CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,547 vulnerabilities with CWE-416
CVE-2023-53307 HIGH
Linux Kernel 4.9-4.14.308 - Use-After-Free in rbd_dev_create
CVSS 7.8
CVE-2023-53305 HIGH
Linux Kernel < 4.14.324 - Use-After-Free in L2CAP LE Command Rejection
CVSS 7.8
CVE-2023-53282 HIGH
Linux Kernel - Use-After-Free in lpfc_wr_object during Sysfs Firmware Write
CVSS 7.8
CVE-2023-53263 HIGH
Linux Kernel 6.0-6.1.47 6.4.12-6.4.* 6.5 - Use-After-Free in Nouveau Connector Error Handling
CVSS 7.8
CVE-2023-53253 HIGH
Linux Kernel 6.5-6.5.2 - Use-After-Free in HID NVIDIA Shield Input Device Name Handling
CVSS 7.8
CVE-2023-53252 HIGH
Linux Kernel - Use-After-Free in Bluetooth HCI Connection Parameter Handling
CVSS 7.8
CVE-2023-53235 HIGH
Linux Kernel - Use-After-Free in DRM Device Cleanup
CVSS 7.8
CVE-2023-53219 HIGH
Linux Kernel 4.3-4.14.315 - Use-After-Free in netup_unidvb DMA Timer Handling
CVSS 7.8
CVE-2023-53194 HIGH
Linux Kernel - Use-After-Free in NTFS3 Index Root Handling
CVSS 7.8
CVE-2023-53187 HIGH
Linux kernel 5.15.128-5.15.x - Use-After-Free in Btrfs Block Group Handling
CVSS 7.8
CVE-2023-53153 HIGH
Linux Kernel 2.6.32-4.14.308 - Use-After-Free in WiFi cfg80211 wext.connect
CVSS 7.8
CVE-2023-21125 HIGH
Android - Use-After-Free in btif_hh_hsdata_rpt_copy_cb
CVSS 8.0
CVE-2023-26226 CRITICAL
Yandex Browser <24.4.0.682 - Use After Free
CVSS 9.8
CVE-2023-53145 HIGH
Linux Kernel < 4.14.326 - Use-After-Free in Bluetooth btsdio_remove
CVSS 7.8
CVE-2023-53138 HIGH
Linux Kernel 3.3-4.14.309 - Use-After-Free in CAIF USB Device Notification Handler
CVSS 7.8
CVE-2023-53123 HIGH
Linux Kernel 5.13-5.13, <5.15.104, 5.15.104-5.15.*, 6.1.21-6.1.* - Use-After-Free in PCI Hotplug
CVSS 7.8
CVE-2023-53116 HIGH
Linux Kernel 4.8-4.14.310 - Use-After-Free in nvmet_req_complete
CVSS 7.8
CVE-2023-53111 HIGH
Linux Kernel 4.4-5.15.104 6.1.21-6.1 - Use-After-Free in Loop Device Request Handling
CVSS 7.8
CVE-2023-53107 HIGH
Linux Kernel 5.18-6.3 - Use-After-Free in veth XDP_REDIRECT
CVSS 7.8
CVE-2023-53106 HIGH
Linux Kernel 3.17-4.14.310 - Use-After-Free in NFC ST-NCI ndlc_remove
CVSS 7.8
CVE-2023-53088 HIGH
Linux Kernel 5.18.10-5.19 - Use-After-Free in MPTCP Listener Shutdown
CVSS 7.8
CVE-2023-53084 HIGH
Linux Kernel 5.9.5-5.10 - Use-After-Free in DRM Shmem Helper Error Path
CVSS 7.8
CVE-2023-53082 HIGH
Linux Kernel - Use-After-Free in vp_vdpa Hot Unplug
CVSS 7.8
CVE-2023-53075 HIGH
Linux Kernel 3.5-4.14.311 - Use-After-Free in ftrace lookup_rec Function
CVSS 7.8
CVE-2023-53072 HIGH
Linux Kernel 5.7-6.3 - Use-After-Free in MPTCP Token Bucket
CVSS 7.8
Details
Vulnerabilities 7,547
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits