CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,647 vulnerabilities with CWE-416
CVE-2021-46988 MEDIUM
Linux Kernel 4.11-4.14.233 - Use-After-Free in userfaultfd Error Path
CVSS 5.5
CVE-2021-46986 MEDIUM
Linux Kernel 5.10-5.10.37, 5.10.38-5.10.*, 5.11.22-5.11.* - Use-After-Free in DWC3 Gadget Endpoint List Handling
CVSS 5.5
CVE-2021-46973 HIGH
Linux Kernel 5.8-5.12 - Use-After-Free in QRTR MHI Send
CVSS 8.4
CVE-2021-46969 HIGH
Linux Kernel 5.12-5.12.2 - Use-After-Free in MHI Queue Doorbell Handling
CVSS 7.8
CVE-2021-46966 HIGH
Linux Kernel 4.4.195-4.4.269 - Use-After-Free in ACPI Custom Method Write
CVSS 7.8
CVE-2021-46958 MEDIUM
Linux Kernel - Use-After-Free in Btrfs Transaction Abort and Fsync Race
CVSS 4.7
CVE-2021-46936 HIGH
Linux Kernel 2.6.27-4.4.298 - Use-After-Free in Time-Wait Timer Handler
CVSS 7.8
CVE-2021-46933 MEDIUM
Linux Kernel - Use-After-Free in USB Gadget FunctionFS
CVSS 5.5
CVE-2021-46930 MEDIUM
Linux Kernel 5.2-5.4.169 5.10.0-5.10.89 5.15.0-5.15.12 - Use-After-Free in MTU3 Gadget Driver
CVSS 5.5
CVE-2021-46929 MEDIUM
Linux Kernel 4.14.0-4.14.261 - Use-After-Free in SCTP Endpoint Handling
CVSS 5.5
CVE-2021-44189 LOW
Adobe After Effects < 18.4.2 - Use-After-Free via Malicious File
CVSS 3.3
CVE-2021-43753 HIGH
Adobe Lightroom <4.4 - Use After Free
CVSS 7.8
CVE-2021-40790 MEDIUM
Adobe Premiere Pro <22.0, 15.4.2 - Use-After-Free
CVSS 5.5
CVE-2021-39859 MEDIUM
Adobe Acrobat and Reader DC < 21.005.20060 and Acrobat and Reader < 17.011.30202 - Use-After-Free
CVSS 5.5
CVE-2021-21088 HIGH
Adobe Acrobat and Acrobat Reader DC < 21.001.20135 - Unauthenticated Use-After-Free
CVSS 7.8
CVE-2021-33390 CRITICAL
dpic 2021.04.10 - Use-After-Free in deletestringbox()
CVSS 9.8
CVE-2021-32421 HIGH
dpic 2021.01.01 - Use-After-Free in deletestringbox() Function
CVSS 7.5
CVE-2021-25786 MEDIUM
qpdf 10.0.4 - Use-After-Free in Pl_ASCII85Decoder::write
CVSS 5.3
CVE-2021-4322 HIGH
Google Chrome <91.0.4472.77 - Use After Free
CVSS 8.8
CVE-2021-4320 HIGH
Google Chrome <92.0.4515.107 - Use After Free
CVSS 8.8
CVE-2021-4319 HIGH
Google Chrome <93.0.4577.82 - Use After Free
CVSS 8.8
CVE-2021-4317 HIGH
Google Chrome <96.0.4664.93 - Use After Free
CVSS 8.8
CVE-2021-32495 CRITICAL
radare2 - Use-After-Free in pyc Parser get_none_object Function
CVSS 10.0
CVE-2021-33796 CRITICAL
MuJS < 1.1.2 - Use-After-Free in Regexp Source Property Access
CVSS 10.0
CVE-2021-46894 CRITICAL
Huawei EMUI - Use-After-Free in uinput Module
CVSS 9.8
Details
Vulnerabilities 7,647
Exploit Likelihood High