CWE-415

High likelihood

Double Free

Parent: CWE-825 - Expired Pointer Dereference

The product calls free() twice on the same memory address.

786 vulnerabilities with CWE-415
CVE-2023-52664 HIGH
Linux Kernel < 6.1.77 - Use-After-Free in Atlantic Network Driver Error Handling
CVSS 7.8
CVE-2023-44247 MEDIUM
FortiOS 6.2.0-6.2.15 - Double Free via Crafted HTTP/HTTPS Requests
CVSS 6.6
CVE-2023-52384 MEDIUM
Huawei EMUI and HarmonyOS - Double Free in RSMC Module
CVSS 4.7
CVE-2023-52383 MEDIUM
Huawei EMUI and HarmonyOS - Double Free in RSMC Module
CVSS 4.7
CVE-2023-52439 HIGH
Linux Kernel 4.18.0-4.19.306 - Use-After-Free in uio_open
CVSS 7.8
CVE-2023-38562 HIGH
Weston Embedded uC-TCP-IP <3.06.01 - Memory Corruption
CVSS 8.7
CVE-2023-1032 MEDIUM
Linux Kernel 5.19-6.3 - Double Free in io_uring IORING_OP_SOCKET Operation
CVSS 4.7
CVE-2023-28583 MEDIUM
Qualcomm FastConnect and AQT1000/QCA6420/QCA6430/QCA6574AU/QCA6696 Firmware - Memory Corruption in Netmgr IPv6 Prefix Timer Handling
CVSS 6.7
CVE-2023-52284 MEDIUM
WebAssembly Micro Runtime < 1.3.0 - Use-After-Free via Frame Reference Offset Mishandling
CVSS 5.5
CVE-2023-4256 MEDIUM
tcpreplay - Denial of Service via Double Free in tcpedit_dlt_cleanup
CVSS 5.5
CVE-2023-49937 CRITICAL
SchedMD Slurm 22.05.x 23.02.x 23.11.x - Double Free
CVSS 9.8
CVE-2023-41678 HIGH
Fortinet FortiOS <7.0.6 - Use After Free
CVSS 8.8
CVE-2023-40103 HIGH
Android - Use-After-Free in Memory Management
CVSS 7.8
CVE-2023-48013 HIGH
GPAC v2.3-DEV-rev566-g50c2ab06f-master - Use-After-Free via gf_filterpacket_del Function
CVSS 7.8
CVE-2023-43281 MEDIUM
Nothings Stb Image.h <2.28 - Memory Corruption
CVSS 6.5
CVE-2023-45679 HIGH
stb_vorbis.c - Use-After-Free in start_decoder Memory Allocation Failure
CVSS 7.3
CVE-2023-45666 HIGH
stb_image.h - Double Free in stbi__load_gif_main
CVSS 7.3
CVE-2023-45664 HIGH
stb_image.h - Double Free in stbi__load_gif_main_outofmem
CVSS 7.3
CVE-2023-42459 HIGH
Fast DDS <2.12.0-2.6.7 - Memory Corruption
CVSS 8.6
CVE-2023-36420 HIGH
Microsoft ODBC Driver for SQL Server - RCE
CVSS 7.8
CVE-2023-36418 HIGH
Azure RTOS GUIX Studio 6.0-6.2.x - Remote Code Execution via Double Free
CVSS 7.8
CVE-2023-32824 MEDIUM
Android - Double Free in rpmb
CVSS 6.7
CVE-2023-41911 MEDIUM
Samsung Exynos 2200 Firmware - Double Free in GPU
CVSS 4.7
CVE-2023-41374 HIGH
Kostac PLC Programming Software <1.6.11.0 - Code Injection
CVSS 7.8
CVE-2023-41325 HIGH
OP-TEE 3.20.0-3.21.9 - Double Free in RSA Key Allocation
CVSS 7.4
Details
Vulnerabilities 786
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits