CWE-401

Medium likelihood

Missing Release of Memory after Effective Lifetime

Parent: CWE-772 - Missing Release of Resource after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

1,753 vulnerabilities with CWE-401
CVE-2025-21981 MEDIUM
Linux Kernel - Use-After-Free in aRFS Memory Allocation
CVSS 5.5
CVE-2025-21978 MEDIUM
Linux Kernel 6.0-6.1.131, 6.2-6.6.83, 6.7-6.12.19, 6.13-6.13.7 - Memory Leak in Hyper-V DRM Device Removal
CVSS 5.5
CVE-2025-21972 MEDIUM
Linux Kernel 5.15-6.12.19, 6.13.0-6.13.7 - Use-After-Free in MCTP Packet Reassembly
CVSS 5.5
CVE-2025-21954 MEDIUM
Linux Kernel 6.12-6.12.20, 6.13-6.13.8 - Use-After-Free in Netmem TX Path
CVSS 5.5
CVE-2025-29483 MEDIUM
libming v0.4.8 - Memory Leak in parseSWF_ENABLEDEBUGGER2
CVSS 6.5
CVE-2025-21882 MEDIUM
Linux Kernel 6.13-6.13.6 - Use-After-Free in vport QoS Cleanup
CVSS 5.5
CVE-2025-29910 HIGH
CryptoLib <1.3.3 - Memory Corruption
CVSS 7.5
CVE-2025-25566 MEDIUM
SoftEtherVPN 5.02.5187 - Denial of Service via UnixMemoryAlloc Memory Leak
CVSS 5.6
CVE-2025-20011 LOW
OpenHarmony 4.1-5.0.2 - Denial of Service via Memory Leak
CVSS 3.3
CVE-2025-1816 MEDIUM
FFmpeg <6e26f57f672b05e7b8b052007a83aef99dc81ccb - Memory Leak
CVSS 4.3
CVE-2025-21788 MEDIUM
Linux Kernel 6.10-6.12.15, 6.13.0-6.13.3 - Use-After-Free in XDP SKB Allocation
CVSS 5.5
CVE-2025-21770 MEDIUM
Linux Kernel - Use-After-Free in iopf_queue_remove_device
CVSS 5.5
CVE-2025-21768 MEDIUM
Linux Kernel 4.10-6.12.15, 6.13.0-6.13.3 - Use-After-Free in IPv6 LWTunnels
CVSS 5.5
CVE-2025-21737 MEDIUM
Linux Kernel 6.10-6.12.13, 6.13.0-6.13.2 - Use-After-Free in Ceph MDS Auth Path Matching
CVSS 5.5
CVE-2025-1634 HIGH
quarkus-resteasy >=3.16.0.CR1 <3.19.1 - Use-After-Free via Client Request Timeout
CVSS 7.5
CVE-2025-27097 HIGH
GraphQL Mesh - Use-After-Free in DocumentNode Cache
CVSS 7.5
CVE-2025-26311 MEDIUM
libming v0.4.8 - Denial of Service via SWF Clip Actions Parsing
CVSS 6.5
CVE-2025-26308 MEDIUM
libming v0.4.8 - Denial of Service via parseSWF_FILTERLIST Memory Leak
CVSS 6.5
CVE-2025-26307 MEDIUM
libming v0.4.8 - Denial of Service via SWF File Parsing Memory Leak
CVSS 6.5
CVE-2025-26306 MEDIUM
libming v0.4.8 - Denial of Service via Memory Leak in readSizedString
CVSS 6.5
CVE-2025-25469 MEDIUM
FFmpeg < 2025-01-13 - Memory Leak in libavutil/iamf.c
CVSS 6.5
CVE-2025-25199 HIGH
go-crypto-winnative - Memory Corruption
CVSS 7.5
CVE-2025-1152 LOW
GNU Binutils 2.43 - Memory Leak in xstrdup Function
CVSS 3.1
CVE-2025-1151 LOW
GNU Binutils 2.43 - Memory Leak in xmemdup Function
CVSS 3.1
CVE-2025-1150 LOW
GNU Binutils 2.43 - Memory Leak in bfd_malloc Function
CVSS 3.1
Details
Vulnerabilities 1,753
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits