CWE-401

Medium likelihood

Missing Release of Memory after Effective Lifetime

Parent: CWE-772 - Missing Release of Resource after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

1,753 vulnerabilities with CWE-401
CVE-2025-1149 LOW
GNU Binutils 2.43 - Memory Leak in xstrdup Function
CVSS 3.1
CVE-2025-1148 LOW
GNU Binutils 2.43 - Memory Leak in ld/ldelfgen.c link_order_scan Function
CVSS 3.1
CVE-2025-23085 MEDIUM
Node.js < 18.20.6, 20.x < 20.18.2, 22.x < 22.13.1, 23.x < 23.6.1 - Memory Leak via HTTP/2 Socket Closure
CVSS 5.3
CVE-2025-21091 HIGH
BIG-IP 15.1.0-15.1.10 - Memory Leak via SNMP Requests
CVSS 7.5
CVE-2025-21683 MEDIUM
Linux Kernel 5.8-6.12.11 Use-After-Free in BPF Reuseport Socket Handling
CVSS 5.5
CVE-2025-21661 MEDIUM
Linux Kernel 6.11-6.12.10 - Use-After-Free in GPIO Virtuser Lookup Table
CVSS 5.5
CVE-2025-21599 HIGH
Juniper Junos OS Evolved DoS via Malformed IPv6 Packet Handling
CVSS 7.5
CVE-2025-0241 HIGH
Firefox < 134.0 and 128.6-128.* - Use-After-Free via Text Segmentation
CVSS 7.7
CVE-2024-42649 MEDIUM
NanoMQ v0.22.10 - Denial of Service via Memory Leak in PUBLISH Message Handling
CVSS 6.5
CVE-2024-6875 MEDIUM
Red Hat Data Grid - Buffer Overflow
CVSS 6.5
CVE-2024-58063 MEDIUM
Linux Kernel - Use-After-Free in RTLWIFI Probe Error Path
CVSS 5.5
CVE-2024-9135 MEDIUM
Arista EOS Use-After-Free in BGP Link State Agent
CVSS 5.3
CVE-2024-57947 MEDIUM
Linux Kernel - Use-After-Free in Netfilter Pipapo Map Initialization
CVSS 5.5
CVE-2024-57886 MEDIUM
Linux Kernel 6.11-6.12.9 - Use-After-Free in DAMON Target Commit
CVSS 5.5
CVE-2024-57885 MEDIUM
Linux Kernel - Use-After-Free in kmemleak_seq_show
CVSS 5.5
CVE-2024-57841 MEDIUM
Linux Kernel - Use-After-Free in TCP Connection Request Handling
CVSS 5.5
CVE-2024-57872 MEDIUM
Linux Kernel 3.10-6.12.4 - Use-After-Free in UFS Platform HBA Deallocation
CVSS 5.5
CVE-2024-57793 MEDIUM
Linux Kernel 6.7-6.12.8 - Use-After-Free in TDX Guest Memory Decryption
CVSS 5.5
CVE-2024-7095 MEDIUM
Arista EOS 4.22.0-4.32.0F - Memory Leak via SNMP Packet Processing
CVSS 4.3
CVE-2024-56779 MEDIUM
Linux Kernel - Memory Leak in NFS Server
CVSS 5.5
CVE-2024-56775 HIGH
Linux Kernel < 6.12.4 - Use-After-Free in DRM AMD Display Plane State Handling
CVSS 7.8
CVE-2024-56755 MEDIUM
Linux Kernel 5.17-6.1.119, 6.2-6.6.63, 6.7-6.11.10, 6.12.0-6.12.1 - Use-After-Free in FSCACHE_VOLUME_CREATING
CVSS 5.5
CVE-2024-56753 MEDIUM
Linux Kernel 6.12-6.12.1 - Use-After-Free in AMD GPU GFX9 Cleaner Shader Deinitialization
CVSS 5.5
CVE-2024-56748 MEDIUM
Linux Kernel - Use-After-Free in SCSI qedf Driver
CVSS 5.5
CVE-2024-56747 MEDIUM
Linux Kernel Use-After-Free in qedi_alloc_and_init_sb()
CVSS 5.5
Details
Vulnerabilities 1,753
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits