Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

CVEs (7,456)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-39216 2Bytecodealliance Fedoraproject 2Fedora Wasmtime Nov 21, 2024 Sep 17, 2021 N/A· v4 6.3 MEDIUM· v3 3.3 LOW· v2 Wasmtime is an open source runtime for WebAssembly & WASI. In Wasmtime from version 0.19.0 and before version 0.30.0 there was a use-after-free bug when passing `externref`s from the host to guest Wasm content. To trigge...Show more Wasmtime is an open source runtime for WebAssembly & WASI. In Wasmtime from version 0.19.0 and before version 0.30.0 there was a use-after-free bug when passing `externref`s from the host to guest Wasm content. To trigger the bug, you have to explicitly pass multiple `externref`s from the host to a Wasm instance at the same time, either by passing multiple `externref`s as arguments from host code to a Wasm function, or returning multiple `externref`s to Wasm from a multi-value return function defined in the host. If you do not have host code that matches one of these shapes, then you are not impacted. If Wasmtime's `VMExternRefActivationsTable` became filled to capacity after passing the first `externref` in, then passing in the second `externref` could trigger a garbage collection. However the first `externref` is not rooted until we pass control to Wasm, and therefore could be reclaimed by the collector if nothing else was holding a reference to it or otherwise keeping it alive. Then, when control was passed to Wasm after the garbage collection, Wasm could use the first `externref`, which at this point has already been freed. We have reason to believe that the effective impact of this bug is relatively small because usage of `externref` is currently quite rare. The bug has been fixed, and users should upgrade to Wasmtime 0.30.0. If you cannot upgrade Wasmtime yet, you can avoid the bug by disabling reference types support in Wasmtime by passing `false` to `wasmtime::Config::wasm_reference_types`.Show less
CVE-2021-39228 1Linuxfoundation 1Tremor Nov 21, 2024 Sep 17, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Tremor is an event processing system for unstructured data. A vulnerability exists between versions 0.7.2 and 0.11.6. This vulnerability is a memory safety Issue when using `patch` or `merge` on `state` and assign the re...Show more Tremor is an event processing system for unstructured data. A vulnerability exists between versions 0.7.2 and 0.11.6. This vulnerability is a memory safety Issue when using `patch` or `merge` on `state` and assign the result back to `state`. In this case, affected versions of Tremor and the tremor-script crate maintains references to memory that might have been freed already. And these memory regions can be accessed by retrieving the `state`, e.g. send it over TCP or HTTP. This requires the Tremor server (or any other program using tremor-script) to execute a tremor-script script that uses the mentioned language construct. The issue has been patched in version 0.11.6 by removing the optimization and always cloning the target expression of a Merge or Patch. If an upgrade is not possible, a possible workaround is to avoid the optimization by introducing a temporary variable and not immediately reassigning to `state`.Show less
CVE-2021-1976 1Qualcomm 247Apq8009 Firmware Apq8009w FirmwareApq8017 Firmware+244 more Nov 21, 2024 Sep 17, 2021 N/A· v4 9.8 CRITICAL· v3 10.0 HIGH· v2 A use after free can occur due to improper validation of P2P device address in PD Request frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdra...Show more A use after free can occur due to improper validation of P2P device address in PD Request frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and NetworkingShow less
CVE-2021-1947 1Qualcomm 87Apq8009w Firmware Apq8053 FirmwareAr9380 Firmware+84 more Nov 21, 2024 Sep 17, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Use-after-free vulnerability in kernel graphics driver because of storing an invalid pointer in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon...Show more Use-after-free vulnerability in kernel graphics driver because of storing an invalid pointer in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and NetworkingShow less
CVE-2021-3796 4Debian FedoraprojectNetapp+1 more 4Debian Linux FedoraOntap Select Deploy Administration Utility+1 more Nov 21, 2024 Sep 15, 2021 N/A· v4 7.3 HIGH· v3 6.8 MEDIUM· v2 vim is vulnerable to Use After Free
CVE-2021-38656 1Microsoft 1365 Apps Nov 21, 2024 Sep 15, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Microsoft Word Remote Code Execution Vulnerability
CVE-2021-38655 1Microsoft 5365 Apps ExcelOffice+2 more Nov 21, 2024 Sep 15, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Microsoft Excel Remote Code Execution Vulnerability
CVE-2021-37202 1Siemens 2Nx 1980 Solid Edge Nov 21, 2024 Sep 14, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A vulnerability has been identified in NX 1980 Series (All versions < V1984), Solid Edge SE2021 (All versions < SE2021MP8). The IFC adapter in affected application contains a use-after-free vulnerability that could be tr...Show more A vulnerability has been identified in NX 1980 Series (All versions < V1984), Solid Edge SE2021 (All versions < SE2021MP8). The IFC adapter in affected application contains a use-after-free vulnerability that could be triggered while parsing user-supplied IFC files. An attacker could leverage this vulnerability to execute code in the context of the current process.Show less
CVE-2021-1963 1Qualcomm 112Apq8009w Firmware Apq8096au FirmwareAqt1000 Firmware+109 more Nov 21, 2024 Sep 9, 2021 N/A· v4 6.7 MEDIUM· v3 4.6 MEDIUM· v2 Possible use-after-free due to lack of validation for the rule count in filter table in IPA driver in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snap...Show more Possible use-after-free due to lack of validation for the rule count in filter table in IPA driver in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon WearablesShow less
CVE-2021-30683 1Apple 2Mac Os X Macos Nov 21, 2024 Sep 8, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. A malicious application could execute a...Show more A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. A malicious application could execute arbitrary code leading to compromise of user information.Show less
CVE-2021-30661 1Apple 6Ipados Iphone OsMacos+3 more Oct 23, 2025 Sep 8, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 A use after free issue was addressed with improved memory management. This issue is fixed in Safari 14.1, iOS 12.5.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. Processing maliciously crafted w...Show more A use after free issue was addressed with improved memory management. This issue is fixed in Safari 14.1, iOS 12.5.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5, macOS Big Sur 11.3. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..Show less
CVE-2021-1876 1Apple 2Mac Os X Macos Nov 21, 2024 Sep 8, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina, Security Update 2021-003 Mojave. Processing maliciously crafted web cont...Show more A use after free issue was addressed with improved memory management. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina, Security Update 2021-003 Mojave. Processing maliciously crafted web content may lead to arbitrary code execution.Show less
CVE-2021-1864 1Apple 4Ipados Iphone OsTvos+1 more Nov 21, 2024 Sep 8, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. An attacker with JavaScript execution may be able to execute arbitrary code.
CVE-2021-30802 1Apple 2Iphone Os Tvos Nov 21, 2024 Sep 8, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.7, tvOS 14.7. Processing maliciously crafted web content may lead to arbitrary code execution.
CVE-2021-30795 1Apple 5Iphone Os MacosSafari+2 more Nov 21, 2024 Sep 8, 2021 N/A· v4 8.8 HIGH· v3 9.3 HIGH· v2 A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to arb...Show more A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.7, Safari 14.1.2, macOS Big Sur 11.5, watchOS 7.6, tvOS 14.7. Processing maliciously crafted web content may lead to arbitrary code execution.Show less
CVE-2021-30762 1Apple 1Iphone Os Oct 23, 2025 Sep 8, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.5.4. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that th...Show more A use after free issue was addressed with improved memory management. This issue is fixed in iOS 12.5.4. Processing maliciously crafted web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been actively exploited..Show less
CVE-2021-30741 1Apple 2Ipados Iphone Os Nov 21, 2024 Sep 8, 2021 N/A· v4 7.1 HIGH· v3 5.8 MEDIUM· v2 A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.6 and iPadOS 14.6. Processing a maliciously crafted mail message may lead to unexpected memory modification or applicati...Show more A use after free issue was addressed with improved memory management. This issue is fixed in iOS 14.6 and iPadOS 14.6. Processing a maliciously crafted mail message may lead to unexpected memory modification or application termination.Show less
CVE-2021-30624 2Fedoraproject Microsoft 3Edge Edge ChromiumFedora Nov 21, 2024 Sep 3, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Chromium: CVE-2021-30624 Use after free in Autofill
CVE-2021-30623 2Fedoraproject Microsoft 3Edge Edge ChromiumFedora Nov 21, 2024 Sep 3, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Chromium: CVE-2021-30623 Use after free in Bookmarks
CVE-2021-30622 2Fedoraproject Microsoft 3Edge Edge ChromiumFedora Nov 21, 2024 Sep 3, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Chromium: CVE-2021-30622 Use after free in WebApp Installs

Previous 1...246247248...373 Next