CWE-415

High likelihood

Double Free

Parent: CWE-825 - Expired Pointer Dereference

The product calls free() twice on the same memory address.

786 vulnerabilities with CWE-415
CVE-2022-47975 HIGH
Huawei EMUI and HarmonyOS < 2.0 - Double Free in DUBAI Module
CVSS 7.5
CVE-2022-44640 CRITICAL
Heimdal < 7.7.1 - Remote Code Execution via ASN.1 Codec Double Free
CVSS 9.8
CVE-2022-40304 HIGH
libxml2 < 2.10.3 - Use-After-Free via Corrupted Hash Table Key
CVSS 7.8
CVE-2022-3238 HIGH
Linux Kernel - Double Free in NTFS3 Subsystem via Simultaneous Remount and Umount
CVSS 7.8
CVE-2022-32614 MEDIUM
Android - Use-After-Free in Audio Component
CVSS 6.7
CVE-2022-42915 HIGH
curl 7.77.0-7.85.0 - Double Free via HTTP Proxy CONNECT Error Handling
CVSS 8.1
CVE-2022-32574 MEDIUM
Abode Systems iota All-In-One Security Kit 6.9X and 6.9Z - Authenticated Double Free in Web Interface
CVSS 6.5
CVE-2022-25750 HIGH
Qualcomm Kailua Firmware - Memory Corruption via Double Free in BTHOST
CVSS 8.4
CVE-2022-25660 HIGH
Qualcomm AQT1000 Firmware - Memory Corruption via Double Free in Kernel
CVSS 7.8
CVE-2022-3595 LOW
Linux Kernel < 6.1 - Use-After-Free in CIFS Handler sess_free_buffer
CVSS 3.5
CVE-2022-0699 CRITICAL
shapelib < 1.5.0 - Double Free in shpsort.c
CVSS 9.8
CVE-2022-39002 CRITICAL
Huawei EMUI, HarmonyOS, and Magic UI - Double Free in Storage Module
CVSS 9.8
CVE-2022-36043 HIGH
rizin < 0.4.0 - Use-After-Free in QNX Binary Relocation Handler
CVSS 7.8
CVE-2022-25668 HIGH
Qualcomm APQ8009 Firmware - Memory Corruption via Double Free in Video Driver
CVSS 7.3
CVE-2022-39170 HIGH
libdwarf 0.4.1 - Double Free in dwarf_frame.c
CVSS 8.8
CVE-2022-2519 MEDIUM
libtiff 4.4.0rc1 - Memory Corruption
CVSS 6.5
CVE-2022-23459 HIGH
Json++ - Double Free in Value Class Assignment
CVSS 8.1
CVE-2022-31614 HIGH
NVIDIA Virtual GPU 11.0-11.8 - Use-After-Free in Virtual GPU Manager
CVSS 7.0
CVE-2022-2509 HIGH
GnuTLS - Double Free in PKCS7 Signature Verification
CVSS 7.5
CVE-2022-27864 HIGH
Autodesk Design Review - Remote Code Execution via Double Free in PDF Handling
CVSS 8.8
CVE-2022-36234 HIGH
SimpleNetwork TCP Server - Memory Corruption
CVSS 7.5
CVE-2022-2008 HIGH
Google Chrome < 102.0.5005.115 - Use-After-Free in WebGL
CVSS 8.8
CVE-2022-2327 HIGH
Linux Kernel - Use-After-Free in io_uring Work Flags Handling
CVSS 7.5
CVE-2022-32962 MEDIUM
HiCOS Natural Person Credential Component Client - Unauthenticated Double Free
CVSS 6.8
CVE-2022-31117 MEDIUM
UltraJSON <5.4.0 - Memory Corruption
CVSS 5.9
Details
Vulnerabilities 786
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits