CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,646 vulnerabilities with CWE-416
CVE-2022-27795 HIGH
Adobe Acrobat/Reader DC < 22.001.20085 & < 17.012.30205 - Use-After-Free in Acroform
CVSS 7.8
CVE-2022-27790 HIGH
Adobe Acrobat and Reader DC < 22.001.20085 and Acrobat and Reader < 17.012.30205 - Use-After-Free in Font Processing
CVSS 7.8
CVE-2022-27789 HIGH
Adobe Acrobat and Reader DC < 22.001.20085 - Use-After-Free in Acroform Event Processing
CVSS 7.8
CVE-2022-27786 HIGH
Adobe Acrobat and Reader DC < 22.001.20085 and Acrobat and Reader < 17.012.30205 - Use-After-Free in Font Processing
CVSS 7.8
CVE-2022-27785 HIGH
Adobe Acrobat and Reader DC < 22.001.20085 and Acrobat and Reader < 17.012.30205 - Use-After-Free in Font Processing
CVSS 7.8
CVE-2022-24104 HIGH
Adobe Acrobat and Reader DC < 22.001.20085 and Acrobat and Reader < 17.012.30205 - Use-After-Free
CVSS 7.8
CVE-2022-24103 HIGH
Adobe Acrobat and Acrobat Reader DC < 22.001.20085 and Acrobat and Acrobat Reader < 17.012.30205 - Use-After-Free
CVSS 7.8
CVE-2022-24102 HIGH
Adobe Acrobat and Reader DC < 22.001.20085 and Acrobat and Reader < 17.012.30205 - Use-After-Free
CVSS 7.8
CVE-2022-24101 LOW
Adobe Acrobat and Reader DC < 22.001.20085 and Acrobat and Reader < 17.012.30205 - Use-After-Free
CVSS 3.3
CVE-2022-20118 HIGH
Android - Use-After-Free via Race Condition in ion_ioctl
CVSS 7.0
CVE-2022-1616 HIGH
vim < 8.2.4895 - Use-After-Free in append_command
CVSS 7.8
CVE-2022-28279 HIGH
Adobe Photoshop < 22.5.6 - Use-After-Free
CVSS 7.8
CVE-2022-28271 HIGH
Adobe Photoshop < 22.5.6 - Use-After-Free via Malicious PDF File
CVSS 7.8
CVE-2022-1516 MEDIUM
Linux Kernel - NULL Pointer Dereference in X.25 Network Protocol Session Termination
CVSS 5.5
CVE-2022-20091 MEDIUM
Android - Use-After-Free via Race Condition in AEE Driver
CVSS 6.4
CVE-2022-20090 MEDIUM
Android - Use-After-Free via Race Condition in AEE Driver
CVSS 6.4
CVE-2022-1195 MEDIUM
Linux Kernel < 5.16 - Use-After-Free in Hamradio Drivers
CVSS 5.5
CVE-2022-1114 HIGH
ImageMagick 6.0-6.9.12-43 - Use-After-Free in RelinquishDCMInfo
CVSS 7.1
CVE-2022-1048 HIGH
Linux Kernel 2.6.12-4.14.279 - Use-After-Free in ALSA PCM hw_params
CVSS 7.0
CVE-2022-1444 MEDIUM
radare2 < 5.7.0 - Use-After-Free
CVSS 5.5
CVE-2022-28042 HIGH
stb_image.h v2.27 - Use-After-Free in stbi__jpeg_huff_decode
CVSS 8.8
CVE-2022-27007 CRITICAL
nginx njs 0.7.2 - Use-After-Free in njs_function_frame_alloc()
CVSS 9.8
CVE-2022-27457 HIGH
MariaDB 10.4.0-10.4.24 - Use-After-Free in my_mb_wc_latin1
CVSS 7.5
CVE-2022-27456 HIGH
MariaDB 10.3.0-10.3.34 - Use-After-Free in VDec::VDec
CVSS 7.5
CVE-2022-27455 HIGH
MariaDB 10.4.0-10.4.25 - Use-After-Free in my_wildcmp_8bit_impl
CVSS 7.5
Details
Vulnerabilities 7,646
Exploit Likelihood High