CWE-415

High likelihood

Double Free

Parent: CWE-825 - Expired Pointer Dereference

The product calls free() twice on the same memory address.

788 vulnerabilities with CWE-415
CVE-2018-11273 HIGH
Android - Use-After-Free in voice_svc_dev Device Management
CVSS 7.8
CVE-2018-11270 HIGH
Android - Use-After-Free in devm_kzalloc Memory Handling
CVSS 7.8
CVE-2018-17097 HIGH
Olli Parviainen SoundTouch 2.0 - Use After Free
CVSS 8.8
CVE-2018-14638 HIGH
389 Directory Server < 1.3.8.4 - Denial of Service via Persistent Search Connection Termination
CVSS 7.5
CVE-2018-16425 MEDIUM
OpenSC < 0.18.0 - Double Free in HSM Card Response Handling
CVSS 6.6
CVE-2018-16424 MEDIUM
OpenSC < 0.18.0 - Double Free in eGK Card Tool Response Handling
CVSS 6.6
CVE-2018-16423 MEDIUM
OpenSC < 0.18.0 - Double Free in sc_file_set_sec_attr
CVSS 6.6
CVE-2018-16402 CRITICAL
elfutils 0.173 - Double Free in libelf/elf_end.c
CVSS 9.8
CVE-2018-10902 HIGH
Linux Kernel - Use-After-Free in Raw MIDI Driver
CVSS 7.8
CVE-2018-1000222 HIGH
Libgd 2.2.5 - Remote Code Execution
CVSS 8.8
CVE-2018-1000216 HIGH
davegamble/cjson < 1.7.3 - Double Free
CVSS 8.8
CVE-2018-14524 MEDIUM
GNU LibreDWG < 0.6 - Double Free in dwg_decode_eed
CVSS 6.5
CVE-2018-12782 CRITICAL
Adobe Acrobat and Reader <2018.011.20040 - RCE
CVSS 9.8
CVE-2018-14054 CRITICAL
MP4v2 2.0.0 - Use After Free
CVSS 9.8
CVE-2018-4990 HIGH KEV
Adobe Acrobat and Reader DC < 15.006.30417, 15.008.20082-18.011.20038 - Use-After-Free
CVSS 8.8
CVE-2018-11730 MEDIUM
libfsntfs < 20180420 - Double Free in Security Descriptor Values
CVSS 5.5
CVE-2018-11416 HIGH
jpegoptim 1.4.5 - Use-After-Free via Invalid realloc() and free()
CVSS 8.8
CVE-2018-11243 HIGH
UPX 3.95 - Double Free in PackLinuxElf64::unpack
CVSS 7.8
CVE-2018-9336 HIGH
OpenVPN 2.4.0-2.4.5 - Double Free via Malformed Interactive Service Request
CVSS 7.8
CVE-2018-3855 HIGH
Hyland Perceptive Document Filters 11.4.0.2647 - Use-After-Free via Crafted OpenDocument
CVSS 7.8
CVE-2018-3845 HIGH
Hyland Perceptive Document Filters 11.4.0.2647 - Double Free in OpenDocument Parser
CVSS 8.8
CVE-2018-8835 HIGH
Advantech WebAccess HMI Designer <2.1.7.32 - Memory Corruption
CVSS 7.8
CVE-2018-7899 MEDIUM
Huawei Berkeley-AL20/Berkeley-BD - Double Free
CVSS 5.5
CVE-2018-3593 CRITICAL
Qualcomm Snapdragon Firmware - Double Free via eMBMS Request Handling
CVSS 9.8
CVE-2018-0160 MEDIUM
Cisco IOS XE - Authenticated Denial of Service via SNMP Double Free
CVSS 6.3
Details
Vulnerabilities 788
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits