Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

CVEs (7,455)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-19467 1Flowpaper 1Pdf2json Nov 21, 2024 Jul 21, 2021 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue has been found in function DCTStream::transformDataUnit in PDF2JSON 0.70 that allows attackers to cause a Denial of Service due to an Illegal Use After Free .
CVE-2021-37159 3Debian LinuxOracle 5Communications Cloud Native Core Binding Support Function Communications Cloud Native Core Network Exposure FunctionCommunications Cloud Native Core Policy+2 more Nov 21, 2024 Jul 21, 2021 N/A· v4 6.4 MEDIUM· v3 4.4 MEDIUM· v2 hso_free_net_device in drivers/net/usb/hso.c in the Linux kernel through 5.13.4 calls unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free.
CVE-2021-36980 1Openvswitch 1Openvswitch May 5, 2025 Jul 20, 2021 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 Open vSwitch (aka openvswitch) 2.11.0 through 2.15.0 has a use-after-free in decode_NXAST_RAW_ENCAP (called from ofpact_decode and ofpacts_decode) during the decoding of a RAW_ENCAP action.
CVE-2021-36976 4Apple FedoraprojectLibarchive+1 more 7Fedora IpadosIphone Os+4 more Nov 3, 2025 Jul 20, 2021 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 libarchive 3.4.1 through 3.5.1 has a use-after-free in copy_string (called from do_uncompress_block and process_block).
CVE-2021-34498 1Microsoft 8Windows 10 Windows 7Windows 8.1+5 more Nov 21, 2024 Jul 14, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Windows GDI Elevation of Privilege Vulnerability
CVE-2021-0587 1Google 1Android Nov 21, 2024 Jul 14, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 In StreamOut::prepareForWriting of StreamOut.cpp, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User int...Show more In StreamOut::prepareForWriting of StreamOut.cpp, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-185259758Show less
CVE-2021-34330 1Siemens 2Jt2go Teamcenter Visualization Nov 21, 2024 Jul 13, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Jt981.dll library in affected applications lacks proper validation of user-supplied data prior to...Show more A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Jt981.dll library in affected applications lacks proper validation of user-supplied data prior to performing further free operations on an object when parsing JT files. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13430)Show less
CVE-2021-34324 1Siemens 2Jt2go Teamcenter Visualization Nov 21, 2024 Jul 13, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Jt981.dll library in affected applications lacks proper validation of user-supplied data prior to...Show more A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The Jt981.dll library in affected applications lacks proper validation of user-supplied data prior to performing further free operations on an object when parsing JT files. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13420)Show less
CVE-2021-34301 1Siemens 2Jt2go Teamcenter Visualization Nov 21, 2024 Jul 13, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The BMP_Loader.dll library in affected applications lacks proper validation of user-supplied data prio...Show more A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The BMP_Loader.dll library in affected applications lacks proper validation of user-supplied data prior to performing further free operations on an object when parsing BMP files. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13196)Show less
CVE-2021-34298 1Siemens 2Jt2go Teamcenter Visualization Nov 21, 2024 Jul 13, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The BMP_Loader.dll library in affected applications lacks proper validation of user-supplied data prio...Show more A vulnerability has been identified in JT2Go (All versions < V13.2), Teamcenter Visualization (All versions < V13.2). The BMP_Loader.dll library in affected applications lacks proper validation of user-supplied data prior to performing further free operations on an object when parsing BMP files. An attacker could leverage this vulnerability to execute code in the context of the current process. (ZDI-CAN-13060)Show less
CVE-2021-1940 1Qualcomm 67Aqt1000 Firmware Ar8031 FirmwareAr8035 Firmware+64 more Nov 21, 2024 Jul 13, 2021 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Use after free can occur due to improper handling of response from firmware in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdra...Show more Use after free can occur due to improper handling of response from firmware in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon WearablesShow less
CVE-2021-27037 1Autodesk 1Design Review Nov 21, 2024 Jul 9, 2021 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 A maliciously crafted PNG, PDF or DWF file in Autodesk Design Review 2018, 2017, 2013, 2012, 2011 can be used to attempt to free an object that has already been freed while parsing them. This vulnerability may be exploit...Show more A maliciously crafted PNG, PDF or DWF file in Autodesk Design Review 2018, 2017, 2013, 2012, 2011 can be used to attempt to free an object that has already been freed while parsing them. This vulnerability may be exploited by remote malicious actors to execute arbitrary code.Show less
CVE-2021-21806 1Webkitgtk 1Webkitgtk Nov 21, 2024 Jul 8, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim needs to...Show more An exploitable use-after-free vulnerability exists in WebKitGTK browser version 2.30.3 x64. A specially crafted HTML web page can cause a use-after-free condition, resulting in remote code execution. The victim needs to visit a malicious web site to trigger the vulnerability.Show less
CVE-2021-21779 3Debian FedoraprojectWebkitgtk 3Debian Linux FedoraWebkitgtk Nov 21, 2024 Jul 8, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 A use-after-free vulnerability exists in the way Webkit’s GraphicsContext handles certain events in WebKitGTK 2.30.4. A specially crafted web page can lead to a potential information leak and further memory corruption. A...Show more A use-after-free vulnerability exists in the way Webkit’s GraphicsContext handles certain events in WebKitGTK 2.30.4. A specially crafted web page can lead to a potential information leak and further memory corruption. A victim must be tricked into visiting a malicious web page to trigger this vulnerability.Show less
CVE-2021-21775 3Debian FedoraprojectWebkitgtk 3Debian Linux FedoraWebkitgtk Nov 21, 2024 Jul 7, 2021 N/A· v4 8.0 HIGH· v3 6.0 MEDIUM· v2 A use-after-free vulnerability exists in the way certain events are processed for ImageLoader objects of Webkit WebKitGTK 2.30.4. A specially crafted web page can lead to a potential information leak and further memory c...Show more A use-after-free vulnerability exists in the way certain events are processed for ImageLoader objects of Webkit WebKitGTK 2.30.4. A specially crafted web page can lead to a potential information leak and further memory corruption. In order to trigger the vulnerability, a victim must be tricked into visiting a malicious webpage.Show less
CVE-2021-36145 1Linux 1Acrn Nov 21, 2024 Jul 2, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The Device Model in ACRN through 2.5 has a devicemodel/core/mem.c use-after-free for a freed rb_entry.
CVE-2021-36144 1Linux 1Acrn Nov 21, 2024 Jul 2, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The polling timer handler in ACRN before 2.5 has a use-after-free for a freed virtio device, related to devicemodel/hw/pci/virtio/*.c.
CVE-2021-30557 2Fedoraproject Google 2Chrome Fedora Nov 21, 2024 Jul 2, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Use after free in TabGroups in Google Chrome prior to 91.0.4472.114 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-30556 2Fedoraproject Google 2Chrome Fedora Nov 21, 2024 Jul 2, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Use after free in WebAudio in Google Chrome prior to 91.0.4472.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-30555 1Google 1Chrome Nov 21, 2024 Jul 2, 2021 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Use after free in Sharing in Google Chrome prior to 91.0.4472.114 allowed an attacker who convinced a user to install a malicious extension to potentially exploit heap corruption via a crafted HTML page and user gesture.

Previous 1...252253254...373 Next