CWE-415

High likelihood

Double Free

Parent: CWE-825 - Expired Pointer Dereference

The product calls free() twice on the same memory address.

787 vulnerabilities with CWE-415
CVE-2019-14055 HIGH
Snapdragon Auto-MSM8996AU - Use After Free
CVSS 7.8
CVE-2019-20397 HIGH
libyang < v1.0-r1 - Double Free in yyparse() via Unterminated Organization Field
CVSS 8.8
CVE-2019-20394 HIGH
libyang < v1.0-r3 - Double Free in yyparse() via Type Statement in Notification
CVSS 8.8
CVE-2019-20393 HIGH
libyang < v1.0-r1 - Double Free in yyparse() via Empty Description
CVSS 8.8
CVE-2019-9468 HIGH
Android < 10.0 - Double Free in export_key_der
CVSS 7.8
CVE-2019-20014 HIGH
GNU LibreDWG < 0.9.3 - Double Free in dwg_free
CVSS 8.8
CVE-2019-11049 MEDIUM
PHP 7.3.0-7.3.12 - Use-After-Free via mail() Function Lowercase Header
CVSS 6.5
CVE-2019-8635 HIGH
macOS < 10.14.5 - Remote Code Execution via Memory Corruption
CVSS 7.8
CVE-2019-10536 HIGH
Qualcomm APQ8009 Firmware - Double Free in DIAG_EVENT_LOG_SUPPORTED Event Handling
CVSS 7.8
CVE-2019-10517 HIGH
Qualcomm Snapdragon Firmware - Use-After-Free via Concurrent Thread Execution
CVSS 7.8
CVE-2019-19725 CRITICAL
sysstat <= 12.2.0 - Double Free in check_file_actlst
CVSS 9.8
CVE-2019-2266 HIGH
Possible double free issue in kernel - Memory Corruption
CVSS 7.8
CVE-2019-5282 HIGH
Huawei Emily and Hima Smartphones - Double Free in Bastet Module
CVSS 7.8
CVE-2019-18874 HIGH
psutil < 5.6.5 - Double Free via Refcount Mishandling
CVSS 7.5
CVE-2019-10565 CRITICAL
Qualcomm APQ8053 Firmware - Use-After-Free in Sensor Power Settings
CVSS 9.8
CVE-2019-17545 CRITICAL
GDAL < 3.0.1 - Use-After-Free in OGRExpatRealloc
CVSS 9.8
CVE-2019-11932 HIGH
WhatsApp < 2.19.244 - Remote Code Execution via GIF Image Parsing
CVSS 8.8
CVE-2019-16880 CRITICAL
linea < 0.9.4 - Use-After-Free in Matrix::zip_elements
CVSS 9.8
CVE-2019-5481 CRITICAL
curl 7.52.0-7.65.3 - Double Free in FTP-Kerberos Code
CVSS 9.8
CVE-2019-2115 HIGH
Android 7.1.1-9 - Double Free in GateKeeper::MintAuthToken
CVSS 7.8
CVE-2019-15551 CRITICAL
smallvec 0.6.5-0.6.9 - Use-After-Free via Grow Attempt
CVSS 9.8
CVE-2019-15504 CRITICAL
Linux Kernel 4.17-5.2.9 - Double Free via Crafted USB Device Traffic
CVSS 9.8
CVE-2019-8044 CRITICAL
Adobe Acrobat and Reader DC < 19.012.20036 - Use-After-Free
CVSS 9.8
CVE-2019-2126 HIGH
Android 7.0-9 - Use-After-Free in mkvparser.cc
CVSS 8.8
CVE-2019-15212 MEDIUM
Linux Kernel < 5.1.8 - Use-After-Free in Rio500 USB Driver
CVSS 4.6
Details
Vulnerabilities 787
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits