CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,566 vulnerabilities with CWE-416
CVE-2022-48674 HIGH
Linux kernel 4.19.26-4.19.26 - Use-After-Free in EROFS Pcluster Handling
CVSS 7.8
CVE-2022-48670 HIGH
Linux Kernel 5.18-5.19.10 - Use-After-Free in PECI CPU Device Release
CVSS 7.8
CVE-2022-48666 HIGH
Linux Kernel 5.7-5.19.12 - Use-After-Free in SCSI Host Device Release
CVSS 7.4
CVE-2022-48649 HIGH
Linux Kernel 5.19.8-5.19.12 - Use-After-Free in kmem_cache_destroy
CVSS 7.8
CVE-2022-48637 HIGH
Linux Kernel 5.14-5.14.69, 5.15-5.15.70, 5.16-5.19.11 - Use-After-Free in bnxt_tx_int PTP Worker
CVSS 7.8
CVE-2022-48626 HIGH
Linux Kernel Use-After-Free in MOXART MMC Host Remove Path
CVSS 7.8
CVE-2022-23090 HIGH
FreeBSD - Use-After-Free in aio_aqueue Function
CVSS 7.7
CVE-2022-2602 MEDIUM
Linux Kernel < 6.0.19 - Use-After-Free in io_uring Unix SCM Garbage Collection
CVSS 5.3
CVE-2022-2588 MEDIUM
Linux Kernel < 4.9.326 - Use-After-Free in cls_route Filter Implementation
CVSS 5.3
CVE-2022-2586 MEDIUM KEV
Linux Kernel < 5.19.17 - Use-After-Free via NFT Object or Expression Reference
CVSS 5.3
CVE-2022-2585 MEDIUM
Linux Kernel 5.7-5.10.137 - Use-After-Free in POSIX CPU Timer Handling
CVSS 5.3
CVE-2022-22942 HIGH
vmwgfx Driver File Descriptor Handling Priv Esc
CVSS 7.8
CVE-2022-34227 HIGH
Adobe Acrobat Reader <22.001.20142, 20.005.30334, 17.012.30229 - Us...
CVSS 7.8
CVE-2022-34224 HIGH
Adobe Acrobat Reader <22.001.20142, 20.005.30334, 17.012.30229 - Us...
CVSS 7.8
CVE-2022-28835 HIGH
Adobe InCopy <17.1,16.4.1 - Use After Free
CVSS 7.8
CVE-2022-30644 HIGH
Adobe Illustrator < 25.4.5 - Use-After-Free
CVSS 7.8
CVE-2022-46884 HIGH
Firefox < 106.0 - Use-After-Free in SVG Image Refresh Driver
CVSS 8.8
CVE-2022-48560 HIGH
Python <= 3.9 - Use-After-Free via heappushpop in heapq
CVSS 7.5
CVE-2022-28073 HIGH
radare2 5.4.0 and 5.4.2 - Use-After-Free in r_reg_set_value
CVSS 7.5
CVE-2022-28071 HIGH
radare2 5.4.0 and 5.4.2 - Use-After-Free in r_reg_get_name_idx
CVSS 7.5
CVE-2022-4924 CRITICAL
Google Chrome < 97.0.4692.71 - Use-After-Free in WebRTC
CVSS 9.6
CVE-2022-4921 HIGH
Google Chrome < 99.0.4844.51 - Use-After-Free in Accessibility
CVSS 8.8
CVE-2022-4919 HIGH
Google Chrome < 101.0.4951.41 - Use-After-Free in Base Internals
CVSS 8.8
CVE-2022-4918 HIGH
Chrome < 102.0.5005.61 - Use-After-Free in UI via Crafted HTML Page
CVSS 8.8
CVE-2022-4916 HIGH
Chrome < 103.0.5060.53 - Use-After-Free in Media via Crafted HTML Page
CVSS 8.8
Details
Vulnerabilities 7,566
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits