CWE-401

Medium likelihood

Missing Release of Memory after Effective Lifetime

Parent: CWE-772 - Missing Release of Resource after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

1,744 vulnerabilities with CWE-401
CVE-2025-60361 LOW
radare2 < 5.9.8 - Memory Leak in bochs_open
CVSS 3.3
CVE-2025-60360 MEDIUM
radare2 < 5.9.8 - Memory Leak in r2r_subprocess_init
CVSS 5.5
CVE-2025-60359 MEDIUM
radare2 < 5.9.8 - Memory Leak in r_bin_object_new
CVSS 5.5
CVE-2025-60358 MEDIUM
radare2 < 5.9.8 - Memory Leak in _load_relocations
CVSS 5.5
CVE-2025-61974 HIGH
F5 BIG-IP Next 1.1.0-1.4.1 & Service Proxy for Kubernetes 1.7.0-1.9.2 Memory Leak via Client SSL Profile
CVSS 7.5
CVE-2025-54805 MEDIUM
F5 BIG-IP Next 1.1.0-1.4.1 & Service Proxy for Kubernetes 1.7.0-1.9.2 - Use-After-Free in iRule API
CVSS 6.5
CVE-2025-47150 MEDIUM
F5OS-A 1.5.1-1.5.3 and F5OS-C 1.6.0-1.6.4 - Memory Leak via SNMP Requests
CVSS 6.5
CVE-2025-39963 HIGH
Linux Kernel 6.10-6.12.48, 6.13-6.16.8 - Use-After-Free in io_uring io_link_skb
CVSS 7.8
CVE-2025-39948 MEDIUM
Linux Kernel - Use-After-Free in ice_put_rx_mbuf
CVSS 5.5
CVE-2025-39929 MEDIUM
Linux Kernel 4.16-6.1.153, 6.2-6.6.107, 6.7-6.12.48, 6.13-6.16.8 - Use-After-Free in SMB Direct Receive IO
CVSS 5.5
CVE-2025-39893 MEDIUM
Linux Kernel 6.15-6.16.5 - Use-After-Free in SPI QPIC SNAND ECC Engine
CVSS 5.5
CVE-2025-43816 HIGH
Liferay Digital Experience Platform - Memory Leak in StructuredContents Headless API
CVSS 7.5
CVE-2025-39890 MEDIUM
Linux Kernel 6.3-6.6.93, 6.7-6.12.33, 6.13-6.15.2 - Use-After-Free in ath12k_service_ready_ext_event
CVSS 5.5
CVE-2025-39852 MEDIUM
Linux Kernel - Use-After-Free in TCP-AO IPv6 Socket Handling
CVSS 5.5
CVE-2025-39848 MEDIUM
Linux Kernel - Use-After-Free in ax25_kiss_rcv()
CVSS 5.5
CVE-2025-39847 MEDIUM
Linux Kernel - Use-After-Free in pad_compress_skb
CVSS 5.5
CVE-2025-39845 MEDIUM
Linux Kernel 5.13-6.16.5 Use-After-Free in Page Table Sync
CVSS 5.5
CVE-2025-39834 MEDIUM
Linux Kernel 6.12-6.16.5 - Use-After-Free in mlx5 HWS Action Shared STC Handling
CVSS 5.5
CVE-2025-39830 MEDIUM
Linux Kernel 6.12-6.16.4 - Use-After-Free in hws_pool_buddy_init Error Path
CVSS 5.5
CVE-2025-39756 MEDIUM
Linux Kernel - Integer Overflow to Denial of Service via File Descriptor Table Allocation
CVSS 5.5
CVE-2025-39737 MEDIUM
Linux Kernel - Use-After-Free in kmemleak Object Cleanup
CVSS 5.5
CVE-2025-8277 LOW
Red Hat Enterprise Linux 6-10 and OpenShift Container Platform 4 - Denial of Service via libssh KEX Memory Leak
CVSS 3.1
CVE-2025-39679 MEDIUM
Linux Kernel 6.6-6.6.102, 6.7-6.12.43, 6.13-6.16.3 - Use-After-Free in nvif_vmm_ctor()
CVSS 5.5
CVE-2025-9165 LOW
LibTIFF 4.7.0 - Memory Leak in tiffcmp
CVSS 2.5
CVE-2025-38612 MEDIUM
Linux Kernel - Use-After-Free in fbtft_framebuffer_alloc Error Handling
CVSS 5.5
Details
Vulnerabilities 1,744
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits