which is outside of an attackers direct control and it depends on system internal timing whether this issue occurs. This issue affects Juniper Networks Junos OS Evolved: 21.3 versions prior to 21.3R3-EVO; 21.4 versions prior to 21.4R2-EVO; 22.1 versions prior to 22.1R2-EVO; 22.2 versions prior to 22.2R1-S1-EVO, 22.2R2-EVO.Show less
CVE-2022-3977 1Linux 1Linux Kernel Jun 17, 2026 Jan 12, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 A use-after-free flaw was found in the Linux kernel MCTP (Management Component Transport Protocol) functionality. This issue occurs when a user simultaneously calls DROPTAG ioctl and socket close happens, which could all...Show more A use-after-free flaw was found in the Linux kernel MCTP (Management Component Transport Protocol) functionality. This issue occurs when a user simultaneously calls DROPTAG ioctl and socket close happens, which could allow a local user to crash the system or potentially escalate their privileges on the system.Show less
CVE-2022-4696 1Linux 1Linux Kernel Jun 17, 2026 Jan 11, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 There exists a use-after-free vulnerability in the Linux kernel through io_uring and the IORING_OP_SPLICE operation. If IORING_OP_SPLICE is missing the IO_WQ_WORK_FILES flag, which signals that the operation won't use cu...Show more There exists a use-after-free vulnerability in the Linux kernel through io_uring and the IORING_OP_SPLICE operation. If IORING_OP_SPLICE is missing the IO_WQ_WORK_FILES flag, which signals that the operation won't use current->nsproxy, so its reference counter is not increased. This assumption is not always true as calling io_splice on specific files will call the get_uts function which will use current->nsproxy leading to invalidly decreasing its reference counter later causing the use-after-free vulnerability. We recommend upgrading to version 5.10.160 or above Show less
CVE-2023-21784 1Microsoft 13d Builder Jun 17, 2026 Jan 10, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 3D Builder Remote Code Execution Vulnerability
CVE-2023-21774 1Microsoft 15Windows 10 1607 Windows 10 1809Windows 10 20h2+12 more Jun 17, 2026 Jan 10, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-21773 1Microsoft 15Windows 10 1607 Windows 10 1809Windows 10 20h2+12 more Jun 17, 2026 Jan 10, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-21755 1Microsoft 15Windows 10 1607 Windows 10 1809Windows 10 20h2+12 more Jun 17, 2026 Jan 10, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-21747 1Microsoft 15Windows 10 1607 Windows 10 1809Windows 10 20h2+12 more Jun 17, 2026 Jan 10, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Windows Kernel Elevation of Privilege Vulnerability
CVE-2023-21735 1Microsoft 3365 Apps OfficeOffice Long Term Servicing Channel Jun 17, 2026 Jan 10, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Microsoft Office Remote Code Execution Vulnerability

Previous 1...203204205...377 Next