The product calls free() twice on the same memory address.
788 vulnerabilities with CWE-415
CVE-2017-9078
HIGH
Dropbear SSH < 2017.75 - Authenticated Remote Code Execution via Double Free in TCP Listener Cleanup
CVSS 8.8
CVE-2017-8890
HIGH
Linux Kernel < 3.2.89 - Double Free in inet_csk_clone_lock
CVSS 7.8
CVE-2017-2425
HIGH
macOS < 10.12.4 - Remote Code Execution via Crafted Certificate
CVSS 7.8
CVE-2017-7393
HIGH
TigerVNC 1.7.1 - Authenticated Double Free in VNCSConnectionST::fence
CVSS 8.8
CVE-2017-5506
HIGH
ImageMagick - Double Free in magick/profile.c
CVSS 7.8
CVE-2017-5334
CRITICAL
GnuTLS <3.3.26, <3.5.8 - Use After Free
CVSS 9.8
CVE-2017-2636
HIGH
Linux Kernel <= 4.10.1 - Race Condition in HDLC Line Discipline
CVSS 7.0
CVE-2017-5836
HIGH
libplist - Use-After-Free in plist_free_data
CVSS 7.5
CVE-2017-6353
MEDIUM
Linux Kernel < 4.10 - Denial of Service via SCTP Association Peel-Off
CVSS 5.5
CVE-2017-6074
HIGH
Linux Kernel < 3.2.86 - Double Free in DCCP Packet Processing
CVSS 7.8
CVE-2016-9969
HIGH
libwebp 0.5.1 - Double Free in libwebpmux
CVSS 7.5
CVE-2016-8619
MEDIUM
curl < 7.51.0 - Use-After-Free in read_data()
CVSS 5.3
CVE-2016-8618
MEDIUM
curl < 7.51.0 - Use-After-Free via Unsafe size_t Multiplication in curl_maprintf()
CVSS 5.3
CVE-2016-1516
HIGH
OpenCV 3.0.0 - Double Free
CVSS 8.8
CVE-2016-8693
HIGH
JasPer < 1.900.10 - Double Free in mem_close Function via Crafted BMP Image
CVSS 7.8
CVE-2016-8360
HIGH
Moxa SoftCMS < 1.6 - Double Free via Crafted URL Request
CVSS 8.1
CVE-2016-6912
CRITICAL
libgd < 2.2.4 - Double Free in gdImageWebPtr
CVSS 9.8
CVE-2016-3177
CRITICAL
giflib 5.1.2 - Use-After-Free and Double Free in gifcolor.c
CVSS 9.8
CVE-2016-9806
HIGH
Linux Kernel < 3.12.62 - Race Condition in netlink_dump Function
CVSS 7.8
CVE-2016-5384
HIGH
Fedora < 2.12.1 - Double Free
CVSS 7.8
CVE-2016-5772
CRITICAL
PHP <5.5.37, <5.6.23, <7.0.8 - Use After Free
CVSS 9.8
CVE-2016-5768
CRITICAL
PHP < 5.5.36 - Double Free in mbstring Extension
CVSS 9.8
CVE-2016-3132
CRITICAL
PHP 7.x - Double Free in SplDoublyLinkedList::offsetSet
CVSS 9.8
CVE-2015-9165
CRITICAL
Qualcomm Snapdragon Mobile and Wear Firmware - Use-After-Free in QTEE File Service API
CVSS 9.8
CVE-2015-5177
HIGH
OpenSLP 1.2.1 - Double Free in SLPDKnownDAAdd
CVSS 7.5
Details
Vulnerabilities
788
Exploit Likelihood
High