CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,646 vulnerabilities with CWE-416
CVE-2022-27447 HIGH
MariaDB < 10.3.35 - Use-After-Free in Binary_string::free_buffer()
CVSS 7.5
CVE-2022-1280 MEDIUM
Linux Kernel 5.17-5.17.3 - Use-After-Free in DRM Lease Handling
CVSS 6.3
CVE-2022-27383 HIGH
MariaDB 10.2.0-10.2.43 - Use-After-Free via my_strcasecmp_8bit
CVSS 7.5
CVE-2022-27377 HIGH
MariaDB < 10.2.44 - Use-After-Free via Item_func_in::cleanup()
CVSS 7.5
CVE-2022-27376 HIGH
MariaDB 10.3.0-10.3.34 - Use-After-Free in Item_args::walk_arg
CVSS 7.5
CVE-2022-24070 HIGH
Subversion mod_dav_svn <1.14.1 - Memory Corruption
CVSS 7.5
CVE-2022-27834 LOW
Android DSP Driver - Use-After-Free in dsp_context_unload_graph
CVSS 2.9
CVE-2022-27528 HIGH
Autodesk Navisworks 2022-2022.2 - Use-After-Free via Malicious DWFX and SKP Files
CVSS 7.8
CVE-2022-25789 HIGH
Autodesk AutoCAD and Advance Steel - Use-After-Free via Malicious DWF, 3DS, or DWFX Files
CVSS 7.8
CVE-2022-20062 MEDIUM
Android - Use-After-Free in mdp
CVSS 6.7
CVE-2022-20052 MEDIUM
Android - Use-After-Free in mdp
CVSS 6.5
CVE-2022-28893 HIGH
Linux Kernel 5.1-5.17.2 - Use-After-Free in SUNRPC Subsystem
CVSS 7.8
CVE-2022-1284 MEDIUM
radare2 < 5.6.8 - Use-After-Free
CVSS 5.5
CVE-2022-27147 MEDIUM
GPAC < 2.0.0 - Use-After-Free in gf_node_get_attribute_by_tag
CVSS 5.5
CVE-2022-27046 HIGH
libsixel 1.8.6 - Heap Use-After-Free in Dither Component
CVSS 8.8
CVE-2022-1212 CRITICAL
mruby < 3.0.0 - Use-After-Free in str_escape
CVSS 9.8
CVE-2022-0808 HIGH
Chrome < 99.0.4844.51 - Use-After-Free in Chrome OS Shell
CVSS 8.8
CVE-2022-0805 HIGH
Google Chrome < 99.0.4844.51 - Use-After-Free in Browser Switcher
CVSS 8.8
CVE-2022-0798 HIGH
Google Chrome <99.0.4844.51 - Use After Free
CVSS 8.8
CVE-2022-0796 HIGH
Google Chrome <99.0.4844.51 - Use After Free
CVSS 8.8
CVE-2022-0794 HIGH
Google Chrome <99.0.4844.51 - Use After Free
CVSS 8.8
CVE-2022-0793 HIGH
Google Chrome <99.0.4844.51 - Use After Free
CVSS 8.8
CVE-2022-0791 HIGH
Google Chrome <99.0.4844.51 - Use After Free
CVSS 8.8
CVE-2022-0790 CRITICAL
Google Chrome <99.0.4844.51 - Use After Free
CVSS 9.6
CVE-2022-0469 HIGH
Google Chrome <98.0.4758.80 - Use After Free
CVSS 8.8
Details
Vulnerabilities 7,646
Exploit Likelihood High