Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

CVEs (7,456)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-0302 1Google 1Chrome Jun 17, 2026 Feb 12, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Use after free in Omnibox in Google Chrome prior to 97.0.4692.99 allowed an attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via a crafted HTML page.
CVE-2022-0301 1Google 1Chrome Jun 17, 2026 Feb 12, 2022 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Heap buffer overflow in DevTools in Google Chrome prior to 97.0.4692.99 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.
CVE-2022-0300 1Google 1Chrome Jun 17, 2026 Feb 12, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Use after free in Text Input Method Editor in Google Chrome on Android prior to 97.0.4692.99 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption v...Show more Use after free in Text Input Method Editor in Google Chrome on Android prior to 97.0.4692.99 allowed a remote attacker who convinced a user to engage in specific user interactions to potentially exploit heap corruption via a crafted HTML page.Show less
CVE-2022-0298 1Google 1Chrome Jun 17, 2026 Feb 12, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Use after free in Scheduling in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2022-0297 1Google 1Chrome Jun 17, 2026 Feb 12, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Use after free in Vulkan in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2022-0296 1Google 1Chrome Jun 17, 2026 Feb 12, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Use after free in Printing in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who convinced the user to engage is specific user interactions to potentially exploit heap corruption via a crafted HTML page.
CVE-2022-0295 1Google 1Chrome Jun 17, 2026 Feb 12, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Use after free in Omnibox in Google Chrome prior to 97.0.4692.99 allowed a remote attacker who convinced the user to engage is specific user interactions to potentially exploit heap corruption via a crafted HTML page.
CVE-2022-0293 1Google 1Chrome Jun 17, 2026 Feb 12, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Use after free in Web packaging in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2022-0290 1Google 1Chrome Jun 17, 2026 Feb 12, 2022 N/A· v4 9.6 CRITICAL· v3 6.8 MEDIUM· v2 Use after free in Site isolation in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page.
CVE-2022-0289 1Google 1Chrome Jun 17, 2026 Feb 12, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Use after free in Safe browsing in Google Chrome prior to 97.0.4692.99 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2022-0107 2Fedoraproject Google 2Chrome Fedora Jun 17, 2026 Feb 12, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Use after free in File Manager API in Google Chrome on Chrome OS prior to 97.0.4692.71 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML p...Show more Use after free in File Manager API in Google Chrome on Chrome OS prior to 97.0.4692.71 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.Show less
CVE-2022-0106 2Fedoraproject Google 2Chrome Fedora Jun 17, 2026 Feb 12, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Use after free in Autofill in Google Chrome prior to 97.0.4692.71 allowed a remote attacker who convinced a user to perform specific user gesture to potentially exploit heap corruption via a crafted HTML page.
CVE-2022-0105 2Fedoraproject Google 2Chrome Fedora Jun 17, 2026 Feb 12, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Use after free in PDF Accessibility in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2022-0103 2Fedoraproject Google 2Chrome Fedora Jun 17, 2026 Feb 12, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Use after free in SwiftShader in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2022-0099 2Fedoraproject Google 2Chrome Fedora Jun 17, 2026 Feb 12, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Use after free in Sign-in in Google Chrome prior to 97.0.4692.71 allowed a remote attacker who convinced a user to perform specific user gestures to potentially exploit heap corruption via specific user gesture.
CVE-2022-0098 2Fedoraproject Google 2Chrome Fedora Jun 17, 2026 Feb 12, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Use after free in Screen Capture in Google Chrome on Chrome OS prior to 97.0.4692.71 allowed an attacker who convinced a user to perform specific user gestures to potentially exploit heap corruption via specific user ges...Show more Use after free in Screen Capture in Google Chrome on Chrome OS prior to 97.0.4692.71 allowed an attacker who convinced a user to perform specific user gestures to potentially exploit heap corruption via specific user gestures.Show less
CVE-2022-0096 2Fedoraproject Google 2Chrome Fedora Jun 17, 2026 Feb 12, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Use after free in Storage in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-4102 1Google 1Chrome Jun 17, 2026 Feb 11, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Use after free in V8 in Google Chrome prior to 96.0.4664.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-4099 1Google 1Chrome Jun 17, 2026 Feb 11, 2022 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Use after free in Swiftshader in Google Chrome prior to 96.0.4664.110 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-39674 1Google 1Android Jun 17, 2026 Feb 11, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 In btm_sec_connected and btm_sec_disconnected of btm_sec.cc file , there is a possible use after free. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not neede...Show more In btm_sec_connected and btm_sec_disconnected of btm_sec.cc file , there is a possible use after free. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-11 Android-12Android ID: A-201083442Show less

Previous 1...233234235...373 Next