CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,565 vulnerabilities with CWE-416
CVE-2022-48960 HIGH
Linux Kernel Use-After-Free in hix5hd2_rx()
CVSS 7.8
CVE-2022-48956 HIGH
Linux Kernel 4.13-6.0.13 Use-After-Free in ip6_fragment
CVSS 7.8
CVE-2022-48954 HIGH
Linux Kernel 5.15-5.15.83, 5.16-6.0.13 - Use-After-Free in qeth_l2_br2dev_worker
CVSS 7.8
CVE-2022-48950 HIGH
Linux Kernel < 5.15.84, 6.0.7-6.0.14 - Use-After-Free in perf_pending_task
CVSS 7.8
CVE-2022-48935 MEDIUM
Linux Kernel < 4.19.316, 5.5-5.10.198, 5.11-5.15.26, 5.16-5.16.12 - Use-After-Free in Netfilter Flowtable Hooks
CVSS 5.5
CVE-2022-48925 HIGH
Linux Kernel 5.10-5.10.102, 5.11-5.15.25, 5.16-5.16.11 - Use-After-Free in RDMA/cma
CVSS 7.8
CVE-2022-48913 HIGH
Linux Kernel 5.12-5.15.26 - Use-After-Free in blktrace
CVSS 7.8
CVE-2022-48912 HIGH
Linux Kernel 4.14-5.16.12 Use-After-Free in Netfilter Hook Registration
CVSS 7.8
CVE-2022-48911 MEDIUM
Linux Kernel Use-After-Free in nf_queue (2.6.29-5.16.13)
CVSS 5.5
CVE-2022-48899 MEDIUM
Linux Kernel 4.4-4.19.270, 4.20-5.4.229, 5.5-5.10.164, 5.11-5.15.89, 5.16-6.1.7 - Use-After-Free in GEM Handle Creation
CVSS 4.7
CVE-2022-48892 HIGH
Linux Kernel 5.15-5.15.88, 5.16-6.1.6, 6.2 - Use-After-Free in dup_user_cpus_ptr
CVSS 7.8
CVE-2022-48878 HIGH
Linux Kernel 5.8-5.10.165 5.11-5.15.90 5.16-6.1.8 - Use-After-Free in Bluetooth hci_qca Shutdown
CVSS 7.8
CVE-2022-48874 HIGH
Linux Kernel 5.18-6.1.7 - Use-After-Free in fastrpc_map_find
CVSS 7.8
CVE-2022-48873 HIGH
Linux Kernel 5.2-5.4.230 5.5-5.10.165 5.11-5.15.90 5.16-6.1.8 - Use-After-Free in fastrpc_map_put
CVSS 7.8
CVE-2022-48872 HIGH
Linux Kernel 5.1-5.4.230 - Use-After-Free in fastrpc_map_get
CVSS 7.0
CVE-2022-48869 MEDIUM
Linux Kernel 5.3-5.4.230, 5.5-5.10.165, 5.11-5.15.90, 5.16-6.1.8 - Use-After-Free in gadgetfs
CVSS 4.7
CVE-2022-48867 HIGH
Linux Kernel 5.19-6.1.8 - Use-After-Free in DMA Engine Completion Memory
CVSS 7.8
CVE-2022-48861 MEDIUM
Linux Kernel 5.13-5.15.29 5.16-5.16.15 - Use-After-Free in vp_vdpa_remove
CVSS 5.5
CVE-2022-48858 HIGH
Linux Kernel < 5.4.185, 5.5.0-5.10.106, 5.9.0-5.15.29, 5.11.0-5.16.15 - Race Condition in Command Flush Flow
CVSS 7.0
CVE-2022-48857 MEDIUM
Linux Kernel - Use-After-Free in NFC port100_send_complete
CVSS 5.5
CVE-2022-48854 HIGH
Linux Kernel 5.16-5.16.14 - Use-After-Free in arc_mdio_probe
CVSS 7.8
CVE-2022-48851 HIGH
Linux Kernel - Use-After-Free in gdm_lte_rx()
CVSS 7.8
CVE-2022-48844 MEDIUM
Linux Kernel < 5.15.30, 5.15.0-5.15.30, 5.16.0-5.16.16 - Use-After-Free in Bluetooth HCI Core sent_cmd skb
CVSS 5.5
CVE-2022-48838 MEDIUM
Linux Kernel - Use-After-Free in USB Gadget UDC Driver Handling
CVSS 5.5
CVE-2022-48822 HIGH
Linux Kernel 4.9-5.16.10 Use-After-Free in USB FunctionFS Endpoint File Handling
CVSS 7.8
Details
Vulnerabilities 7,565
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits