CWE-416

High likelihood

Use After Free

Parent: CWE-825 - Expired Pointer Dereference

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

7,660 vulnerabilities with CWE-416
CVE-2021-41782 HIGH
Foxit PDF Editor 11.0-11.1 and PDF Reader 11.0-11.1 and PhantomPDF < 10.1.6 - Use-After-Free via JavaScript Mishandling
CVSS 7.8
CVE-2021-41781 HIGH
Foxit PDF Editor 11.0-11.1 and PDF Reader 11.0-11.1 and PhantomPDF < 10.1.6 - Use-After-Free via JavaScript Mishandling
CVSS 7.8
CVE-2021-41780 HIGH
Foxit PDF Editor 11.0-11.1 and PDF Reader 11.0-11.1 and PhantomPDF < 10.1.6 - Use-After-Free via JavaScript Mishandling
CVSS 7.8
CVE-2021-3929 HIGH
QEMU < 7.0.0 - Use-After-Free in NVME Controller Emulation
CVSS 8.2
CVE-2021-4022 MEDIUM
rizin < 0.3.1 - Denial of Service via HPPA ELF64 Binary Parsing
CVSS 5.5
CVE-2021-4028 HIGH
Linux Kernel >=5.10 <5.10.71 - Use-After-Free in RDMA Listener Socket Setup
CVSS 7.8
CVE-2021-39815 CRITICAL
Android PowerVR GPU Driver - Use-After-Free via Pinned Memory Handling
CVSS 9.8
CVE-2021-3975 MEDIUM
libvirt < 7.1.0 - Use-After-Free in qemuMonitorUnregister
CVSS 6.5
CVE-2021-29117 HIGH
Esri ArcReader < 10.8.1 - Use-After-Free via Crafted File Parsing
CVSS 7.8
CVE-2021-33468 MEDIUM
yasm 1.3.0 - Use-After-Free in nasm-pp.c error()
CVSS 5.5
CVE-2021-33467 MEDIUM
yasm 1.3.0 - Use-After-Free in pp_getline
CVSS 5.5
CVE-2021-33462 MEDIUM
yasm 1.3.0 - Use-After-Free in expr_traverse_nodes_post
CVSS 5.5
CVE-2021-33461 MEDIUM
yasm 1.3.0 - Use-After-Free in yasm_intnum_destroy
CVSS 5.5
CVE-2021-33453 HIGH
long_range_zip 0.641 - Use-After-Free in ucompthread
CVSS 7.8
CVE-2021-41682 HIGH
JerryScript 2.4.0 - Use-After-Free in ecma_compare_ecma_non_direct_strings
CVSS 7.8
CVE-2021-35130 HIGH
Qualcomm AR8035 and other Firmware - Use-After-Free in Graphics Support Layer
CVSS 8.4
CVE-2021-35120 MEDIUM
Qualcomm APQ8053 and related firmware - Use-After-Free in Handle Export/Release
CVSS 6.7
CVE-2021-30334 HIGH
Qualcomm APQ8009W Firmware - Use-After-Free in DRM File Status Handling
CVSS 8.4
CVE-2021-42203 HIGH
swftools < 2020-12-22 - Use-After-Free in swf_FontExtract_DefineTextCallback
CVSS 7.8
CVE-2021-42614 HIGH
Halibut 1.2 - Use-After-Free in info_width_internal
CVSS 7.8
CVE-2021-42612 HIGH
Halibut 1.2 - Use-After-Free in Index Cleanup
CVSS 7.8
CVE-2021-40399 HIGH
WPS Office <11.2.0.10351 - Use After Free
CVSS 7.8
CVE-2021-3750 HIGH
QEMU < 7.0.0 - Use-After-Free via USB EHCI Controller DMA Reentrancy
CVSS 8.2
CVE-2021-42779 MEDIUM
OpenSC < 0.22.0 - Use-After-Free in sc_file_valid
CVSS 5.3
CVE-2021-44497 HIGH
Fisglobal Gt.m < 7.0-000 - Use After Free
CVSS 7.5
Details
Vulnerabilities 7,660
Exploit Likelihood High