CWE-401

Medium likelihood

Missing Release of Memory after Effective Lifetime

Parent: CWE-772 - Missing Release of Resource after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.

1,753 vulnerabilities with CWE-401
CVE-2024-27076 MEDIUM
Linux Kernel - Use-After-Free in V4L2 Control Handler
CVSS 5.5
CVE-2024-27074 MEDIUM
Linux Kernel - Use-After-Free in go7007_load_encoder
CVSS 5.5
CVE-2024-27073 MEDIUM
Linux Kernel - Use-After-Free in budget_av_attach Error Handling
CVSS 5.5
CVE-2024-27068 MEDIUM
Linux Kernel 6.3-6.6.22, 6.7.0-6.7.10, 6.8.0-6.8.1 - Use-After-Free in Thermal Driver Error Handling
CVSS 5.5
CVE-2024-27066 MEDIUM
Linux Kernel 6.6-6.6.22, 6.7-6.7.10, 6.8-6.8.1 - Use-After-Free in virtio Packed Ring Indirect Descriptor Handling
CVSS 5.5
CVE-2024-27064 MEDIUM
Linux Kernel < 6.4 - Use-After-Free in nf_tables_updchain
CVSS 5.5
CVE-2024-27012 MEDIUM
Linux Kernel 6.4-6.8.8 - Use-After-Free in nf_tables Set Element Deactivation
CVSS 5.5
CVE-2024-27011 MEDIUM
Linux Kernel 4.12-6.8.8 - Use-After-Free in nf_tables Abort Path
CVSS 5.5
CVE-2024-26986 MEDIUM
Linux Kernel 6.5-6.6.28 - Use-After-Free in KFD Process Creation
CVSS 5.5
CVE-2024-26985 MEDIUM
Linux Kernel 6.8-6.8.8 - Use-After-Free in drm/xe
CVSS 5.5
CVE-2024-26912 MEDIUM
Linux Kernel 6.7-6.7.5 - Use-After-Free in Nouveau GSP-RM DMA Buffer Management
CVSS 5.5
CVE-2024-26900 MEDIUM
Linux Kernel 5.3-6.8.1 - Use-After-Free in MD RAID Device Serial Handling
CVSS 5.5
CVE-2024-26888 MEDIUM
Linux Kernel 6.4.16-6.4.99 - Use-After-Free in Bluetooth MSFT Monitor Advertisement
CVSS 5.5
CVE-2024-26887 MEDIUM
Linux Kernel 6.6-6.6.22, 6.7-6.7.10, 6.8-6.8.1 - Use-After-Free in Bluetooth btusb
CVSS 5.5
CVE-2024-26860 MEDIUM
Linux Kernel - Use-After-Free in dm-integrity Recheck Logic
CVSS 5.5
CVE-2024-26840 MEDIUM
Linux Kernel Use-After-Free in cachefiles_add_cache()
CVSS 5.5
CVE-2024-26839 MEDIUM
Linux Kernel <6.7.7 Use-After-Free in HFI1 Credit Return Initialization
CVSS 5.5
CVE-2024-26833 MEDIUM
Linux Kernel - Use-After-Free in dm_sw_fini()
CVSS 5.5
CVE-2024-26831 MEDIUM
Linux Kernel 6.6-6.6.18, 6.7-6.7.6 - Use-After-Free in Handshake Request Destruction
CVSS 5.5
CVE-2024-26829 MEDIUM
Linux Kernel - Use-After-Free in ir_toy Driver
CVSS 5.5
CVE-2024-3860 MEDIUM
Firefox < 125.0 - Use-After-Free via Empty Shape List
CVSS 6.2
CVE-2024-21609 MEDIUM
Juniper Junos OS Multiple Versions - DoS via IPsec SA Rekey Memory Leak
CVSS 6.5
CVE-2024-3382 HIGH
Palo Alto Networks PAN-OS - Memory Corruption
CVSS 7.5
CVE-2024-26734 HIGH
Linux Kernel 6.3-6.6.19, 6.7-6.7.7 - Use-After-Free in devlink_init()
CVSS 7.8
CVE-2024-26676 MEDIUM
Linux Kernel - Use-After-Free in AF_UNIX Garbage Collection
CVSS 5.5
Details
Vulnerabilities 1,753
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits