CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,548 vulnerabilities with CWE-416
CVE-2023-7010 HIGH
Google Chrome < 117.0.5938.62 - Use-After-Free in WebRTC
CVSS 8.8
CVE-2023-52885 HIGH
Linux Kernel 4.8-4.14.321 - Use-After-Free in svc_tcp_listen_data_ready
CVSS 7.8
CVE-2023-41093 LOW
Silicon Labs Bluetooth SDK <8.0.0 - Use After Free
CVSS 3.1
CVE-2023-43544 MEDIUM
Qualcomm IPC Callback Handle Firmware - Memory Corruption
CVSS 6.7
CVE-2023-43543 MEDIUM
Qualcomm Audio Firmware - Memory Corruption
CVSS 6.7
CVE-2023-43842 HIGH
Aten PE6208 <2.4.232 - Privilege Escalation
CVSS 7.3
CVE-2023-52859 HIGH
Linux Kernel 5.13 - Use-After-Free in perf hisi PMU Registration
CVSS 7.8
CVE-2023-52854 HIGH
Linux Kernel 3.16.84-3.16.99 - Use-After-Free in padata_free_shell
CVSS 7.8
CVE-2023-52852 HIGH
Linux Kernel 5.13.19-5.15.139 - Use-After-Free in F2FS Compression Cache Handling
CVSS 7.8
CVE-2023-52851 HIGH
Linux Kernel 5.19-6.1.63 6.5.12-6.5.* 6.6.2-6.6.* - Use-After-Free in IB/mlx5 QP Resource Cleanup
CVSS 7.8
CVE-2023-52847 HIGH
Linux Kernel 4.15-4.19.298 - Use-After-Free via bttv_irq_timeout Timer Race Condition
CVSS 7.0
CVE-2023-52846 HIGH
Linux Kernel 5.9-5.10.200 - Use-After-Free in HSR prp_create_tagged_frame
CVSS 7.8
CVE-2023-52840 HIGH
Linux Kernel 4.18-4.19.298 - Use-After-Free in synaptics-rmi4 rmi_unregister_function
CVSS 7.8
CVE-2023-52838 MEDIUM
Linux Kernel 4.14.322-4.15 - Use-After-Free in imsttfb Probe
CVSS 6.2
CVE-2023-52837 HIGH
Linux Kernel 5.14-6.1.63 6.5.12-6.5.* 6.6.2-6.6.* - Use-After-Free in nbd_open
CVSS 7.8
CVE-2023-52803 MEDIUM
Linux Kernel 3.4-4.19.318 - Use-After-Free in RPC Client Pipefs Dentries Cleanup
CVSS 5.5
CVE-2023-52800 MEDIUM
Linux Kernel 5.6-5.10.202 - Use-After-Free in ath11k HTT Pktlog Handling
CVSS 4.4
CVE-2023-52798 HIGH
Linux Kernel 5.6-5.10.202 - Use-After-Free in WiFi ath11k DFS Radar Event Handling
CVSS 8.8
CVE-2023-52795 HIGH
Linux Kernel < 6.1.64 - Use-After-Free in vhost_vdpa_probe
CVSS 7.8
CVE-2023-52777 HIGH
Linux Kernel 5.19-6.1.64 6.5.13-6.5.* 6.6.3-6.6.* - Use-After-Free in ath11k GTK Offload Status Event Handler
CVSS 7.8
CVE-2023-52776 MEDIUM
Linux Kernel 6.3-6.5.12 - Use-After-Free in ath12k DFS-Radar and Temperature Event Handling
CVSS 5.9
CVE-2023-52772 HIGH
Linux Kernel 5.15 - Use-After-Free in unix_stream_read_actor
CVSS 7.8
CVE-2023-52769 HIGH
Linux Kernel 6.3-6.5.12 - Use-After-Free in ath12k HTT MLO-Offset Event Handler
CVSS 7.8
CVE-2023-52760 HIGH
Linux Kernel < 6.1.97 - Use-After-Free in gfs2_qd_dealloc
CVSS 7.8
CVE-2023-52757 HIGH
Linux Kernel < 5.10.237 - Denial of Service via SMB Client MID Release Deadlock
CVSS 7.8
Details
Vulnerabilities 7,548
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits