CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,646 vulnerabilities with CWE-416
CVE-2022-2896 HIGH
Measuresoft ScadaPro Server - Use After Free
CVSS 7.8
CVE-2022-1976 HIGH
Linux Kernel 5.17.3-5.18.5 - Use-After-Free in IO-URING
CVSS 7.8
CVE-2022-1974 MEDIUM
Linux Kernel - Use-After-Free via NFC Core kobject Race Condition
CVSS 4.1
CVE-2022-1205 MEDIUM
Linux Kernel < 5.17 - NULL Pointer Dereference in AX.25 Protocol
CVSS 4.7
CVE-2022-3037 HIGH
vim < 9.0.0322 - Use-After-Free
CVSS 7.8
CVE-2022-2961 HIGH
Linux Kernel - Use-After-Free via PLP Rose Race Condition in bind
CVSS 7.0
CVE-2022-1204 MEDIUM
Linux Kernel < 5.17 - Use-After-Free in AX.25 Protocol
CVSS 5.5
CVE-2022-1199 HIGH
Linux Kernel < 5.17.14 - Null Pointer Dereference and Use-After-Free via Amateur Radio Simulation
CVSS 7.5
CVE-2022-1198 MEDIUM
Linux Kernel < 5.17 - Use-After-Free in 6pack Driver
CVSS 5.5
CVE-2022-1184 MEDIUM
Linux Kernel >=2.6.12 <4.9.138 - Use-After-Free in ext4 Filesystem dx_insert_block
CVSS 5.5
CVE-2022-1043 HIGH
io_uring Same Type Object Reuse Priv Esc
CVSS 8.8
CVE-2022-0934 HIGH
dnsmasq < 2.87 - Use-After-Free via Crafted Packet
CVSS 7.5
CVE-2022-3016 HIGH
vim < 9.0.0286 - Use-After-Free
CVSS 7.8
CVE-2022-0216 MEDIUM
QEMU < 6.0.0 - Use-After-Free in LSI53C895A SCSI Host Bus Adapter Emulation
CVSS 4.4
CVE-2022-2982 HIGH
vim < 9.0.0260 - Use-After-Free
CVSS 7.8
CVE-2022-32746 MEDIUM
Samba 4.3.0-4.14.13 - Use-After-Free in AD DC Database Audit Logging Module
CVSS 5.4
CVE-2022-2978 HIGH
Linux Kernel 2.6.12-4.9.330 - Use-After-Free in NILFS File System
CVSS 7.8
CVE-2022-20122 CRITICAL
PowerVR GPU driver - Memory Corruption
CVSS 9.8
CVE-2022-2938 HIGH
Linux Kernel >=5.2 <5.4.177 - Use-After-Free in Pressure Stall Information
CVSS 7.8
CVE-2022-2946 HIGH
vim < 9.0.0246 - Use-After-Free
CVSS 7.8
CVE-2022-38667 CRITICAL
Crow < 1.0+4 - Use-After-Free via HTTP Pipelining
CVSS 9.8
CVE-2022-23459 HIGH
Json++ - Double Free in Value Class Assignment
CVSS 8.1
CVE-2022-2889 HIGH
vim < 9.0.0225 - Use-After-Free
CVSS 7.8
CVE-2022-35164 CRITICAL
LibreDWG < 0.12.4.4608 - Use-After-Free via bit_copy_chain
CVSS 9.8
CVE-2022-2862 HIGH
vim < 9.0.0221 - Use-After-Free
CVSS 7.8
Details
Vulnerabilities 7,646
Exploit Likelihood High